Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ejUD-h70ULRwu2KpJSNUG--D6Y8.roa
File: ejUD-h70ULRwu2KpJSNUG--D6Y8.roa (raw, json)
Hash identifier: DgQvxbHTStqpf4msKe5B9Dp12ajj8RdECqzcTAUyYGY=
Subject key identifier: 7A:35:03:FA:1E:F4:50:B4:70:BB:62:A9:25:23:54:1B:EF:83:E9:8F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019421B24103D233ADDCE8EEB93B4CC6D5E0
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ejUD-h70ULRwu2KpJSNUG--D6Y8.roa
Signing time: Wed 01 Jan 2025 11:48:37 +0000
ROA not before: Wed 01 Jan 2025 11:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 151338
IP address blocks: 45.8.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:41:03:d2:33:ad:dc:e8:ee:b9:3b:4c:c6:d5:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 11:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a3503fa1ef450b470bb62a92523541bef83e98f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0c:5c:12:6a:98:3d:46:a5:6a:d4:ae:8c:4d:
a9:03:8a:b0:90:a2:53:34:d7:70:de:f4:8b:5c:5f:
ba:bc:0a:cf:00:56:8e:3f:5b:d6:f5:a7:28:6b:45:
d2:78:57:b9:0c:73:4b:c3:ac:0a:e8:6e:b6:62:fe:
dd:ad:d1:15:0a:24:27:90:32:82:ae:95:b3:96:29:
8e:a9:62:da:6b:c2:03:82:a9:67:f1:12:1a:68:ac:
21:0a:da:46:2b:07:14:17:b9:a6:b6:6f:82:6d:62:
fb:b5:1e:01:f1:47:49:a9:32:c5:84:0f:12:6d:ab:
db:d7:86:23:9b:09:9c:c0:59:d2:0c:0b:80:52:3f:
fe:47:78:b7:b5:60:78:9d:f6:c0:e9:2c:30:d1:24:
46:e1:37:b8:31:4c:06:4c:07:31:9e:29:ae:99:d5:
66:fb:c3:2d:df:84:19:92:93:de:28:f2:23:4d:bb:
44:d0:37:0f:75:72:f3:b1:09:d1:65:98:b8:59:6a:
ed:37:79:da:23:b9:df:12:2e:c9:f0:ac:76:54:a1:
c5:7b:18:35:ec:90:8a:ea:fa:83:94:7f:27:f6:0a:
bc:70:c8:f4:8d:d7:a3:dd:f9:f7:b7:c3:9c:34:6c:
dd:38:17:0f:89:92:02:68:03:45:c2:35:44:80:b2:
7c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:35:03:FA:1E:F4:50:B4:70:BB:62:A9:25:23:54:1B:EF:83:E9:8F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ejUD-h70ULRwu2KpJSNUG--D6Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.253.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d9:9b:ee:7d:ef:f6:d4:d8:b7:52:92:4b:df:43:da:1d:47:
bb:02:e3:d2:38:02:64:fa:79:00:76:3d:f0:94:2d:3d:77:18:
33:98:60:db:7a:3d:e6:79:00:c3:26:c0:2a:0b:f9:6c:ab:22:
3d:bf:42:8d:4c:7b:fc:f7:8c:92:4e:2b:8d:f6:07:0b:d9:ae:
e6:ae:d7:61:51:d2:de:66:3a:5f:8f:b2:ee:f1:a8:b4:6d:7a:
1b:fb:e2:19:f7:a4:17:73:27:b3:a6:43:32:46:73:43:00:4c:
e4:f9:13:f0:ca:18:a6:a6:94:0a:5a:93:e9:80:82:4c:4c:1d:
e7:15:1d:1f:a6:e5:cd:34:b0:73:80:c8:16:5d:b3:f6:ab:bd:
0d:2e:67:0b:8d:50:aa:0c:98:99:0e:b7:cc:df:17:55:fa:04:
e3:1d:af:7e:0c:31:1d:d5:e2:09:c1:47:c2:62:37:7d:6d:26:
16:d2:c0:7b:3e:ab:89:70:a9:05:5f:00:f2:83:a0:28:67:34:
33:38:a5:70:1d:3f:08:7d:95:36:25:77:d3:b4:b4:ce:78:75:
a1:11:74:b2:65:69:2d:90:f3:83:eb:67:58:fd:e4:62:9a:6e:
7d:c0:b4:f0:b5:32:8d:25:8c:70:cb:65:a3:98:03:db:ba:20:
9c:3f:da:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:05:43 2025 by rpki-client