Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/cM_tRkIVV-yV7xbBDk0jpANibHU.roa
File: cM_tRkIVV-yV7xbBDk0jpANibHU.roa (raw, json)
Hash identifier: xH3UvGA+cwpvKtSHxMEbc6CFPMgBoyUHriV0CyZHYkI=
Subject key identifier: 70:CF:ED:46:42:15:57:EC:95:EF:16:C1:0E:4D:23:A4:03:62:6C:75
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0194228E28C0BD0032BE6D0A603765771292
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/cM_tRkIVV-yV7xbBDk0jpANibHU.roa
Signing time: Wed 01 Jan 2025 15:48:49 +0000
ROA not before: Wed 01 Jan 2025 15:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 45.132.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:28:c0:bd:00:32:be:6d:0a:60:37:65:77:12:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 15:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=70cfed46421557ec95ef16c10e4d23a403626c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:64:ec:40:c9:25:00:d3:83:f3:8d:1d:86:5c:
83:53:fc:be:bb:96:da:32:cc:5a:78:47:77:88:c7:
2f:f4:6e:00:63:98:a6:17:f9:62:31:e8:6c:91:07:
6d:aa:eb:43:a3:25:60:49:77:c3:f7:4c:ee:48:f6:
27:31:a2:90:85:d7:c0:2d:ec:4b:29:f4:51:5f:44:
e4:92:e6:59:c4:ed:86:c8:38:e8:85:bc:30:ce:4c:
51:7d:2d:20:b7:45:21:af:53:07:7f:71:8a:28:75:
16:b9:20:02:33:de:f6:52:5f:13:b6:41:3c:2f:68:
f5:e2:91:41:c8:e1:2b:83:e0:56:7b:97:3d:44:5d:
dc:a2:aa:47:da:48:79:ab:d9:d8:33:76:0e:b0:55:
02:af:8c:cc:db:c8:38:c0:55:b9:83:6b:c5:07:5a:
a2:6a:28:52:6f:93:e9:45:9d:3d:22:80:a6:b6:68:
29:1d:2c:65:cf:59:b6:fd:e1:26:69:66:cf:b7:a6:
98:7b:db:25:c9:9a:94:e3:ef:ef:ac:02:c3:03:5c:
5d:86:7e:28:d9:fc:aa:b5:ab:34:11:bd:36:dc:db:
6a:bd:c3:65:99:d9:7f:d7:01:f1:8a:41:6b:d6:5f:
dd:1a:7f:61:36:6a:42:94:3d:04:e2:00:f3:55:a2:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CF:ED:46:42:15:57:EC:95:EF:16:C1:0E:4D:23:A4:03:62:6C:75
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/cM_tRkIVV-yV7xbBDk0jpANibHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.25.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ee:1f:20:52:d8:a1:b6:4c:c7:bb:d7:c7:77:34:cf:09:36:
cf:7c:53:15:cf:ed:25:76:40:c7:a3:6a:b4:8e:05:d3:98:9f:
e9:df:76:72:64:89:74:0b:aa:dc:65:b1:2d:76:8d:8a:22:89:
c9:16:61:6e:56:12:80:5e:ef:17:be:f7:d7:ff:ca:4e:4d:78:
d7:7e:d4:72:33:b0:6f:fa:59:77:d3:ae:4c:c3:d2:fc:d9:cd:
74:b6:e0:0e:9b:a3:0b:5f:4c:1d:82:d2:a4:31:09:7a:55:eb:
53:c9:f1:4f:1c:fd:56:69:7d:a9:7b:9c:c0:12:5d:64:cc:e0:
41:e8:a8:c1:45:2b:e4:35:d8:51:22:54:4c:a3:f1:c2:6a:6f:
65:2d:ba:ec:62:e6:55:67:4e:20:36:c7:ea:58:8f:d7:80:aa:
74:9b:3d:fb:cb:63:5f:0c:8d:ca:08:ff:5f:c9:92:9c:28:f4:
ca:96:a5:bb:34:8e:02:c5:65:2b:a0:be:44:56:e1:cd:55:cb:
7f:b4:53:54:74:c6:54:b0:dc:32:16:66:64:b6:19:8e:f0:7d:
43:b5:c7:87:27:24:6d:5e:eb:8b:09:2c:37:a3:e4:a3:be:fd:
6c:70:91:34:59:cc:5b:b8:d4:66:69:bd:c3:86:bf:cc:7e:8a:
10:c6:30:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:51:02 2025 by rpki-client