Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kyyK-fhpEtovb2LzL_4UTsbW2OQ.roa
File: kyyK-fhpEtovb2LzL_4UTsbW2OQ.roa (raw, json)
Hash identifier: 7yRCd76BqXj2UvNReeIQp4DS9dwF8m9MWb2cxqSyVtc=
Subject key identifier: 93:2C:8A:F9:F8:69:12:DA:2F:6F:62:F3:2F:FE:14:4E:C6:D6:D8:E4
Certificate issuer: /CN=787650d0951529b1a817232c12c42e49b889e1b8
Certificate serial: 018B444B97252DD398F0C8BAAC3D92865070
Authority key identifier: 78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kyyK-fhpEtovb2LzL_4UTsbW2OQ.roa
Signing time: Wed 18 Oct 2023 19:38:06 +0000
ROA not before: Wed 18 Oct 2023 19:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 45.150.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:4b:97:25:2d:d3:98:f0:c8:ba:ac:3d:92:86:50:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787650d0951529b1a817232c12c42e49b889e1b8
Validity
Not Before: Oct 18 19:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=932c8af9f86912da2f6f62f32ffe144ec6d6d8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:c6:fd:41:22:e9:1f:43:54:65:b6:a9:8d:
75:5f:d9:f6:06:df:64:69:fa:1a:39:1c:87:ca:cf:
39:da:92:a4:ca:a2:11:a5:fe:79:30:e5:06:18:14:
d8:5c:99:2b:bc:f1:ee:98:b7:1e:36:9c:89:b7:96:
a4:0c:33:42:4d:2e:c9:6c:8e:b9:36:ab:98:dc:d4:
c4:6d:af:da:a3:d8:d3:43:40:86:a2:3e:cf:76:3d:
ec:73:b2:66:63:e9:29:e3:f3:f3:bf:be:bc:f1:ed:
9e:51:e4:e9:b3:79:b5:ae:db:b3:47:c6:e3:bc:d7:
72:d6:fa:8e:b5:75:cb:ee:9c:a7:5a:f3:02:e4:8e:
55:ca:b8:ec:29:c6:34:50:d2:8b:3f:75:36:c2:f0:
0d:2d:ae:a4:15:a1:b0:13:9f:0a:0e:66:c9:dd:32:
9d:51:30:b2:67:a7:69:fe:7a:9f:43:6e:08:df:18:
15:18:9f:ec:e1:2d:85:f8:51:69:aa:f7:c3:bf:e6:
3c:16:29:eb:80:6b:72:4e:28:e0:8f:97:ec:06:51:
2e:09:d5:3c:ed:da:e8:4d:e0:fe:e5:4d:7f:b8:33:
01:76:ae:3b:b8:76:12:bd:8a:52:99:f9:fe:06:65:
d8:af:e0:3c:eb:e6:87:fc:36:0d:23:f8:0c:91:e7:
73:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2C:8A:F9:F8:69:12:DA:2F:6F:62:F3:2F:FE:14:4E:C6:D6:D8:E4
X509v3 Authority Key Identifier:
keyid:78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/kyyK-fhpEtovb2LzL_4UTsbW2OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.149.0/24
Signature Algorithm: sha256WithRSAEncryption
71:4e:bc:b0:8e:cf:4d:69:ba:d0:26:94:09:7e:64:45:6d:63:
ea:cd:67:0c:31:10:11:b7:62:70:39:c7:59:ab:f3:c3:86:5d:
d2:b6:49:5e:e6:35:f5:d6:7c:05:01:34:2c:56:61:08:f4:68:
a6:6e:91:49:a5:ed:43:8c:df:58:a1:71:09:2f:8d:0e:df:b0:
7e:69:23:80:82:fa:4f:28:9c:ba:54:3c:5d:62:98:f1:55:92:
69:ea:88:42:18:e0:b7:05:63:6b:b5:93:bb:11:57:ea:5f:70:
cd:51:52:c2:9f:c3:22:bf:2a:3b:9f:e8:34:e0:35:3f:f9:02:
60:8f:ef:7d:84:03:cf:70:cd:b5:af:68:d0:f4:c3:bc:83:8a:
14:95:ca:c8:92:c9:69:20:6d:91:04:14:f9:f9:95:d4:7d:cb:
2f:db:0d:be:da:25:c8:46:ae:60:c3:01:8e:08:6c:a9:28:7c:
68:98:8a:ce:14:74:ad:18:99:41:82:cf:70:07:3a:04:58:54:
84:4b:ca:7f:0b:9b:96:40:a7:4c:2d:3c:3c:4b:95:81:79:71:
8c:d1:94:69:84:c5:a8:f4:6e:27:74:29:2e:54:90:44:18:15:
ec:82:b6:a3:d5:63:8d:ad:90:b0:87:31:2e:40:ab:f1:91:71:
a8:f7:73:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:03 2025 by rpki-client