Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/eoD1wEJHLtPytux_2izY3N84WK0.roa
File: eoD1wEJHLtPytux_2izY3N84WK0.roa (raw, json)
Hash identifier: JpmlQ8BeWdKkWA7+xPyhsWmh4I0l0qsO/IK1kw61GVo=
Subject key identifier: 7A:80:F5:C0:42:47:2E:D3:F2:B6:EC:7F:DA:2C:D8:DC:DF:38:58:AD
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 019420682956DF83566C33D1BFED23C2B767
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/eoD1wEJHLtPytux_2izY3N84WK0.roa
Signing time: Wed 01 Jan 2025 05:48:04 +0000
ROA not before: Wed 01 Jan 2025 05:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141968
IP address blocks: 45.158.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:29:56:df:83:56:6c:33:d1:bf:ed:23:c2:b7:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jan 1 05:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a80f5c042472ed3f2b6ec7fda2cd8dcdf3858ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c8:ef:4b:3a:ef:9f:cf:5b:2f:40:ba:ae:51:
05:6a:a9:db:03:fc:ab:a3:33:82:ee:c6:16:96:54:
4b:1a:02:e5:ba:dd:77:20:e9:f3:27:eb:ad:ae:ae:
54:9f:a7:05:ba:b7:ab:f6:22:4e:3e:53:e7:b3:17:
3d:e4:20:94:a5:d6:06:6e:52:17:d6:6d:ea:cc:4f:
db:f4:db:21:ce:b8:84:01:58:c4:11:84:17:f6:ad:
b6:90:f4:f5:e4:50:73:67:40:f2:71:b9:62:41:a6:
84:89:cd:c0:ff:d2:87:9d:62:05:8e:d8:26:3e:f3:
b1:bf:65:bc:76:3b:da:b0:ae:b6:81:8f:b0:26:91:
7a:6f:95:6e:f7:82:d9:cc:d0:f1:fd:20:f1:88:7b:
3a:72:5d:9c:b6:4a:c8:50:71:de:04:0f:cf:f7:b4:
18:ae:d3:20:8b:22:20:04:e9:12:86:c8:46:1a:41:
08:a3:97:1e:13:d6:9c:81:97:fc:8e:bc:59:eb:ec:
65:ee:f1:9f:e3:7c:a3:a3:8f:28:c2:42:a8:12:6f:
69:8a:c9:49:b0:3d:28:e6:aa:b4:83:bd:6d:2e:9f:
0f:18:bf:ce:98:7e:40:73:2e:7e:37:d1:68:df:b7:
44:05:d0:e3:01:c1:fe:e1:d6:76:82:0a:39:da:81:
6d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:80:F5:C0:42:47:2E:D3:F2:B6:EC:7F:DA:2C:D8:DC:DF:38:58:AD
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/eoD1wEJHLtPytux_2izY3N84WK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
88:cb:9d:a4:f9:f0:b0:57:30:02:5c:e5:d2:8c:09:42:a0:77:
07:c0:a8:8c:77:29:15:0f:54:df:04:ce:e1:fa:58:d3:66:2b:
ed:bb:92:ff:37:99:43:65:c2:df:57:bc:d3:15:2d:49:df:6a:
a8:34:1c:92:0a:15:aa:8d:cf:eb:ac:be:c8:23:8a:b6:36:99:
27:1b:90:70:02:ef:41:52:3d:d1:4f:60:81:0b:65:be:f7:07:
9a:84:77:ef:8b:bf:5a:51:9c:5d:79:38:da:49:be:ad:fc:52:
7d:1f:58:63:d8:bc:64:9d:b7:f2:5d:ec:a9:cc:53:16:5a:61:
eb:55:32:4f:7b:39:21:4b:f0:40:18:e6:0b:b2:b5:86:e7:ae:
22:1d:1d:d1:37:c2:d9:9d:cd:eb:aa:80:15:a2:ed:9e:20:37:
e7:fa:4d:9f:9d:45:ea:ea:9d:99:cc:9f:75:0f:d3:82:04:02:
7e:59:6d:d7:36:b8:f6:27:69:0f:6b:cf:26:43:68:3e:71:59:
e0:6f:f4:54:10:e3:83:86:e0:aa:bc:15:6d:4b:40:08:97:db:
a1:9d:71:72:f0:27:49:fd:eb:0e:40:da:d3:30:bb:9e:7b:9f:
e4:ef:51:3a:ea:60:bb:85:c7:cd:10:59:da:9e:44:57:42:46:
dd:33:c3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:48:28 2025 by rpki-client