Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ALGOBDshRCLNTcu1vsPCYRE0VIE.roa
File: ALGOBDshRCLNTcu1vsPCYRE0VIE.roa (raw, json)
Hash identifier: GabJIVxif3Vwd+Um58N4/alCHmIAHpFXhcpthHXc8iY=
Subject key identifier: 00:B1:8E:04:3B:21:44:22:CD:4D:CB:B5:BE:C3:C2:61:11:34:54:81
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 01832F0F209A1C44C9B3489AE33CCFCC7553
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ALGOBDshRCLNTcu1vsPCYRE0VIE.roa
Signing time: Mon 12 Sep 2022 00:17:43 +0000
ROA not before: Mon 12 Sep 2022 00:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.66.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:2f:0f:20:9a:1c:44:c9:b3:48:9a:e3:3c:cf:cc:75:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Sep 12 00:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00b18e043b214422cd4dcbb5bec3c26111345481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9d:89:80:7d:99:b1:ed:e5:ca:be:db:b9:8b:
44:d1:91:ca:d6:8b:36:21:8f:cf:72:fa:c0:e5:f9:
d6:d9:e4:80:6e:a1:bb:2f:6c:91:64:7f:12:ba:c6:
1f:e3:20:4c:87:49:b1:4f:3e:d0:b4:ce:22:3a:b5:
5d:a4:dc:72:4f:14:b7:e3:89:3c:c0:9b:8e:1e:23:
ac:eb:30:bd:b1:31:06:1f:6c:8e:85:9a:ba:b1:eb:
48:8a:3c:35:51:aa:87:1f:15:bb:88:bb:93:87:55:
b1:1c:56:d6:42:4b:ad:c0:ca:bd:26:f0:48:b4:3c:
33:a8:d4:4b:ce:c6:f9:eb:60:a7:a3:ab:b0:df:aa:
77:52:8b:5e:a5:db:2e:23:fb:e7:0e:48:65:e7:82:
7a:fc:f7:7f:7f:01:79:f5:a5:f1:ff:ad:56:27:9d:
be:b5:c2:5e:22:65:2c:d6:3a:a6:0f:9b:f5:a7:18:
dd:06:61:85:cf:59:2d:e1:48:0a:85:2f:a8:69:f9:
63:b3:fa:39:db:e9:65:5a:6a:a6:ab:18:cd:a1:a4:
ee:2a:65:8d:2a:f2:de:80:9b:53:f6:fe:df:d5:10:
f7:b8:b1:32:ba:53:09:6f:cb:4d:1f:86:a9:fd:e4:
16:81:de:8d:b7:be:4f:9a:98:3f:19:3d:e7:f0:44:
0b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B1:8E:04:3B:21:44:22:CD:4D:CB:B5:BE:C3:C2:61:11:34:54:81
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ALGOBDshRCLNTcu1vsPCYRE0VIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.148.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:a4:9a:69:9d:7e:71:ed:b5:8b:02:ca:09:88:31:82:a7:2b:
d2:3a:ab:b2:18:15:c6:85:87:a3:be:2f:2a:ee:ad:9e:63:d7:
ff:aa:0e:8b:26:f2:a3:d6:41:09:7e:bb:3b:00:9a:93:54:04:
7a:7e:fa:cb:e1:8f:18:65:f7:46:98:e1:6b:88:4b:2e:aa:f2:
9b:be:8a:44:a2:ba:13:31:79:8b:30:a8:73:a0:0f:b4:63:44:
f8:9e:6a:4a:35:38:9f:e9:17:ea:cb:91:8f:b3:49:d3:70:e1:
c7:59:22:9f:3b:be:7a:7a:c1:1d:a1:47:c2:c4:81:72:35:f4:
5e:cc:e2:e8:91:98:b6:b9:7e:4d:86:ad:77:43:1e:19:be:61:
39:cf:47:eb:99:7d:fb:eb:c7:35:59:1e:9d:55:a2:87:65:5e:
23:9c:9c:df:34:ca:78:82:98:5f:a3:20:15:31:87:fa:a3:30:
33:be:f0:d7:d6:5a:41:0f:db:7f:56:f0:b8:5d:f9:90:c7:4e:
ab:1a:4d:19:ec:07:52:b7:c0:56:ff:3a:da:67:72:c6:32:9e:
96:fb:c8:5e:83:88:17:1e:c9:8d:42:4f:4d:16:63:d1:47:22:
ee:83:97:6c:b8:16:6a:41:f3:44:b8:6e:2d:fa:06:85:43:7b:
b6:a6:54:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 16:20:26 2025 by rpki-client