Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/VlSRXfaPyjo7UOFEU_IpLwosFxY.roa
File: VlSRXfaPyjo7UOFEU_IpLwosFxY.roa (raw, json)
Hash identifier: F0EfjBRhc0KS+37A8jYJNFEzm2aZl9eDbsnH0KAmygU=
Subject key identifier: 56:54:91:5D:F6:8F:CA:3A:3B:50:E1:44:53:F2:29:2F:0A:2C:17:16
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 01856D786B00611FDA9980301BC451BAB1A3
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/VlSRXfaPyjo7UOFEU_IpLwosFxY.roa
Signing time: Sun 01 Jan 2023 13:14:46 +0000
ROA not before: Sun 01 Jan 2023 13:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 45.95.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:6b:00:61:1f:da:99:80:30:1b:c4:51:ba:b1:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 13:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5654915df68fca3a3b50e14453f2292f0a2c1716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5d:79:69:af:8a:a6:69:ad:8c:ec:e2:e1:cd:
d1:1f:81:8f:1e:52:d6:15:a2:03:f2:ce:ec:d8:56:
c5:44:ea:1b:af:db:09:8d:e3:3f:21:5d:93:c0:96:
ce:aa:84:ea:59:02:38:6c:a2:6e:e2:2f:6e:e8:f9:
17:75:b1:b1:9e:ea:54:71:c8:0a:65:8a:91:28:54:
03:ee:f4:fe:fa:2e:9f:2a:42:f6:b8:cd:ab:3c:b6:
b4:22:39:49:5c:44:4d:da:2e:c2:55:75:93:c1:8a:
a2:b2:61:c2:65:45:06:07:81:ab:8c:88:b2:0e:91:
78:6f:2b:a6:a6:ab:1a:b3:9a:c3:47:16:ab:d9:eb:
d1:37:7e:0b:dc:95:ae:8f:50:39:60:14:e9:30:c3:
c3:c6:6f:8b:b1:6c:a7:f6:1a:76:03:d1:68:ca:38:
9e:75:54:98:b8:85:e5:7e:e9:a5:9b:8b:5f:e0:cc:
cf:15:6a:29:ef:a9:08:ec:75:c0:b1:76:d9:6c:b6:
98:b9:de:d4:38:7d:b0:33:d8:02:5c:3e:a5:76:0f:
5b:98:86:e7:d7:ee:7f:9b:d4:63:44:ed:8c:0f:c0:
c1:04:10:56:da:7e:c6:8f:b0:53:db:8a:6a:01:c4:
ee:68:8d:fc:8e:fb:e4:a0:d8:42:59:bc:89:db:2c:
99:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:54:91:5D:F6:8F:CA:3A:3B:50:E1:44:53:F2:29:2F:0A:2C:17:16
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/VlSRXfaPyjo7UOFEU_IpLwosFxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.213.0/24
Signature Algorithm: sha256WithRSAEncryption
45:39:94:64:51:6c:24:42:91:7a:d5:5b:59:f3:26:a4:e4:fc:
c8:e1:5d:9f:6b:48:7e:37:c1:10:d4:11:eb:6e:1b:9a:40:f8:
66:09:ad:f5:6d:5d:5d:8b:ba:c7:c6:aa:e1:93:af:f9:0a:44:
35:6f:fd:5a:a1:f8:aa:17:94:37:32:d3:55:66:52:55:9d:85:
09:83:67:b9:a7:8e:a3:3b:27:d2:d3:90:6a:d1:a3:1d:13:64:
25:7c:c9:19:f3:41:5b:c9:56:ae:b3:e7:79:13:ea:87:81:d0:
18:36:ed:70:28:30:03:ee:89:64:bf:53:9a:19:47:83:60:59:
37:e7:7e:4c:d7:3c:e2:50:f5:14:51:f0:f6:ca:69:02:39:8e:
26:58:45:7d:e2:32:f1:47:68:8a:af:5a:ac:38:e4:a9:c1:f1:
ff:07:d0:17:f3:8a:08:0b:06:55:27:37:c5:b9:e2:b3:2f:3e:
f5:20:6e:3f:c0:6f:1f:0c:5b:e8:a7:36:8c:4b:75:5b:c3:5a:
42:98:7e:c0:2e:1f:42:db:dc:16:e6:0c:5a:8e:df:01:6f:11:
95:37:86:98:a2:c1:1e:54:ae:c8:b9:45:db:9c:ac:24:4f:0f:
da:5f:ef:8a:f9:3a:07:a1:e8:8e:05:51:5e:39:89:a7:d3:a4:
09:c5:12:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:23 2025 by rpki-client