Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/2zjBMbzr_Hzm7RJmF3x5zIZyHoI.roa
File: 2zjBMbzr_Hzm7RJmF3x5zIZyHoI.roa (raw, json)
Hash identifier: 3I8eVsTBgsANndjJfGHy1lpS8zVxK2ea9i+AxHZ4N10=
Subject key identifier: DB:38:C1:31:BC:EB:FC:7C:E6:ED:12:66:17:7C:79:CC:86:72:1E:82
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 019623C01151CFEEE72A88B88E7DD3B4D50C
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/2zjBMbzr_Hzm7RJmF3x5zIZyHoI.roa
Signing time: Fri 11 Apr 2025 07:28:31 +0000
ROA not before: Fri 11 Apr 2025 07:28:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.180.0/24 maxlen: 24
45.83.181.0/24 maxlen: 24
45.83.182.0/24 maxlen: 24
45.83.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:c0:11:51:cf:ee:e7:2a:88:b8:8e:7d:d3:b4:d5:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Apr 11 07:28:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db38c131bcebfc7ce6ed1266177c79cc86721e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ca:bb:43:29:8e:04:8e:71:1f:0f:b0:0b:fc:
19:23:14:06:88:33:22:bf:5e:cd:f7:d6:e6:20:fd:
8e:49:13:76:80:fd:05:7a:7b:ff:38:f4:7b:b7:d7:
08:bc:24:1b:aa:43:66:d6:e0:f1:a6:15:61:e9:ae:
c2:d9:37:1d:99:7a:76:31:c3:bf:88:74:3d:73:94:
53:22:c1:ff:d7:3f:75:24:0e:fb:b2:8e:24:52:3a:
b0:a0:39:0d:fb:03:00:22:65:a5:fa:8b:2f:7a:ee:
a7:e8:e6:e6:29:6a:97:5c:84:d8:c5:b6:60:ac:3d:
17:28:71:a3:35:a1:e8:9d:2e:e5:0e:ca:ba:a3:98:
ce:a2:a5:15:0a:2d:c6:71:13:e0:7a:ae:24:68:98:
cf:51:05:90:40:4f:3d:9d:d9:df:8e:5c:96:e0:c0:
b7:ab:ee:ab:66:47:80:7e:66:41:fc:12:c0:4f:78:
56:8d:31:50:26:1e:5f:1d:ef:2e:5f:3f:34:22:8f:
55:74:f9:98:7a:b9:78:d1:78:44:16:de:e6:97:ae:
cb:ec:24:ca:28:64:42:ec:c3:bd:ed:86:63:16:ed:
ab:1e:d8:72:45:f5:f0:80:08:2a:ec:38:3c:1e:06:
63:a1:c7:dc:eb:a0:ad:86:a4:0f:6c:d6:40:dd:62:
30:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:38:C1:31:BC:EB:FC:7C:E6:ED:12:66:17:7C:79:CC:86:72:1E:82
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/2zjBMbzr_Hzm7RJmF3x5zIZyHoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.180.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:ce:29:dc:dd:e8:3c:8c:52:b9:5e:3d:66:ff:8d:9c:f4:6f:
f4:a0:6f:91:86:1f:80:3b:e0:d1:02:60:c4:2c:66:0c:c9:04:
52:d4:62:01:95:00:b1:21:dd:92:c9:71:8a:c4:93:ea:3e:ad:
e1:d6:30:be:7c:41:b9:4b:4f:30:ec:25:47:d4:dd:3c:77:43:
bd:2c:b8:9a:a8:95:8f:c0:78:6d:68:3b:c7:8b:87:ea:ac:9d:
a9:57:14:f7:0a:36:df:4f:df:43:c7:e2:bc:72:18:fa:51:a5:
f0:72:91:63:74:94:7b:ce:d7:b9:28:67:25:0d:c5:47:33:00:
4c:79:1b:2d:2c:a8:c4:e6:90:4e:db:0a:54:05:58:5c:d5:67:
ee:c8:ae:c8:c9:d3:03:cf:66:29:29:d2:38:fc:75:36:9c:81:
43:a8:86:42:b6:b8:e3:7e:b8:0e:1e:a7:ee:c0:bd:9f:e5:b1:
ab:37:4b:cf:9c:da:f2:6e:e3:81:ae:b3:22:d3:76:74:bd:63:
5e:b3:09:4d:6e:5c:b7:e4:81:f2:3c:37:ad:bd:e2:aa:cd:c8:
20:44:f1:84:61:bf:48:db:a5:55:f9:44:ce:6a:17:74:84:fe:
59:1a:5d:0c:3c:cb:d6:0d:ed:61:44:0a:82:00:66:65:55:62:
85:e3:cc:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:34 2025 by rpki-client on console.sobornost.net