Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa
File: 9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa (raw, json)
Hash identifier: cpk83kEdrOWJJYVKeP1fpe20g1cPT7sKTkIKvw0KJjI=
Subject key identifier: F5:79:47:6F:CA:C9:83:E3:A6:0C:F3:2C:E8:DF:D3:2A:19:24:1D:BF
Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192
Certificate serial: 019421B1F05ECC8C61241944BCB9135FB8A1
Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa
Signing time: Wed 01 Jan 2025 11:48:16 +0000
ROA not before: Wed 01 Jan 2025 11:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208905
IP address blocks: 45.133.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:f0:5e:cc:8c:61:24:19:44:bc:b9:13:5f:b8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192
Validity
Not Before: Jan 1 11:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f579476fcac983e3a60cf32ce8dfd32a19241dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:0b:a8:00:b9:d4:1a:49:17:99:ec:c3:aa:
d2:cf:56:2c:6f:af:b5:42:99:2c:b8:db:40:57:26:
a6:b6:8f:a2:47:c9:f3:36:84:8c:e6:98:ea:27:2b:
bf:9a:3c:96:79:41:e4:84:18:6b:fc:27:0a:7c:c9:
ce:93:0f:ec:3a:1f:77:c6:10:93:ac:95:c1:d3:e2:
69:6e:63:62:82:d7:5f:1f:57:de:c0:80:1b:db:12:
45:f4:35:bd:fd:78:06:3b:ec:dc:f4:d2:cc:fc:60:
66:4f:6a:92:ab:30:63:5c:0e:7e:17:0d:b8:7f:1b:
9f:2c:40:15:6a:2a:9c:5d:c3:d6:be:26:e4:b8:23:
5c:29:7a:92:61:12:8f:e8:62:56:b3:11:e8:50:da:
89:52:eb:f3:6b:bb:3b:72:2c:35:75:51:60:d1:c8:
84:2b:d7:2e:48:a1:45:f3:02:69:06:90:23:ae:12:
1a:b1:34:ad:af:6d:67:1b:c8:6c:b6:3c:a2:c4:4b:
48:82:20:91:ce:a4:06:42:75:db:95:66:4a:00:72:
81:7f:32:ac:64:eb:88:b9:09:9d:2b:6b:f5:f2:0a:
d8:72:fb:f6:4a:15:30:9c:91:b7:90:a0:4a:1b:c7:
83:5a:31:6c:fe:86:3e:89:79:6c:21:6f:d0:ce:95:
25:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:79:47:6F:CA:C9:83:E3:A6:0C:F3:2C:E8:DF:D3:2A:19:24:1D:BF
X509v3 Authority Key Identifier:
keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.241.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:46:e4:40:2b:eb:8c:63:da:81:98:09:07:0a:63:a8:57:81:
d6:83:61:64:6a:80:11:b1:8c:46:ec:58:30:1c:ce:9a:c8:54:
9f:80:7a:04:d8:d5:61:5b:b8:42:95:21:80:c5:ab:ea:a3:ec:
3f:7e:f5:c8:99:5d:67:29:33:bd:4b:ce:e1:c3:88:00:ad:ee:
47:30:4f:47:db:0a:5c:97:cf:3c:11:c5:f3:46:92:91:55:3c:
6a:23:d8:55:6b:c9:bb:ee:9b:d3:e3:e9:7d:da:44:af:e8:c0:
c8:9e:90:9f:d3:ed:09:36:11:89:79:9c:36:cd:67:11:0b:8d:
63:b2:91:54:e1:ca:ad:63:8f:ed:e9:cb:02:a3:34:c7:91:67:
e0:2b:d3:e4:f0:a6:63:39:fd:42:29:62:53:56:28:dc:17:56:
ec:b7:6d:ad:a2:8f:4b:56:c5:e0:05:52:c6:58:5d:8d:a6:44:
2b:30:d9:a7:38:9f:3e:fe:5c:71:68:6d:1f:a7:95:98:60:10:
ae:02:42:0b:e2:1f:e7:64:35:2d:fb:11:7a:d5:20:ef:95:e2:
cf:f0:2c:59:67:31:50:41:b8:2e:fd:63:54:0c:0d:af:bd:2d:
01:01:c8:6f:34:70:69:ef:73:ca:36:0b:93:53:74:ba:80:dd:
da:21:e2:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsfBezIxhJBlEvLkTX7ihMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0YmM5OGRkZWVmZGI1NjFhYTY5ZWNhNzM0OTA2MGQ4NDA1
OWUxOTIwHhcNMjUwMTAxMTE0ODE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTc5NDc2ZmNhYzk4M2UzYTYwY2YzMmNlOGRmZDMyYTE5MjQxZGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/ULqAC51BpJF5nsw6rSz1Ysb6+1
QpksuNtAVyamto+iR8nzNoSM5pjqJyu/mjyWeUHkhBhr/CcKfMnOkw/sOh93xhCT
rJXB0+JpbmNigtdfH1fewIAb2xJF9DW9/XgGO+zc9NLM/GBmT2qSqzBjXA5+Fw24
fxufLEAVaiqcXcPWvibkuCNcKXqSYRKP6GJWsxHoUNqJUuvza7s7ciw1dVFg0ciE
K9cuSKFF8wJpBpAjrhIasTStr21nG8hstjyixEtIgiCRzqQGQnXblWZKAHKBfzKs
ZOuIuQmdK2v18grYcvv2ShUwnJG3kKBKG8eDWjFs/oY+iXlsIW/QzpUlCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPV5R2/KyYPjpgzzLOjf0yoZJB2/MB8GA1UdIwQY
MBaAFCS8mN3u/bVhqmnspzSQYNhAWeGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQt
ZjQ5NzY0ZmY0OGVhLzEvOVhsSGI4ckpnLU9tRFBNczZOX1RLaGtrSGI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQtZjQ5NzY0ZmY0OGVh
LzEvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYXxMA0G
CSqGSIb3DQEBCwUAA4IBAQAORuRAK+uMY9qBmAkHCmOoV4HWg2FkaoARsYxG7Fgw
HM6ayFSfgHoE2NVhW7hClSGAxavqo+w/fvXImV1nKTO9S87hw4gAre5HME9H2wpc
l888EcXzRpKRVTxqI9hVa8m77pvT4+l92kSv6MDInpCf0+0JNhGJeZw2zWcRC41j
spFU4cqtY4/t6csCozTHkWfgK9Pk8KZjOf1CKWJTVijcF1bst22too9LVsXgBVLG
WF2NpkQrMNmnOJ8+/lxxaG0fp5WYYBCuAkIL4h/nZDUt+xF61SDvleLP8CxZZzFQ
Qbgu/WNUDA2vvS0BAchvNHBp73PKNguTU3S6gN3aIeI/
-----END CERTIFICATE-----
Generated at Tue Apr 8 03:55:50 2025 by rpki-client