Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/uyxaE95oU4fBbP7RDSGAj2-cD9A.roa
File: uyxaE95oU4fBbP7RDSGAj2-cD9A.roa (raw, json)
Hash identifier: iGYK8C8eMF3QQsRpFsA3Az4G1fYKbyERPiw503meYr8=
Subject key identifier: BB:2C:5A:13:DE:68:53:87:C1:6C:FE:D1:0D:21:80:8F:6F:9C:0F:D0
Certificate issuer: /CN=787650d0951529b1a817232c12c42e49b889e1b8
Certificate serial: 018CC6B9107BC4D6E2B4D50E5494CD0B7413
Authority key identifier: 78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/uyxaE95oU4fBbP7RDSGAj2-cD9A.roa
Signing time: Mon 01 Jan 2024 20:31:06 +0000
ROA not before: Mon 01 Jan 2024 20:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200019
IP address blocks: 45.150.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:10:7b:c4:d6:e2:b4:d5:0e:54:94:cd:0b:74:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787650d0951529b1a817232c12c42e49b889e1b8
Validity
Not Before: Jan 1 20:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb2c5a13de685387c16cfed10d21808f6f9c0fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c6:b3:12:ff:57:ac:bf:6a:dc:54:83:34:71:
a4:a1:ef:47:44:13:df:4f:fa:4b:4a:f0:34:16:eb:
c9:d5:62:a6:17:fd:30:73:61:97:a6:da:96:97:dc:
8e:76:eb:2a:7c:3c:9a:94:98:d6:b5:54:33:be:22:
4f:a2:31:cf:5a:1b:cb:45:d9:b6:30:ac:77:9d:dd:
78:86:61:9f:87:81:28:3b:6e:02:d8:78:02:c0:6a:
af:e6:e9:b6:40:90:cb:23:a8:27:cf:a8:61:e6:d8:
36:63:f0:54:4e:4b:9b:a3:d3:b3:96:a3:36:6d:db:
73:3d:9e:a3:93:59:54:e9:f3:a8:03:48:01:c6:cd:
de:20:6b:20:4e:a0:28:1f:c8:f2:e3:74:14:50:0c:
a8:42:e5:0f:3a:e6:7b:7a:d6:9f:8e:79:eb:ad:d4:
08:86:53:21:a0:20:98:99:fc:e9:4f:08:8c:84:ee:
b8:e6:23:dd:44:d4:2b:57:d1:2c:9e:ad:57:d6:00:
4e:95:ce:1f:12:f5:69:80:4c:4c:0f:a4:6b:2f:90:
14:8b:a3:30:11:1a:98:08:30:47:7e:1d:5f:0f:87:
cb:9e:bf:4d:3c:6e:ea:c3:90:7c:59:81:a4:c5:f5:
98:d9:f6:60:e4:95:7c:82:53:43:5e:18:e2:41:5a:
28:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2C:5A:13:DE:68:53:87:C1:6C:FE:D1:0D:21:80:8F:6F:9C:0F:D0
X509v3 Authority Key Identifier:
keyid:78:76:50:D0:95:15:29:B1:A8:17:23:2C:12:C4:2E:49:B8:89:E1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/uyxaE95oU4fBbP7RDSGAj2-cD9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0735e3-00aa-405d-89bb-96a404c790b7/1/eHZQ0JUVKbGoFyMsEsQuSbiJ4bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.149.0/24
Signature Algorithm: sha256WithRSAEncryption
14:49:d9:3b:49:d7:66:02:30:4f:98:bf:44:36:64:f4:f3:41:
7e:f0:6d:b4:cc:fb:88:33:66:63:2d:71:0d:52:02:b5:de:1e:
e5:bf:ca:c1:21:dc:89:9b:08:b8:c7:b0:e7:bf:75:ca:41:33:
2e:71:10:38:41:f4:aa:0a:7d:13:70:71:96:5b:ce:cd:95:95:
8d:19:3a:64:5d:d4:63:2b:9c:06:08:70:6c:14:4c:93:67:82:
26:48:55:17:d7:e5:b5:f7:99:4f:f0:65:bc:ef:98:31:c8:13:
a5:46:8d:20:5f:1b:7b:90:b0:5f:c3:ea:ed:bb:0f:e8:6c:73:
ba:9b:24:63:93:c4:e7:3c:3e:5a:b4:84:61:d3:b4:1b:68:51:
8a:f2:58:67:56:6d:db:62:16:24:89:cd:5d:7c:cb:8f:b0:f2:
28:b0:18:4f:b0:71:8b:88:52:bb:78:5e:94:cc:8c:82:d2:bf:
5d:10:df:f1:f1:e3:54:b3:c3:32:f0:f0:14:fd:7f:0f:df:30:
e1:9c:c0:5a:05:7e:ec:c8:0e:9c:91:cb:ac:a9:b8:25:d6:ac:
cf:dc:48:ca:3c:41:e0:c4:67:7a:ab:0c:74:18:71:72:e1:ba:
fc:14:6e:e2:e5:58:8c:02:dd:24:d4:54:6f:22:b2:a4:52:22:
c7:59:7a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:26:23 2025 by rpki-client