Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/s05ooAExVN5UYLfeB1g43Qq4g-o.roa
File: s05ooAExVN5UYLfeB1g43Qq4g-o.roa (raw, json)
Hash identifier: 95/ol5UxoeQqj83ztmMnuf/QD+icG9evXG92UAiQSMI=
Subject key identifier: B3:4E:68:A0:01:31:54:DE:54:60:B7:DE:07:58:38:DD:0A:B8:83:EA
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01942067C3C1679510DC515DA218DFED01BA
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/s05ooAExVN5UYLfeB1g43Qq4g-o.roa
Signing time: Wed 01 Jan 2025 05:47:38 +0000
ROA not before: Wed 01 Jan 2025 05:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 45.152.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c3:c1:67:95:10:dc:51:5d:a2:18:df:ed:01:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Jan 1 05:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b34e68a0013154de5460b7de075838dd0ab883ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6f:52:f0:ec:c3:e0:11:e2:91:6a:26:06:78:
da:af:73:a6:7a:0a:78:3f:ac:30:9c:63:d2:00:e6:
38:00:50:06:73:0c:cb:01:4a:1f:8c:b5:bd:e1:da:
a0:a6:22:13:e1:40:af:8b:88:d4:c6:a5:5b:da:77:
d8:70:0e:6f:9d:99:43:d0:1a:3e:b9:9e:c4:a5:7c:
db:57:bf:50:3e:17:f7:f8:65:67:4c:19:d4:8e:14:
52:70:69:0a:74:ea:52:7f:d8:7a:7d:82:06:12:23:
55:0c:bf:75:26:82:98:45:db:21:5e:54:f3:43:ad:
8d:ef:3d:c9:6f:9b:f9:20:21:78:69:14:a0:c1:d3:
f4:37:3b:a3:cd:29:fa:42:84:d5:66:d3:d5:1d:1a:
78:a0:63:6d:45:5a:cd:f0:e1:4f:b3:7d:60:ac:c8:
d4:02:b3:98:65:ea:e2:41:87:7b:ba:93:55:c3:dd:
1d:c4:b3:74:0f:f6:c0:a8:61:60:89:9e:bc:e7:05:
ef:61:9b:60:aa:52:17:32:b6:d9:35:cf:7a:7d:52:
a1:86:e6:f8:a8:b4:98:c2:70:8c:03:3e:dd:15:1b:
34:27:ae:d2:c4:28:b7:5d:9a:d3:e4:21:9a:30:cb:
d2:9b:13:24:81:77:50:80:91:66:de:29:a6:69:50:
34:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4E:68:A0:01:31:54:DE:54:60:B7:DE:07:58:38:DD:0A:B8:83:EA
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/s05ooAExVN5UYLfeB1g43Qq4g-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.177.0/24
Signature Algorithm: sha256WithRSAEncryption
64:70:b5:f4:98:12:e4:18:c8:68:38:b5:20:3d:cc:83:01:0e:
1a:ad:0a:65:ef:83:d8:25:ec:82:54:c1:23:a9:e9:bf:6f:95:
29:65:09:53:b6:ab:3e:6a:bd:a3:d1:4d:c9:b6:2b:57:2c:b6:
58:59:49:c4:a1:4c:c2:f3:65:3a:17:88:f1:f4:b9:c5:95:d0:
08:f8:be:18:a8:c5:26:da:60:8c:f5:c3:d3:ba:16:33:63:5f:
e0:27:1b:f3:4b:7b:9a:a2:da:54:6d:e2:9a:c5:d8:0e:79:2b:
1f:e6:c2:15:de:3c:cd:cc:f3:ae:10:80:f5:a5:6d:f3:44:84:
95:bf:61:83:ab:dc:5e:cd:6d:95:cd:fc:38:af:26:27:38:f7:
6b:b2:2c:68:a4:71:b4:78:95:de:c6:4c:e4:6f:cb:42:39:2e:
bd:e4:87:87:c6:f5:3b:69:f4:11:4e:f0:9c:ff:00:8b:fd:22:
f0:d4:1e:b0:6a:69:4d:aa:7b:6c:0b:02:e5:57:c5:2b:2e:87:
5e:ab:92:4e:3f:a6:71:72:31:36:73:5e:2e:5d:7e:b3:35:e8:
b9:5d:7f:af:c3:83:a4:d4:d8:8f:3f:34:b7:49:da:f2:ee:4a:
af:3a:22:15:34:66:e1:8f:0e:93:3e:9e:7c:5e:7b:31:4b:0c:
f8:2a:c7:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 20:30:05 2025 by rpki-client