Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/eV_HY0yWE8mOE1MRDnB0YcYTccg.roa
File: eV_HY0yWE8mOE1MRDnB0YcYTccg.roa (raw, json)
Hash identifier: 5xM8UD0IporPo6ojXDnvNcFP3vOdI9fe0xTb6m2cal0=
Subject key identifier: 79:5F:C7:63:4C:96:13:C9:8E:13:53:11:0E:70:74:61:C6:13:71:C8
Certificate issuer: /CN=416532420a21e42b8ad30da24ebf4347de95ef35
Certificate serial: 019426D9634FE1720CF6680F01B1BC20F090
Authority key identifier: 41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWUyQgoh5CuK0w2iTr9DR96V7zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/eV_HY0yWE8mOE1MRDnB0YcYTccg.roa
Signing time: Thu 02 Jan 2025 11:49:28 +0000
ROA not before: Thu 02 Jan 2025 11:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207645
IP address blocks: 45.137.18.0/24 maxlen: 24
194.120.133.0/24 maxlen: 24
2a0d:b100::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:63:4f:e1:72:0c:f6:68:0f:01:b1:bc:20:f0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=416532420a21e42b8ad30da24ebf4347de95ef35
Validity
Not Before: Jan 2 11:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=795fc7634c9613c98e1353110e707461c61371c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:28:50:0f:23:17:77:d0:0b:2e:db:6b:c9:
87:f6:2f:40:22:d8:bc:9c:50:f0:ea:fd:5f:1d:7a:
0f:56:b6:9f:64:6f:ee:b0:66:17:a0:be:74:48:cf:
c0:fd:5b:76:d1:56:c0:e7:53:d9:26:0e:c4:01:79:
83:da:bd:41:a1:b3:44:d3:cb:0a:69:a2:55:ca:28:
35:b7:ff:b6:48:6e:97:f2:18:3e:40:17:ef:ff:58:
21:3c:91:57:25:82:7c:d5:cb:51:d2:24:4f:12:9e:
0e:c8:8c:20:e3:29:50:39:13:2a:af:4b:26:64:90:
da:ba:8b:3f:90:90:ea:f6:47:c8:08:dd:e4:5b:b7:
cf:5d:54:0c:3a:8b:78:8a:0b:bf:fb:88:15:9b:59:
7a:79:58:1f:02:7f:ae:6e:d7:51:d0:8b:3c:43:3a:
1a:eb:48:99:3e:fe:fe:54:80:22:8f:35:7e:9a:12:
ad:55:47:bd:22:ca:e1:32:26:b3:0b:1d:77:b7:2d:
02:b7:ea:9d:34:33:89:78:e9:0e:2a:3f:87:76:c4:
75:48:77:91:d9:a1:74:cd:32:69:36:2e:b2:f2:48:
85:f7:5f:c8:37:a9:e1:f8:c7:e8:23:98:61:56:fe:
c2:0f:6f:da:5c:62:36:ce:2c:02:a5:65:6b:a7:d2:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5F:C7:63:4C:96:13:C9:8E:13:53:11:0E:70:74:61:C6:13:71:C8
X509v3 Authority Key Identifier:
keyid:41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWUyQgoh5CuK0w2iTr9DR96V7zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/eV_HY0yWE8mOE1MRDnB0YcYTccg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/QWUyQgoh5CuK0w2iTr9DR96V7zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.18.0/24
194.120.133.0/24
IPv6:
2a0d:b100::/29
Signature Algorithm: sha256WithRSAEncryption
57:ce:df:1f:9b:25:c3:20:b7:4f:3c:8d:4f:68:14:41:05:82:
40:f1:77:1e:4b:30:b2:e0:7e:f3:ee:2c:e4:87:4c:06:be:3f:
34:fe:1f:d5:ec:af:0a:c2:1f:9c:0f:b6:84:3f:1c:a4:6f:75:
7c:da:81:ac:bd:17:40:34:c7:16:15:38:e9:3b:be:5d:8e:17:
f2:21:04:36:7e:7c:17:e0:ab:78:27:18:88:e4:12:85:df:65:
4c:ec:a8:a3:2c:dc:a5:27:f9:9f:ab:04:fb:fb:9c:05:7d:12:
66:64:6c:53:58:85:95:8a:b0:ff:f0:d8:2d:99:16:22:5f:e8:
75:63:96:95:b4:08:19:97:5b:66:ea:7a:b8:77:41:29:d5:81:
d0:d2:1a:8b:a0:5b:3f:fb:a8:e2:c2:49:68:0b:c8:83:28:85:
44:f0:84:f0:66:94:44:02:c7:db:ec:2a:e4:2b:49:ac:15:c4:
2f:ae:59:42:00:a8:37:23:99:c7:0e:50:1e:61:64:37:f6:b3:
8d:92:ed:83:66:ac:79:68:ac:c8:ad:4c:86:af:0c:d9:6d:fd:
dd:e5:e4:b4:37:46:5b:a6:a3:42:35:b1:30:cf:27:9f:53:f0:
1b:ca:13:2d:f6:78:a1:82:a6:49:1d:c2:46:8a:a5:4c:ef:7e:
bb:dd:dc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:00:57 2025 by rpki-client