Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/F05pDSdP6LoB0OP4bH1TiON5TDE.roa
File: F05pDSdP6LoB0OP4bH1TiON5TDE.roa (raw, json)
Hash identifier: nXDcHsVqskZHQebgQIJgL/95s4mzZsJSrrip91rsqAc=
Subject key identifier: 17:4E:69:0D:27:4F:E8:BA:01:D0:E3:F8:6C:7D:53:88:E3:79:4C:31
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F6F02C8A0A361F196808CF40F976E
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/F05pDSdP6LoB0OP4bH1TiON5TDE.roa
Signing time: Wed 01 Jan 2025 13:47:52 +0000
ROA not before: Wed 01 Jan 2025 13:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 147293
IP address blocks: 45.146.232.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6f:02:c8:a0:a3:61:f1:96:80:8c:f4:0f:97:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=174e690d274fe8ba01d0e3f86c7d5388e3794c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:ac:65:a1:3f:86:9d:07:e0:88:5c:da:58:
0c:53:91:aa:4f:a4:3a:57:3f:7b:95:c8:5b:45:be:
dc:a2:ac:a3:d6:10:64:f0:f1:97:14:91:04:0e:5c:
b1:f2:20:2a:c8:77:09:9e:5b:9a:a3:17:b7:14:e8:
87:62:ee:76:0c:f6:7e:a5:b0:8d:84:4f:9c:68:a1:
e8:a0:83:19:6c:c2:e0:af:17:4c:d3:9b:1a:f7:2d:
af:f7:78:32:71:0b:e6:fb:92:e4:b7:2a:e7:d4:cf:
21:e8:f4:3d:60:56:4e:dd:f1:b6:74:9a:20:81:ac:
62:76:df:e4:67:cb:dd:7f:a3:1d:eb:89:5e:aa:c8:
96:10:10:1c:0a:05:c2:f2:76:8e:d0:02:bb:d4:95:
0a:a2:aa:db:8d:51:34:06:82:71:91:d1:ca:92:9d:
f0:3b:86:73:8a:40:b3:81:b3:8d:6c:3a:65:95:ce:
0b:72:64:83:1c:54:1e:37:37:b6:44:ce:bc:e7:b8:
0f:d4:6e:4e:c2:69:41:40:b5:19:48:bc:1c:79:41:
2f:26:c6:f7:4e:9b:9c:57:84:40:7b:3d:9e:fb:18:
3c:a5:ef:1a:55:99:72:27:4a:0e:5b:b5:37:82:25:
9c:61:85:02:7c:86:ad:37:78:bb:dc:62:2b:d9:ec:
da:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4E:69:0D:27:4F:E8:BA:01:D0:E3:F8:6C:7D:53:88:E3:79:4C:31
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/F05pDSdP6LoB0OP4bH1TiON5TDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.232.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:82:c5:29:1e:66:54:3c:31:c1:4c:ca:ed:a9:67:cd:ba:be:
66:77:ee:2f:8c:c0:d4:4c:9c:39:ae:31:d6:17:33:3c:eb:e7:
7f:ee:30:a0:10:67:4c:96:a9:ff:1a:2b:33:ad:b1:70:0a:81:
6e:03:be:24:e9:5f:05:36:56:78:a8:0d:69:05:c5:a1:d8:9a:
10:2d:93:27:5f:fd:f2:d7:0f:b0:7c:b6:c2:6e:cb:e2:19:35:
c2:a0:34:62:c5:30:db:23:9f:be:ef:ae:8d:a3:65:5c:a2:09:
b2:df:c1:e0:5d:b3:74:14:41:8c:88:ff:ec:4e:87:0f:d0:a2:
61:4c:aa:a9:c7:27:8a:85:fc:37:5a:f8:6f:ef:30:f3:34:37:
08:18:71:a9:ab:a6:6e:19:9b:4d:4b:d9:7a:70:e5:76:db:b7:
a8:84:9a:ee:59:f4:87:65:3d:d3:ef:c1:f6:6b:a5:8d:a5:61:
96:40:a9:5d:f5:ce:75:99:e8:f7:a0:2d:79:b6:e6:86:96:94:
35:5f:0b:ca:30:16:34:dc:f5:ce:bf:6a:20:76:cb:16:7f:1d:
48:86:c2:ea:5c:4b:13:c4:30:15:de:50:93:9d:4b:71:fa:75:
4e:8b:d2:f9:3f:a0:4f:1b:46:e5:a1:ee:71:f5:ca:73:d8:18:
84:41:c1:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:19 2025 by rpki-client