Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/8AIOf5iiWGq0P893PCbTNf2BkGU.roa
File: 8AIOf5iiWGq0P893PCbTNf2BkGU.roa (raw, json)
Hash identifier: HBMubVYts6z6OX4Jo+t8Ek09rhVu9H6F5CshJadR9AA=
Subject key identifier: F0:02:0E:7F:98:A2:58:6A:B4:3F:CF:77:3C:26:D3:35:FD:81:90:65
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0194266B5511F9FC925FE2E52F397DA02488
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/8AIOf5iiWGq0P893PCbTNf2BkGU.roa
Signing time: Thu 02 Jan 2025 09:49:15 +0000
ROA not before: Thu 02 Jan 2025 09:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19437
IP address blocks: 45.153.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:55:11:f9:fc:92:5f:e2:e5:2f:39:7d:a0:24:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 09:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0020e7f98a2586ab43fcf773c26d335fd819065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ad:23:e3:31:2b:d0:b8:cc:f7:97:03:fd:e3:
f1:4d:a2:52:ee:33:bd:87:5b:91:35:cb:1e:35:a6:
b9:a3:a1:ee:fe:0d:05:cb:a2:b2:db:dc:b5:b4:c0:
fd:c3:cf:b4:e9:79:54:fc:8e:fc:71:51:c9:cd:8f:
fb:6c:26:38:7a:10:2b:43:1d:47:c4:f0:32:8c:84:
b4:92:b8:0a:c6:b9:58:be:d5:f3:43:b5:6c:48:db:
3f:58:43:91:3d:37:ea:be:8d:8a:ac:8c:47:cd:7e:
a3:09:03:53:a7:d5:51:37:b3:7c:40:09:91:d5:3c:
e1:84:3a:e6:48:7a:85:a7:ae:72:58:c4:52:41:76:
c4:5d:ee:ac:2d:0e:d1:08:ab:bc:52:4e:bd:c7:d5:
b6:a2:36:9c:6e:c9:eb:29:ba:61:10:16:9e:0d:d8:
50:de:6a:3b:0a:2c:74:db:9c:aa:89:39:1d:12:1d:
f0:d9:42:4e:22:1c:ad:96:7b:ef:a5:3e:30:26:95:
fb:a3:96:bd:04:5d:d1:a2:f7:a7:0e:56:48:e6:d8:
0f:d3:36:ba:dc:e6:95:13:f4:f4:5e:d4:55:f1:0a:
a6:48:75:d9:d7:50:da:d8:6e:ec:ca:bb:de:31:98:
6a:24:74:81:c9:77:54:3e:31:03:50:ef:5b:c7:6d:
3e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:02:0E:7F:98:A2:58:6A:B4:3F:CF:77:3C:26:D3:35:FD:81:90:65
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/8AIOf5iiWGq0P893PCbTNf2BkGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.166.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a5:9b:dc:e0:84:53:06:63:98:84:a8:10:3a:8e:fa:ed:64:
19:97:a3:bc:01:38:84:df:04:e5:a9:02:f9:ce:03:af:9c:e1:
10:ae:fd:6f:00:7c:1d:b1:58:c6:83:07:fc:9f:54:fe:ad:59:
be:9c:b0:76:64:32:f4:b3:8f:9d:f5:91:cc:76:fd:69:57:aa:
d8:1d:db:3b:05:b0:12:1a:f6:e8:12:a9:84:a8:a3:e4:33:a0:
02:09:3b:8c:a8:7f:fa:66:c4:7d:e9:9e:b4:25:34:36:a0:bb:
99:97:15:72:65:7b:a0:ad:cd:13:b2:5f:2f:3f:d0:bc:13:10:
52:88:9e:09:a1:8f:e1:d2:2c:c4:ae:8b:c1:03:0a:73:d1:15:
8f:60:58:09:52:6b:bb:c1:3f:fa:b5:8b:85:0c:59:07:73:59:
e6:97:f8:7f:bb:d0:82:54:41:3e:5f:9f:ba:6a:1e:30:ec:55:
89:2a:2a:9b:62:50:3a:0d:4f:62:d2:98:af:00:71:9d:9b:b7:
1b:16:81:d4:72:75:17:71:31:81:4a:1f:c6:9b:4f:b1:71:53:
22:6d:80:cc:68:3a:de:8a:96:a2:d5:f8:e0:86:20:5e:c6:45:
f6:ee:6c:02:43:8e:d4:3d:48:bf:cc:f7:4f:10:a2:c4:0c:05:
26:4f:0d:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma1UR+fySX+LlLzl9oCSIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjUwMTAyMDk0OTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDAyMGU3Zjk4YTI1ODZhYjQzZmNmNzczYzI2ZDMzNWZkODE5MDY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0K0j4zEr0LjM95cD/ePxTaJS7jO9
h1uRNcseNaa5o6Hu/g0Fy6Ky29y1tMD9w8+06XlU/I78cVHJzY/7bCY4ehArQx1H
xPAyjIS0krgKxrlYvtXzQ7VsSNs/WEORPTfqvo2KrIxHzX6jCQNTp9VRN7N8QAmR
1TzhhDrmSHqFp65yWMRSQXbEXe6sLQ7RCKu8Uk69x9W2ojacbsnrKbphEBaeDdhQ
3mo7Cix025yqiTkdEh3w2UJOIhytlnvvpT4wJpX7o5a9BF3RovenDlZI5tgP0za6
3OaVE/T0XtRV8QqmSHXZ11Da2G7syrveMZhqJHSByXdUPjEDUO9bx20+GwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPACDn+YolhqtD/Pdzwm0zX9gZBlMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvOEFJT2Y1aWlXR3EwUDg5M1BDYlROZjJCa0dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZmmMA0G
CSqGSIb3DQEBCwUAA4IBAQB1pZvc4IRTBmOYhKgQOo767WQZl6O8ATiE3wTlqQL5
zgOvnOEQrv1vAHwdsVjGgwf8n1T+rVm+nLB2ZDL0s4+d9ZHMdv1pV6rYHds7BbAS
GvboEqmEqKPkM6ACCTuMqH/6ZsR96Z60JTQ2oLuZlxVyZXugrc0Tsl8vP9C8ExBS
iJ4JoY/h0izErovBAwpz0RWPYFgJUmu7wT/6tYuFDFkHc1nml/h/u9CCVEE+X5+6
ah4w7FWJKiqbYlA6DU9i0pivAHGdm7cbFoHUcnUXcTGBSh/Gm0+xcVMibYDMaDre
ipai1fjghiBexkX27mwCQ47UPUi/zPdPEKLEDAUmTw17
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:01:41 2025 by rpki-client