Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/XHlN3RpeQmFr0S8d8kRmm2_r9Gw.roa
File: XHlN3RpeQmFr0S8d8kRmm2_r9Gw.roa (raw, json)
Hash identifier: 2CQIDqSJfPO5Zu/OEOhrMlJ6AbMdAt7LicT/EFEbIc8=
Subject key identifier: 5C:79:4D:DD:1A:5E:42:61:6B:D1:2F:1D:F2:44:66:9B:6F:EB:F4:6C
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 019425FD9FB30E182C36447E5BB3B8CD1670
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/XHlN3RpeQmFr0S8d8kRmm2_r9Gw.roa
Signing time: Thu 02 Jan 2025 07:49:25 +0000
ROA not before: Thu 02 Jan 2025 07:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 40676
IP address blocks: 45.150.224.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:9f:b3:0e:18:2c:36:44:7e:5b:b3:b8:cd:16:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 2 07:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5c794ddd1a5e42616bd12f1df244669b6febf46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:d8:3e:51:ac:0f:60:be:da:71:e8:70:29:
0b:19:82:4a:09:26:1f:a9:1b:13:03:7b:e9:f0:d4:
30:55:05:2f:14:4f:13:67:da:2e:70:f4:80:f4:db:
73:02:20:b3:d5:c1:01:40:36:3a:7f:27:21:f4:ad:
ed:20:68:60:8a:38:54:2a:6b:36:e1:fc:8a:a1:98:
6c:aa:f7:6c:61:99:e6:19:9f:a3:1b:a4:f0:c6:11:
da:01:67:6b:7a:f4:01:1a:0e:7f:11:0c:a3:45:12:
71:40:72:f1:a8:fd:84:a9:38:44:eb:ed:c1:37:45:
c8:99:2a:ac:23:d2:02:4d:cf:97:35:91:5e:a3:c8:
99:2d:f1:88:6d:7e:16:2f:16:ef:cd:99:d0:bf:72:
1f:f4:ed:26:0b:03:05:2b:03:c2:cd:df:93:aa:33:
87:17:66:30:b7:6d:17:22:d6:cd:08:63:86:f4:da:
e3:20:0f:6e:46:7b:af:33:08:ff:b9:21:7f:36:20:
95:1c:0a:e4:9e:3e:95:e5:ff:1c:34:b4:aa:c5:f1:
b8:2a:af:aa:91:2e:6b:4d:91:1d:52:49:69:f1:db:
55:8d:94:19:e8:ca:44:c3:78:e5:15:a0:d7:6a:8a:
5a:c5:0b:ca:53:90:37:8a:34:51:33:0e:ae:9c:ba:
aa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:79:4D:DD:1A:5E:42:61:6B:D1:2F:1D:F2:44:66:9B:6F:EB:F4:6C
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/XHlN3RpeQmFr0S8d8kRmm2_r9Gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.224.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4e:bb:e9:d3:f8:4e:7f:53:fe:52:82:ae:d4:67:3d:7d:86:
89:18:75:23:f8:0e:49:78:93:8a:60:32:e7:f7:90:92:e7:9b:
c3:dd:52:30:29:c3:8e:e5:aa:64:db:a1:e0:ea:b9:a5:91:c6:
08:ba:e1:6f:da:3d:c0:47:8d:12:20:06:b2:16:46:e3:6b:05:
1f:25:f2:b0:08:16:b9:d1:62:4c:9b:d9:75:ff:d9:03:62:69:
cf:65:5c:54:7c:09:6a:d4:ea:b7:19:99:eb:7e:ab:0f:03:c5:
8c:71:7d:d6:b8:75:ca:b3:17:c8:4e:10:b4:6b:5b:b0:97:4a:
f9:c3:6d:bb:ed:1b:b3:9a:e0:0d:0b:05:4b:21:d9:05:c5:0d:
e5:e3:b6:d4:2f:01:63:80:9d:7e:66:79:f6:2b:06:fc:57:ce:
c5:99:55:01:e6:06:32:42:6a:cd:62:d0:37:8d:87:c2:69:2d:
c7:c1:15:8c:4d:4c:25:0d:3e:7c:84:c3:f2:62:42:fc:ff:b6:
87:64:a0:3c:ac:c1:40:bf:86:02:8d:66:16:4f:8f:4b:5f:93:
db:16:bf:66:d6:e4:53:c6:54:d5:20:c8:cd:b2:e0:8a:51:62:
cb:a2:d2:ab:fd:a7:d1:be:4f:1b:17:cf:62:dd:f7:13:1a:1c:
3c:28:f2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:07:57 2025 by rpki-client