Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hVN1Qld91f5dBJ9SSDlF23fJ2wE.roa
File: hVN1Qld91f5dBJ9SSDlF23fJ2wE.roa (raw, json)
Hash identifier: fB256LdP6wo0MmK8V0JJWIWF+X7CQ/bXWoxB33HPuzk=
Subject key identifier: 85:53:75:42:57:7D:D5:FE:5D:04:9F:52:48:39:45:DB:77:C9:DB:01
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 019424B385C10A0176229C0BABB6EF27143C
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hVN1Qld91f5dBJ9SSDlF23fJ2wE.roa
Signing time: Thu 02 Jan 2025 01:48:52 +0000
ROA not before: Thu 02 Jan 2025 01:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 46105
IP address blocks: 45.85.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:85:c1:0a:01:76:22:9c:0b:ab:b6:ef:27:14:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 2 01:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85537542577dd5fe5d049f52483945db77c9db01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:cd:89:cd:5a:da:66:1c:77:9c:ca:bf:24:
74:f5:f5:3e:45:d5:7f:9f:a3:17:c0:ea:f2:19:23:
33:0e:da:e2:6a:9e:4f:d7:9c:c5:ac:2d:f9:35:05:
63:22:d9:86:6b:27:a8:30:73:a0:2f:c7:5f:7c:c1:
3b:90:81:f4:50:33:9a:df:f0:c8:5b:e9:5c:33:b2:
e8:e0:7b:9a:fd:38:3d:5d:24:ec:92:7a:13:92:17:
d1:39:07:37:a9:f1:d6:de:bd:27:62:61:c7:d1:dd:
29:1b:0a:31:02:d7:5a:73:38:10:f2:93:02:16:62:
bb:04:66:1c:7b:7e:fe:22:21:02:ed:62:5a:c7:65:
52:35:33:0c:6d:c6:02:55:ce:b8:26:63:a1:08:f3:
91:f9:b9:5d:2c:1e:6d:a8:fa:e5:b0:19:36:64:c4:
d7:f2:db:b8:c6:a7:ad:05:c9:57:16:22:42:95:5a:
3a:f1:bb:1c:e4:02:a2:23:07:13:d5:5e:44:32:8f:
19:1b:03:97:96:72:9b:ba:7a:86:e2:da:c2:3d:80:
f8:b8:4b:ce:86:97:d7:92:6c:f7:20:2a:24:23:b9:
fb:3f:02:9c:0d:02:42:34:57:58:d2:84:71:28:82:
05:d2:10:14:c0:64:ee:7e:08:81:aa:45:70:ca:a6:
4f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:53:75:42:57:7D:D5:FE:5D:04:9F:52:48:39:45:DB:77:C9:DB:01
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hVN1Qld91f5dBJ9SSDlF23fJ2wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.15.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9a:54:83:2e:a2:63:a1:35:f7:a2:f3:b0:16:4c:c5:0a:8e:
8a:cf:6e:3d:30:f0:4b:cd:ea:f7:f7:19:4b:05:f6:9d:5a:7f:
70:80:c5:4b:48:7c:3a:28:5a:76:23:6a:61:10:d5:d4:2e:31:
bc:49:e5:2e:68:d5:6e:95:64:f1:23:38:f1:b8:9d:ad:dc:25:
23:39:fc:16:6d:7e:22:8f:69:c0:97:c2:73:c8:d9:29:68:3e:
be:bf:bf:91:77:f6:c8:ec:d1:f5:20:82:90:1c:54:1b:87:9e:
49:41:a2:e0:e2:f6:3b:17:55:7d:93:79:20:fd:a0:1c:e2:73:
73:28:b1:e2:c8:43:9f:6f:c5:33:0b:cf:c8:35:d6:e0:c0:d3:
03:40:6f:48:d7:02:a3:46:32:4f:5b:4a:84:2a:20:c0:cb:ac:
27:b6:1a:5c:16:ef:12:2e:6f:42:4b:64:7e:9e:b5:a3:55:ae:
03:99:dc:2e:cf:b6:d7:c5:40:19:82:f4:c9:bd:8d:31:a2:62:
79:6c:68:b8:d5:0e:88:5f:40:65:28:bb:b0:ec:31:39:a5:7f:
5c:71:07:2d:a4:68:59:53:5e:c0:0a:85:a4:4e:29:c8:71:0c:
b4:19:12:d4:36:93:e4:92:3f:c8:d2:a4:b1:53:19:c2:64:bf:
86:fc:ef:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:03 2025 by rpki-client