Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/n0CtteTdoHQoDuPvHdfId09YTLY.roa
File: n0CtteTdoHQoDuPvHdfId09YTLY.roa (raw, json)
Hash identifier: mQZ5kwhT3EwKF5PoJpLiRZxboKxfkAX7nH6InGHuqdk=
Subject key identifier: 9F:40:AD:B5:E4:DD:A0:74:28:0E:E3:EF:1D:D7:C8:77:4F:58:4C:B6
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0194461AF3A9EDD4491158DBB1D9DAEDA3AF
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/n0CtteTdoHQoDuPvHdfId09YTLY.roa
Signing time: Wed 08 Jan 2025 13:29:18 +0000
ROA not before: Wed 08 Jan 2025 13:29:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39521
IP address blocks: 45.138.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:46:1a:f3:a9:ed:d4:49:11:58:db:b1:d9:da:ed:a3:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jan 8 13:29:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f40adb5e4dda074280ee3ef1dd7c8774f584cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:06:26:27:5e:73:1a:90:b4:57:fd:66:4c:d4:
a6:d2:e7:35:90:2d:83:44:96:30:72:64:19:6f:ce:
39:4e:7c:71:49:a3:86:7d:64:dc:c1:69:15:9f:db:
b1:f4:56:6d:34:81:10:cd:33:00:53:43:f1:3f:50:
4c:ac:5a:87:11:1d:fb:67:62:44:aa:58:fe:d3:bb:
8c:75:df:a4:55:7c:8e:2b:d0:db:3c:13:9b:78:05:
77:72:cf:3a:9d:94:0a:73:d3:d2:b3:84:0d:2a:87:
bd:bc:ac:ee:f9:47:14:0f:8b:05:a0:5d:3c:e1:b1:
7d:bc:67:11:01:d8:e3:c1:08:c2:7f:e3:15:d3:ff:
98:13:1d:43:b3:40:85:17:56:01:b4:23:06:48:de:
c0:52:64:7e:1e:60:70:7c:74:b0:b8:73:13:08:a8:
d2:93:ad:1e:fe:9a:f8:24:83:14:8b:00:18:61:74:
c1:f0:b3:36:02:c4:49:21:0c:fe:d1:d4:b8:5c:b9:
93:52:07:e2:d6:ec:35:24:1c:b9:73:6c:e0:4e:93:
19:42:af:c1:ed:66:da:1b:bc:61:10:64:63:45:9b:
42:3c:a4:62:9a:db:64:dc:c4:42:05:ee:62:eb:2a:
e3:ae:5a:92:a2:06:bf:39:82:02:17:91:89:f1:5e:
7a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:40:AD:B5:E4:DD:A0:74:28:0E:E3:EF:1D:D7:C8:77:4F:58:4C:B6
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/n0CtteTdoHQoDuPvHdfId09YTLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.12.0/22
Signature Algorithm: sha256WithRSAEncryption
51:b7:2c:1b:3e:9b:ee:7a:7a:ab:99:2f:d8:97:65:d5:2a:8f:
c1:c4:9d:87:32:50:aa:6c:ee:65:41:cb:27:8e:c1:ed:02:02:
2e:75:71:ca:39:2a:f0:9a:96:de:e0:66:fc:c2:9c:a0:c2:62:
be:b7:26:81:3e:45:7b:23:6a:a2:b2:f5:86:4b:2e:fc:6c:3f:
5a:7e:c7:cf:a1:57:5d:9f:d9:92:57:19:77:ab:93:5a:23:b6:
fe:12:71:ee:81:49:3e:4d:5a:39:d0:52:bc:18:85:0c:bb:bf:
1f:7d:38:78:01:1c:d5:91:2d:97:c5:2d:00:4f:7c:d6:cc:44:
91:3b:ad:83:05:b9:dd:87:ba:1e:ba:fd:2f:9b:af:d4:1b:6c:
97:50:bf:36:49:d2:03:19:f1:7d:c9:d2:a4:de:a0:4c:c8:3d:
fa:37:7c:1b:55:8c:62:3e:ed:37:a9:db:f6:91:8d:fe:46:d4:
1e:7c:6b:ed:f9:ab:59:cb:cb:14:6a:56:8c:f6:43:e4:6d:b9:
1a:37:0f:a6:04:37:fa:f5:4e:93:f7:dd:29:58:a6:55:8d:55:
ab:4f:6f:f3:c1:09:95:c3:46:ef:21:ab:51:73:9c:03:e6:28:
40:2f:52:51:c2:25:89:35:a8:65:ef:9f:34:89:44:f2:4e:b3:
7e:6f:0e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:29 2025 by rpki-client