Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/440KlmhicGOs29yB_975PoPJiV0.roa
File: 440KlmhicGOs29yB_975PoPJiV0.roa (raw, json)
Hash identifier: xt6mPstjfwiaJw1ysZqWn/P5PuQo5i7RKTYj7pGmZKk=
Subject key identifier: E3:8D:0A:96:68:62:70:63:AC:DB:DC:81:FF:DE:F9:3E:83:C9:89:5D
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018CC7951F04F4544B595E37D3B395C7FE0D
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/440KlmhicGOs29yB_975PoPJiV0.roa
Signing time: Tue 02 Jan 2024 00:31:27 +0000
ROA not before: Tue 02 Jan 2024 00:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47516
IP address blocks: 45.131.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1f:04:f4:54:4b:59:5e:37:d3:b3:95:c7:fe:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 00:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e38d0a9668627063acdbdc81ffdef93e83c9895d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:39:a7:1f:d7:03:46:75:53:3c:da:64:54:f8:
05:df:e1:0b:0b:2e:a9:ab:b7:d5:15:96:c8:ba:bf:
84:01:e0:87:4e:f2:9e:de:5f:62:a1:0d:9b:9d:24:
be:e4:3e:5d:29:7a:90:ea:4d:e9:d4:49:82:da:aa:
a2:6f:52:bd:33:a0:e1:61:ba:a5:02:88:03:e3:23:
20:c8:5b:97:ed:e1:89:00:2e:ca:aa:22:a7:50:85:
a1:3d:03:de:74:5d:75:03:b0:38:5f:bd:6d:c5:94:
f0:de:e2:9e:47:f1:c5:77:fe:7b:98:d0:53:42:c8:
37:22:da:99:00:aa:20:7f:b8:8a:24:ae:4d:62:89:
d0:3b:60:c2:e6:16:8e:7a:f4:db:55:3d:4d:f8:8d:
5a:b1:6a:b2:6f:69:87:66:19:b6:f0:09:b0:ed:ff:
9d:76:14:83:c0:84:ec:fd:38:99:63:1b:7d:f6:86:
71:cc:07:7c:b6:7e:c7:62:64:a8:7e:f7:c9:10:23:
39:3f:53:65:85:fd:4b:f5:23:ec:5d:58:e0:e6:b1:
77:ac:70:85:22:98:2c:c4:bd:1a:86:21:aa:20:83:
97:16:42:91:2a:8a:f0:c6:49:bf:2b:83:1f:48:2f:
33:96:9b:e8:d8:a2:5f:de:73:6c:cd:b5:c7:9d:0a:
d4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8D:0A:96:68:62:70:63:AC:DB:DC:81:FF:DE:F9:3E:83:C9:89:5D
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/440KlmhicGOs29yB_975PoPJiV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.2.0/24
Signature Algorithm: sha256WithRSAEncryption
82:1d:12:15:9f:4f:d8:6e:f2:67:fa:c3:ca:32:85:8d:28:88:
a9:f9:e1:27:8c:70:a1:0f:a9:fd:c5:e7:7f:3f:0d:af:3c:5f:
d8:18:62:48:99:a5:26:d6:dd:14:88:08:9a:c4:5b:b2:37:01:
31:c9:95:af:47:ea:ae:d1:ac:5d:96:81:0c:7d:bd:1d:d2:16:
31:c5:7b:1a:30:94:56:4d:c2:da:ba:90:2a:da:39:7f:82:07:
d7:58:9c:66:a4:cb:d8:34:41:08:4f:81:13:17:b1:30:87:f6:
f5:27:85:f7:ff:70:70:ec:99:e8:c4:4d:5b:ea:c5:57:f8:39:
0f:f7:c4:00:c1:f7:da:d0:17:a8:1b:86:c4:ef:7f:ce:ea:d4:
eb:81:c3:0b:9a:40:77:a4:25:1f:91:7f:d4:5f:ca:2a:07:1a:
72:eb:c5:99:92:f8:dd:3d:b6:51:de:8e:a9:a2:73:10:a7:5a:
4b:20:91:af:da:d4:f6:da:a5:2a:4a:9e:d4:57:26:8a:50:b0:
eb:48:79:60:e3:e9:5b:34:f7:11:38:84:42:fc:42:28:05:8d:
51:0b:43:fb:a6:4c:46:17:fe:c0:1c:75:4b:6d:94:bf:fc:6b:
29:2a:ec:e0:10:5b:b4:6c:00:e2:5e:6d:2b:78:f0:9f:ff:ea:
48:03:c4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:36 2025 by rpki-client