Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/sUjp8Vbk1NJ1tKKMm6fqgFW1_Pk.roa
File: sUjp8Vbk1NJ1tKKMm6fqgFW1_Pk.roa (raw, json)
Hash identifier: AwTghEyUz1ygJON3SSE5iamV6LXXUA4IHIl1poV+D/c=
Subject key identifier: B1:48:E9:F1:56:E4:D4:D2:75:B4:A2:8C:9B:A7:EA:80:55:B5:FC:F9
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018CC7951E8486668AE6CFC2881FC60FF988
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/sUjp8Vbk1NJ1tKKMm6fqgFW1_Pk.roa
Signing time: Tue 02 Jan 2024 00:31:27 +0000
ROA not before: Tue 02 Jan 2024 00:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.201.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1e:84:86:66:8a:e6:cf:c2:88:1f:c6:0f:f9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 00:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b148e9f156e4d4d275b4a28c9ba7ea8055b5fcf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e8:6c:8f:ab:66:f1:d8:06:cc:3f:0b:00:68:
50:91:56:1a:b8:a7:8d:09:36:f9:ba:78:4a:e2:93:
9d:de:30:2f:b5:9e:fd:92:00:2a:fa:e4:c7:7b:f6:
9d:3c:e9:62:03:c4:6d:53:be:01:b7:2f:bd:e8:99:
05:6f:4a:3b:1b:ca:04:29:b0:9a:b1:c5:3b:ab:b1:
0f:a2:1c:61:80:23:62:32:7c:1c:8e:62:a7:e5:68:
3e:67:d8:18:4c:ef:58:e3:48:57:fb:2e:89:50:0d:
6c:73:5e:4b:05:25:9a:9c:f3:29:6c:2d:e7:d9:78:
f6:4d:4c:94:5a:6d:3f:80:dc:d3:e3:43:2a:3b:68:
90:01:9e:c2:5c:b7:8d:af:80:a3:b6:c9:89:86:cd:
0f:71:52:44:50:b9:b2:de:00:ca:d5:b6:3e:72:36:
e7:d3:3e:e5:5a:cf:7d:68:5b:7c:98:90:f1:e5:52:
39:3e:2a:ca:09:6f:d6:d2:89:b2:24:d1:3e:c2:43:
4c:55:0b:0b:d7:de:ff:86:56:35:80:b9:95:b1:00:
10:12:17:7c:e3:fe:19:f9:17:b4:59:e3:95:d9:68:
6a:ed:7f:45:bb:2c:ed:19:3c:04:ff:fa:1b:7e:ef:
17:34:57:82:f0:89:fe:e9:14:00:61:64:d1:2c:ee:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:48:E9:F1:56:E4:D4:D2:75:B4:A2:8C:9B:A7:EA:80:55:B5:FC:F9
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/sUjp8Vbk1NJ1tKKMm6fqgFW1_Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.3.0/24
45.141.150.0/24
77.83.201.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ae:e4:5e:47:75:a8:4b:02:75:64:d3:da:68:87:13:74:e3:
37:ba:74:70:fb:3d:13:25:40:d8:2a:99:c4:22:29:c8:b5:10:
e0:86:8b:d0:5c:86:8c:0f:78:d1:54:2b:1e:c6:ca:db:25:ca:
80:68:2e:2a:c1:9d:62:27:ed:b7:69:1f:d3:fd:33:65:e5:c0:
c5:72:52:4f:02:3d:7e:af:d6:1b:05:c3:62:99:4a:65:55:fc:
ea:6a:c1:e3:2c:6d:57:e2:ff:9a:dc:65:e4:6a:3a:78:c5:d7:
b4:dd:77:e3:4c:ec:32:79:98:c7:ae:e1:af:94:23:39:83:d9:
08:3c:16:08:9b:1d:31:8a:4d:38:96:69:be:79:87:36:71:72:
a6:40:db:1e:ee:3e:f9:81:a6:b9:46:06:d8:46:76:a6:6b:e9:
95:2b:93:50:21:76:51:4d:b4:7e:fb:bf:8b:2e:7f:0d:93:7d:
1e:4c:95:73:21:6f:e2:c2:c5:92:69:6c:4e:83:9b:01:b0:8c:
db:b1:52:ab:a3:50:5c:ac:84:db:54:89:c7:25:1e:5c:c2:96:
88:ce:11:f5:b9:82:93:bb:fa:27:00:3a:38:0d:97:ac:0e:b0:
c2:f3:9c:99:92:90:71:11:8f:04:25:71:71:70:d4:78:67:17:
f7:87:48:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:45:55 2025 by rpki-client