Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/VMnqu_Y6_MWed--gXvHPTeNQe8A.roa
File: VMnqu_Y6_MWed--gXvHPTeNQe8A.roa (raw, json)
Hash identifier: k3NthfxNQn0fBiDbC34HWdYCVNI0fqLKtp48s3ufzfk=
Subject key identifier: 54:C9:EA:BB:F6:3A:FC:C5:9E:77:EF:A0:5E:F1:CF:4D:E3:50:7B:C0
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 0186791B4B1A34B15BC4E96B64A4288F5565
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/VMnqu_Y6_MWed--gXvHPTeNQe8A.roa
Signing time: Wed 22 Feb 2023 12:31:17 +0000
ROA not before: Wed 22 Feb 2023 12:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 45.13.250.0/24 maxlen: 24
45.13.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:1b:4b:1a:34:b1:5b:c4:e9:6b:64:a4:28:8f:55:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Feb 22 12:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54c9eabbf63afcc59e77efa05ef1cf4de3507bc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:14:6b:0e:7e:e3:b2:3a:81:b8:39:0a:42:06:
bd:5d:74:63:62:87:cd:26:01:9c:e7:4d:5d:b6:4c:
7e:e9:28:f3:6b:d8:c4:e1:af:d9:8d:92:52:36:a3:
8e:8d:a8:96:4c:64:9f:42:98:08:d6:01:86:71:50:
c5:ea:a5:8e:91:50:9f:b6:a9:60:cd:1c:23:da:f2:
62:9a:42:24:c8:22:e7:6e:ac:a3:27:17:04:82:e1:
59:86:da:42:18:da:9a:ab:26:b9:16:83:48:0e:59:
85:7d:bd:6d:8d:e5:cd:d3:db:fb:94:83:09:12:f0:
f3:f5:73:9e:82:97:66:fa:7d:84:87:03:bb:9b:1d:
d3:7e:be:e0:e6:50:0d:c8:9f:5d:dd:c6:35:fb:d1:
23:60:32:67:9c:bb:06:f6:5b:a6:b1:82:b2:7d:57:
0a:6e:bc:db:7d:4f:b9:5c:a4:c7:c6:b5:60:80:e5:
74:b0:1d:47:d7:a1:39:91:7a:9d:44:61:9d:57:ff:
71:63:6a:48:25:1b:3d:bb:26:7a:78:48:9e:39:50:
f9:2f:87:83:03:87:59:f1:ee:d3:9c:23:95:79:61:
8a:10:f0:cd:65:e7:50:95:3b:10:e1:37:9b:9c:4e:
01:21:e3:3e:de:ba:9e:ca:a9:e4:5a:bb:d0:b6:c6:
89:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C9:EA:BB:F6:3A:FC:C5:9E:77:EF:A0:5E:F1:CF:4D:E3:50:7B:C0
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/VMnqu_Y6_MWed--gXvHPTeNQe8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.250.0/23
Signature Algorithm: sha256WithRSAEncryption
56:2f:bb:52:dc:d0:c3:49:dc:e0:2e:f8:b3:51:f3:26:43:db:
61:52:4a:9a:d8:b5:9e:41:99:c5:03:76:78:b3:fe:08:ad:05:
66:f6:3f:4d:99:d1:63:25:b5:6b:92:17:d2:0b:9d:75:d2:3b:
91:42:d9:16:a3:df:39:55:af:61:9d:45:53:5d:19:e5:2f:29:
72:c8:8a:55:4c:8a:70:f9:42:28:d9:45:d2:03:b3:af:b4:c6:
82:38:2a:c3:54:bd:da:94:a7:3d:b4:7a:2b:22:a0:a0:05:42:
02:2f:bc:2e:6f:da:6d:1e:a6:73:46:41:b3:fa:fb:82:27:61:
ae:3f:e4:d9:9a:f4:e0:cc:81:1a:e8:64:59:ed:16:00:5b:0b:
56:60:a7:3a:82:c3:4a:89:d2:b6:6f:52:5e:3c:85:37:72:66:
9f:aa:de:ab:41:0d:97:86:3f:e8:8d:9f:d6:b4:13:cb:84:c6:
ad:df:3a:c9:2e:c8:43:30:a4:fe:dd:ec:fb:78:48:03:c2:01:
59:65:b1:11:29:4c:d2:de:5d:71:3a:00:38:7c:b2:b7:06:d9:
f5:93:1c:ae:64:18:b9:1b:9e:78:ec:24:ad:1b:c6:3a:56:93:
4e:40:d3:d2:aa:4a:e6:5d:16:0f:d2:36:d2:2e:6c:72:3f:e6:
7a:4d:f7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:28:23 2025 by rpki-client