Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/bt4jZ_Fg1p7_W1scNCt1lEzJp-I.roa
File: bt4jZ_Fg1p7_W1scNCt1lEzJp-I.roa (raw, json)
Hash identifier: NTiQWaRJGSQ8lYqtebC2mqNAEmw3CSrzTGYD0GLgxFA=
Subject key identifier: 6E:DE:23:67:F1:60:D6:9E:FF:5B:5B:1C:34:2B:75:94:4C:C9:A7:E2
Certificate issuer: /CN=b30e3011a0fb3111fbe8493c1230974aef532704
Certificate serial: 019421B226C6004ACAE270A301985B0A9655
Authority key identifier: B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/bt4jZ_Fg1p7_W1scNCt1lEzJp-I.roa
Signing time: Wed 01 Jan 2025 11:48:30 +0000
ROA not before: Wed 01 Jan 2025 11:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203755
IP address blocks: 45.155.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:26:c6:00:4a:ca:e2:70:a3:01:98:5b:0a:96:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30e3011a0fb3111fbe8493c1230974aef532704
Validity
Not Before: Jan 1 11:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ede2367f160d69eff5b5b1c342b75944cc9a7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f3:4b:ed:1c:a5:4b:5c:0d:e1:e2:9a:e4:81:
36:3c:20:48:66:f1:ae:69:d4:11:91:fe:63:fd:20:
86:c9:7c:02:a1:a4:d8:e9:81:e9:98:18:39:b0:01:
15:e6:ce:01:f2:25:92:f6:5a:98:b8:9e:db:7b:65:
c2:9d:6e:8a:87:a8:8d:33:61:02:7c:4f:fe:5c:c3:
e3:1c:3c:54:92:f8:35:46:f2:ae:e2:cf:d2:ea:03:
34:93:a3:73:c7:a8:fc:7a:24:fb:b3:af:9b:0b:00:
7b:66:97:52:1a:37:e6:a8:a0:e3:db:09:a3:2e:d5:
61:94:fc:4f:93:39:97:fa:b0:44:56:e0:1f:d5:7c:
34:b9:63:8b:c8:27:f1:60:a1:29:72:ec:46:9c:b7:
c8:73:6a:0d:3d:22:20:42:84:22:e0:5e:9e:98:97:
9d:eb:1f:3d:30:b1:4a:58:fd:67:c1:60:0c:c2:00:
a0:00:d9:c6:2d:cd:67:d9:32:5b:ba:c5:11:b0:e9:
95:4e:ba:8d:9f:cc:d3:f4:f4:56:6f:7a:4d:50:8c:
0d:a7:97:6c:ad:38:a8:24:04:e5:58:97:ed:25:90:
de:f2:7e:5b:71:0a:20:69:03:88:a6:2c:2b:4b:5a:
52:ba:68:2d:1f:e5:97:50:79:5e:e5:56:89:ec:45:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:DE:23:67:F1:60:D6:9E:FF:5B:5B:1C:34:2B:75:94:4C:C9:A7:E2
X509v3 Authority Key Identifier:
keyid:B3:0E:30:11:A0:FB:31:11:FB:E8:49:3C:12:30:97:4A:EF:53:27:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/bt4jZ_Fg1p7_W1scNCt1lEzJp-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0ffb64-efcb-49f5-8342-f9fb38c77c55/1/sw4wEaD7MRH76Ek8EjCXSu9TJwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.4.0/23
Signature Algorithm: sha256WithRSAEncryption
88:27:cf:aa:93:1c:c9:77:55:5d:d1:b6:7d:a4:ee:62:89:1b:
9c:24:cf:53:fb:0f:5c:54:b2:8c:be:17:d3:24:f2:d3:08:2b:
95:84:7b:3e:d5:ad:7f:bf:64:25:88:ac:f0:95:68:02:51:c2:
75:41:7e:b9:06:47:1f:bc:8a:b3:8d:f3:aa:9f:4f:15:53:af:
48:b9:43:1d:3a:a0:e2:cc:6f:6c:db:f2:b2:c8:8b:1f:5b:b8:
74:cc:50:da:48:72:be:5e:4d:b1:df:0f:f9:2a:fd:6e:ed:33:
ed:51:ff:87:f9:e5:42:37:71:70:1d:0d:06:5d:02:da:bb:fc:
c7:54:09:7b:93:f6:ce:30:c1:77:38:25:e4:28:1f:46:67:39:
09:10:21:b7:91:3e:0d:3a:3f:f5:3c:6b:30:a4:d9:af:ce:a9:
9f:79:cc:e2:60:74:a1:d1:1f:bb:f2:ce:1f:7e:a0:a3:48:05:
58:1b:a5:42:27:5c:a1:69:ca:03:e7:70:c0:c4:e5:38:b7:94:
10:42:44:86:85:5f:7e:4b:92:42:41:a9:80:6f:87:5e:d2:fe:
60:65:75:1d:00:80:e7:b1:81:ae:d9:9f:d5:10:4b:80:96:2f:
e0:da:c8:eb:26:35:e8:46:b4:88:ff:f9:a7:14:15:fb:1a:7a:
b6:3e:9a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:09 2025 by rpki-client on console.sobornost.net