Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/_YxUEdihI_-uaJPYX9wGIsxY46E.roa
File: _YxUEdihI_-uaJPYX9wGIsxY46E.roa (raw, json)
Hash identifier: 17fwrOnCoz/lq/5a68khCNTe3zWygrjubRQUponCFOk=
Subject key identifier: FD:8C:54:11:D8:A1:23:FF:AE:68:93:D8:5F:DC:06:22:CC:58:E3:A1
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 0178DD8D
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/_YxUEdihI_-uaJPYX9wGIsxY46E.roa
Signing time: Sat 01 Jan 2022 09:03:41 +0000
ROA not before: Sat 01 Jan 2022 09:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 45.135.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24698253 (0x178dd8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Jan 1 09:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd8c5411d8a123ffae6893d85fdc0622cc58e3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e0:e6:ad:9a:55:e6:e6:36:e9:0b:9d:f9:83:
0f:56:fd:95:28:0b:eb:1e:7b:16:0c:cd:0e:03:02:
64:b2:2e:be:b8:bd:8c:08:5d:9f:9c:1a:95:c7:59:
3d:9d:3b:32:16:e4:c3:4c:9d:58:ed:83:f9:87:d0:
17:41:9f:ba:04:ef:41:b7:b4:7c:35:fb:a8:dd:4d:
3b:09:52:62:73:18:d2:d5:e4:f1:42:4c:31:35:43:
15:22:f2:b8:e7:74:35:0d:dd:e1:a3:18:71:c1:ae:
f7:39:6e:14:60:94:2f:fe:c4:b6:56:8b:48:42:1b:
86:60:a8:0e:8a:71:f7:91:2f:36:97:01:66:f7:40:
10:be:95:af:dd:d5:12:cb:e1:9b:d2:29:69:97:40:
b0:f0:1d:8b:41:09:b8:39:ea:27:df:07:f8:91:6d:
b9:58:37:b3:4b:ef:07:b7:2c:67:af:2a:b9:db:c1:
dd:4f:dc:27:ba:46:ed:eb:c3:5d:48:db:c9:dd:cf:
7e:f5:46:aa:3d:22:3f:50:e2:07:cc:f4:56:c2:31:
24:80:d8:be:c2:3a:f6:21:a3:2a:a0:c4:4e:f8:33:
8c:3f:0f:9d:78:ba:c4:c9:dc:bd:9a:da:fd:a2:79:
38:5e:a5:30:48:c7:e7:72:cd:f3:86:e7:92:b0:80:
c1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8C:54:11:D8:A1:23:FF:AE:68:93:D8:5F:DC:06:22:CC:58:E3:A1
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/_YxUEdihI_-uaJPYX9wGIsxY46E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.133.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:8d:e2:2f:db:0b:99:6c:e0:c6:c9:c2:4d:e9:d8:74:50:8b:
b2:50:51:fb:d4:ed:67:b2:97:ff:4a:69:ac:1a:4c:42:ed:5c:
9a:2a:0a:b5:12:c3:d9:a0:e3:69:fa:e6:12:08:90:73:54:93:
cc:dd:9c:28:d6:47:0a:4b:43:e6:93:63:ba:ca:7f:87:b9:86:
fd:0f:a1:0f:6c:7d:ad:8c:d5:da:5a:c0:85:b7:ad:01:47:82:
49:98:e8:15:54:5c:66:18:15:20:48:3b:08:46:09:95:3d:0b:
f5:81:f3:6e:04:ea:7d:04:f8:f1:36:7d:02:8a:5c:be:a7:e8:
8a:ab:d0:a9:c7:d5:65:0a:db:4d:92:b3:71:94:83:a8:d3:ce:
c4:0b:19:5f:fe:88:b5:2c:54:e2:ed:00:8d:d6:25:b6:1a:55:
d1:64:0b:56:30:eb:7d:02:b6:2b:04:40:be:1c:02:89:37:cb:
c1:c9:39:59:d2:e4:31:db:59:43:27:2d:23:20:6e:bf:f3:a3:
a9:58:95:7a:46:23:25:95:83:4d:c9:67:8d:1e:bf:e0:b4:95:
dc:c5:6a:b0:b5:e2:ad:a1:66:50:c1:2c:b1:0e:8e:7d:d7:1c:
b0:b2:3f:c6:f8:a5:5f:49:de:9d:92:e0:f6:53:19:c0:4e:c7:
86:ae:79:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:39:16 2025 by rpki-client