Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/WWTHjuXP-hTM6s4kv4UB1sZumBk.roa
File: WWTHjuXP-hTM6s4kv4UB1sZumBk.roa (raw, json)
Hash identifier: 5/7bb2uZROWFeHu9uoqvJqUFYOsZ2Pi3Cof+OpFAoMI=
Subject key identifier: 59:64:C7:8E:E5:CF:FA:14:CC:EA:CE:24:BF:85:01:D6:C6:6E:98:19
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 019427B63C2C95E792A16FF583F3B537643B
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/WWTHjuXP-hTM6s4kv4UB1sZumBk.roa
Signing time: Thu 02 Jan 2025 15:50:41 +0000
ROA not before: Thu 02 Jan 2025 15:50:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212384
IP address blocks: 45.133.108.0/22 maxlen: 22
185.60.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:3c:2c:95:e7:92:a1:6f:f5:83:f3:b5:37:64:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 2 15:50:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5964c78ee5cffa14cceace24bf8501d6c66e9819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6b:1c:1d:42:4c:6c:72:a3:cc:57:9e:07:f0:
67:21:65:1a:c7:df:3a:e6:c3:4d:54:08:5d:0a:5a:
2a:ed:0f:77:3b:1e:16:3b:66:a9:41:c6:04:8a:17:
93:a7:73:f1:a2:49:e3:e2:fe:4d:3d:21:7b:b0:4d:
88:f2:a7:f1:39:81:75:d7:b7:50:4b:d4:31:a4:22:
7f:4a:e5:b2:88:47:82:c0:9b:f4:63:d2:17:2e:33:
e1:e7:6e:db:1b:d6:32:4e:0d:58:80:1a:4e:c0:0f:
3d:36:cf:7a:22:17:91:cd:2d:38:61:a6:66:04:2e:
47:b4:b4:f4:05:f5:1b:fd:a7:f8:6a:ec:ce:80:cb:
24:5a:c2:2f:9b:71:fa:1c:96:57:77:a4:3f:ed:68:
b7:3b:26:02:d7:ee:6e:2a:ca:be:f0:0c:11:16:09:
96:ef:96:0c:27:86:c2:93:01:2a:ca:9f:8b:ab:8f:
7d:5b:39:7a:ec:15:c5:87:75:89:ee:b9:87:93:c2:
ad:4d:c6:59:5f:68:4d:4c:32:f0:54:2b:24:70:52:
38:be:15:51:fa:3a:92:55:38:c1:59:98:3f:a0:ce:
40:49:c2:82:18:e2:71:97:8b:c4:74:5c:08:cb:22:
81:87:f2:fa:a8:b9:2b:fc:5e:b7:bd:7e:d4:e2:a0:
e4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:64:C7:8E:E5:CF:FA:14:CC:EA:CE:24:BF:85:01:D6:C6:6E:98:19
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/WWTHjuXP-hTM6s4kv4UB1sZumBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.108.0/22
185.60.144.0/22
Signature Algorithm: sha256WithRSAEncryption
14:48:21:93:2f:db:3b:6f:ce:90:27:ed:c4:af:c6:8e:c2:e2:
d3:74:bf:f5:98:e2:9f:09:13:37:31:68:92:4d:2c:92:b5:71:
5c:df:35:f0:c2:f7:e3:60:02:a2:e2:ff:ca:e5:87:48:00:05:
3a:ef:49:32:0d:a1:03:b7:c8:04:f1:1b:27:b0:cb:26:77:90:
fb:41:08:da:3f:ea:80:06:6d:29:89:6b:3d:84:45:59:69:fe:
ea:32:33:14:20:ec:1b:ed:a3:54:d7:f5:61:a8:22:21:d7:1c:
b6:7b:98:38:ed:01:71:5f:30:84:1f:a3:1b:c2:e2:0e:e4:0a:
0e:f2:e4:57:c2:f9:ec:82:fd:ba:3a:82:3f:85:42:26:5a:ba:
75:83:b7:bb:9c:37:fe:39:c4:92:01:7b:03:9e:b0:8e:dd:0e:
d0:6b:54:e2:3a:00:3f:c8:78:d5:4f:50:82:94:74:3b:03:62:
db:9d:e4:48:91:57:c6:22:22:f2:de:50:cc:a7:f2:62:db:59:
38:f5:f7:65:69:49:35:6b:d7:2f:79:53:b7:94:cc:38:2a:f8:
7d:c4:84:b3:65:9d:e1:64:c4:41:c2:24:64:76:9b:68:f0:98:
83:e7:1a:f8:4e:eb:dc:d7:3d:c4:a9:98:96:e2:dd:60:51:ad:
af:ca:26:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:28 2025 by rpki-client