Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/4TefOlatmM0RZvlgyykepaTA69w.roa
File: 4TefOlatmM0RZvlgyykepaTA69w.roa (raw, json)
Hash identifier: oK3ggt3FwEGdGg67HpifWxggQ4sHuczhuCdiLpHFNGo=
Subject key identifier: E1:37:9F:3A:56:AD:98:CD:11:66:F9:60:CB:29:1E:A5:A4:C0:EB:DC
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0194266B5C83F120048AB9AE3721DF931D35
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/4TefOlatmM0RZvlgyykepaTA69w.roa
Signing time: Thu 02 Jan 2025 09:49:17 +0000
ROA not before: Thu 02 Jan 2025 09:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 272073
IP address blocks: 45.153.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:5c:83:f1:20:04:8a:b9:ae:37:21:df:93:1d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 09:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e1379f3a56ad98cd1166f960cb291ea5a4c0ebdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:4d:bb:6f:96:25:ad:83:e7:a6:55:e1:43:
b9:53:05:4a:29:ad:b4:02:b9:21:7c:13:8e:c9:c0:
b3:89:81:5b:2d:b3:e4:0f:fc:43:2a:1a:b5:32:d4:
25:76:55:06:bc:cc:ca:81:c5:26:a9:b7:f7:d9:9c:
ab:c0:59:45:3a:7a:ec:11:94:9c:bd:35:f6:03:28:
9a:c0:75:be:1f:65:6f:4f:05:ac:55:70:cb:d8:6a:
bd:fe:b9:d9:1c:eb:5c:42:4e:04:0c:ff:a9:8a:c4:
73:0e:2a:d6:27:5a:de:7c:7a:c2:21:b6:3b:25:fb:
ba:6f:3a:92:a9:e0:28:34:de:a2:ae:17:92:60:91:
21:28:51:ec:24:d7:e8:89:be:aa:f0:02:94:87:f0:
65:d7:c0:9b:64:4c:36:38:03:88:5a:9b:34:ad:3d:
8d:d3:04:e5:17:ca:13:7b:60:98:08:f8:f9:3e:61:
54:37:d9:5b:05:e6:43:d1:88:d2:04:d7:09:1a:d7:
cf:f5:f4:b2:3c:c2:e2:bd:f3:7f:44:32:1e:d5:61:
13:c8:71:2b:3f:bc:c7:aa:b7:58:a4:aa:80:25:20:
e9:ad:11:52:c3:88:15:ea:7b:40:ea:aa:4e:2f:da:
d2:62:2c:09:a0:e6:f8:04:9f:3d:06:98:56:07:cc:
bc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:37:9F:3A:56:AD:98:CD:11:66:F9:60:CB:29:1E:A5:A4:C0:EB:DC
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/4TefOlatmM0RZvlgyykepaTA69w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.165.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:74:01:d4:50:b0:8a:0a:49:4e:1f:27:bc:99:e2:60:a4:82:
bd:84:bf:87:2b:a9:66:cb:80:6d:41:1d:3a:f3:80:af:68:20:
c2:29:16:c5:aa:8a:3a:72:f5:57:f3:aa:f3:3c:48:4c:82:b0:
03:db:82:de:eb:2e:31:8e:2b:e6:64:80:04:ff:77:58:1f:1d:
52:a0:c1:cc:48:f8:9d:71:e6:66:c9:cb:56:3b:3d:e2:aa:92:
cf:3a:dd:3b:7b:08:87:ff:7e:37:12:1f:eb:e0:5e:1b:3f:d8:
70:06:5d:08:fd:f7:36:53:e2:a9:f6:1b:6f:8d:35:95:46:75:
d8:30:89:8e:76:13:13:be:93:23:99:97:e0:2f:72:b4:70:39:
a4:35:48:40:5c:b0:f5:32:50:70:6a:df:99:4d:a3:74:54:90:
c4:dd:64:25:69:d3:88:69:fd:12:9b:15:4b:74:a0:53:8c:5f:
f5:af:d1:41:eb:2d:f7:bd:34:f9:c6:d0:42:c2:1a:b2:68:f3:
eb:8a:fc:ce:db:ec:7d:12:06:22:0c:f5:00:66:7e:66:c5:26:
a5:10:68:d2:92:f7:f8:5e:f1:2f:5a:56:42:e6:b9:41:c8:cb:
98:f9:d6:2c:45:19:52:43:9c:52:2a:7a:51:b7:7d:f5:6c:41:
02:f4:9d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:39:48 2025 by rpki-client