Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/35WlNYoicXeTaUW3mWXsagVOnPc.roa
File: 35WlNYoicXeTaUW3mWXsagVOnPc.roa (raw, json)
Hash identifier: vhlE4c9NYewGiei7QNQOzx0MpfEcyu07VzFHTp1o4sI=
Subject key identifier: DF:95:A5:35:8A:22:71:77:93:69:45:B7:99:65:EC:6A:05:4E:9C:F7
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 019423D71C7D4CB0E06E1C4B1F13CD4B0781
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/35WlNYoicXeTaUW3mWXsagVOnPc.roa
Signing time: Wed 01 Jan 2025 21:48:07 +0000
ROA not before: Wed 01 Jan 2025 21:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 45.149.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:1c:7d:4c:b0:e0:6e:1c:4b:1f:13:cd:4b:07:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Jan 1 21:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df95a5358a227177936945b79965ec6a054e9cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:4c:ae:7a:66:7d:21:32:0a:64:09:c0:04:
ba:b8:55:6b:03:9e:c6:99:68:fc:02:a1:8a:ea:e4:
05:42:d5:3d:ff:be:27:b0:39:b4:02:75:cb:73:74:
cb:ed:e5:80:59:fa:e1:7b:b6:99:c4:0a:bb:d1:b1:
b6:ba:a2:06:06:88:d1:bd:de:a0:35:e6:ca:52:a9:
0c:a7:bc:8d:77:d4:a6:cc:fd:97:53:3d:c7:7d:6f:
8b:91:1f:93:fe:53:85:2d:e8:5f:0d:78:f4:b7:04:
e3:d8:fb:2a:e1:f3:4d:1c:b0:de:91:a8:6e:fb:86:
f7:53:ed:6d:3e:99:3d:02:08:60:a3:ff:f1:5c:73:
2e:58:7a:8c:2e:cd:bf:7b:aa:b9:95:d4:02:00:90:
69:61:40:df:51:8b:93:1d:d0:92:17:86:86:75:01:
a1:a8:34:a1:12:00:d3:76:f1:b4:8e:11:8f:47:6c:
d0:0d:cf:8f:6c:69:29:bc:27:70:3d:3c:1d:b6:e5:
d0:e5:e3:54:3d:d6:a3:79:52:f0:9b:7c:87:ef:89:
e1:3a:ff:43:b9:cb:80:f4:2a:1f:c0:42:f0:c2:b2:
6c:87:6b:3c:5f:35:72:3b:f6:dd:f6:1d:88:9c:5b:
c5:55:62:bc:b3:b6:11:e0:86:6f:fe:3d:6b:dc:bf:
cb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:95:A5:35:8A:22:71:77:93:69:45:B7:99:65:EC:6A:05:4E:9C:F7
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/35WlNYoicXeTaUW3mWXsagVOnPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.63.0/24
Signature Algorithm: sha256WithRSAEncryption
62:9e:88:4d:7f:ae:e7:80:ce:42:75:ef:90:c1:61:d2:58:88:
10:b5:25:1d:60:b6:50:4b:3f:74:b3:a8:1d:d5:ad:d8:03:bd:
83:36:86:07:e6:f3:6d:33:be:9b:7b:2b:bd:0e:83:b6:1a:3b:
1e:c3:c4:6e:e8:b7:54:ee:67:9a:c2:0c:1d:00:20:78:8d:51:
15:b1:f7:8c:ce:75:cc:03:ee:43:9b:46:53:f5:9c:33:c4:e6:
76:70:9a:a4:ba:36:db:e8:a0:9e:fd:00:1d:95:5b:b9:17:82:
f2:bc:e7:33:34:f1:7a:54:5c:c8:a4:d9:cf:f3:19:ee:85:98:
2c:a2:53:bb:40:b6:8a:a0:87:73:ca:36:d8:d3:b8:ce:60:f3:
19:4d:97:32:9a:af:9f:d5:0b:f7:e4:e7:20:bc:1a:d4:de:41:
a2:f9:44:7b:70:a4:a5:00:f8:30:3d:28:ea:cd:de:50:b8:ec:
1b:02:42:1a:27:bd:35:49:98:ba:4d:16:8b:d6:be:0d:1b:c5:
89:9d:db:6d:b0:57:e1:2b:7d:84:7e:fb:38:35:62:95:75:86:
a0:af:59:56:37:0e:1a:a3:96:af:bd:ae:d3:c5:fa:16:71:60:
a2:75:86:29:b1:ca:c1:37:d0:4c:88:55:93:e9:fd:38:7a:44:
00:1b:2a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:18:47 2025 by rpki-client