Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/RMUAOIvwf3inYjouQKpjmE3cbu4.roa
File: RMUAOIvwf3inYjouQKpjmE3cbu4.roa (raw, json)
Hash identifier: omzNp6f6UVs5Cn6DCoPwZ62vmGvmnzR01Dhy9oEX3Us=
Subject key identifier: 44:C5:00:38:8B:F0:7F:78:A7:62:3A:2E:40:AA:63:98:4D:DC:6E:EE
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 019566FC84439E9ACBDEF0D4C61024D71EF7
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/RMUAOIvwf3inYjouQKpjmE3cbu4.roa
Signing time: Wed 05 Mar 2025 15:46:19 +0000
ROA not before: Wed 05 Mar 2025 15:46:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209946
IP address blocks: 45.143.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:66:fc:84:43:9e:9a:cb:de:f0:d4:c6:10:24:d7:1e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Mar 5 15:46:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=44c500388bf07f78a7623a2e40aa63984ddc6eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bd:d5:9f:18:30:55:15:4f:0c:7f:ac:ac:b2:
bf:87:1a:28:07:14:56:0c:1d:39:84:93:d1:ad:3e:
55:43:6e:70:c3:bb:e6:89:9a:7f:1f:c7:51:87:e0:
86:44:01:ae:2e:9a:06:bb:7d:b0:fc:8b:18:5f:e8:
12:6e:5e:0f:9d:3c:a4:52:91:55:31:c0:99:8c:86:
19:9c:c7:93:64:63:ff:7e:12:ac:de:24:0b:f6:d0:
8b:9a:6e:e7:aa:13:be:6f:e8:c1:fb:a9:a0:0f:7d:
1b:84:d8:f5:ac:c9:d0:82:10:03:fc:88:cd:b5:31:
e0:82:a8:2f:05:a7:46:82:1f:8c:38:12:97:f1:37:
e1:8a:59:c9:e1:48:5c:74:97:ec:32:c7:d7:b5:5b:
a4:32:9c:6f:26:d0:f3:64:ae:1f:6e:cb:90:80:40:
dd:67:09:6e:7a:3d:61:6c:f9:c5:c2:5b:78:9e:76:
c9:98:21:03:c1:0e:6b:34:f1:a1:6d:a3:6b:86:c2:
e5:73:0b:1f:85:01:5e:5c:1a:dd:39:38:35:59:6d:
ea:da:0e:b8:2c:39:6f:70:42:ab:ca:a1:47:57:93:
f0:09:ad:c7:c2:6b:12:16:06:ef:ed:62:47:47:23:
df:c8:40:ef:b5:d6:08:d7:b8:19:f1:fa:63:5b:8e:
0e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C5:00:38:8B:F0:7F:78:A7:62:3A:2E:40:AA:63:98:4D:DC:6E:EE
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/RMUAOIvwf3inYjouQKpjmE3cbu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.201.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0d:54:1d:45:07:09:0e:69:17:95:c0:b9:e9:1d:1b:0b:07:
c4:6f:f3:90:73:dd:cc:51:64:60:62:c7:6b:94:aa:28:cd:c4:
e4:09:ca:3d:63:12:40:d1:1a:78:0f:25:1d:c1:a3:4e:af:95:
2f:eb:3e:22:4f:83:1c:09:20:5d:27:c3:ac:ad:77:04:0d:cf:
6f:9d:d6:ea:de:74:c7:dc:12:73:9f:31:34:04:4d:2d:1f:8b:
b5:ed:82:1d:3e:df:71:a9:84:01:c8:40:d6:73:39:4f:ee:5b:
01:58:42:1f:14:a9:56:4e:5b:73:8b:3e:cc:e8:b2:59:39:a3:
e5:e8:99:a0:6c:eb:f8:98:3a:b3:88:72:b7:ac:86:78:56:d1:
2b:5e:a7:ef:43:67:2d:ef:f3:6f:26:23:c8:9f:5f:22:c4:03:
71:10:53:d1:82:a4:23:00:72:18:19:cc:18:90:13:ca:10:f3:
85:bc:ae:86:c8:4d:b8:86:da:36:64:a3:b5:cb:34:6d:f7:b1:
78:75:7d:30:e3:82:57:18:ab:ea:b6:37:84:5d:82:49:c4:30:
ae:a4:39:b4:48:fa:9f:7d:93:8d:e3:ea:c4:93:8e:90:c4:96:
8f:09:19:20:5b:df:c7:54:32:ac:c8:cb:97:bf:b0:8f:7d:3a:
bc:f3:0d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:15:23 2025 by rpki-client