Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/nSrKwFeL2JWJX-O6yRsJjMyenO4.roa
File: nSrKwFeL2JWJX-O6yRsJjMyenO4.roa (raw, json)
Hash identifier: T5rsVBpHF0FkBvtcb+csX6yuqxHhug7dklzF66IL7J0=
Subject key identifier: 9D:2A:CA:C0:57:8B:D8:95:89:5F:E3:BA:C9:1B:09:8C:CC:9E:9C:EE
Certificate issuer: /CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Certificate serial: 019624E48B116419DAD750AABBB840C7943E
Authority key identifier: AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/nSrKwFeL2JWJX-O6yRsJjMyenO4.roa
Signing time: Fri 11 Apr 2025 12:47:59 +0000
ROA not before: Fri 11 Apr 2025 12:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211615
IP address blocks: 45.152.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:e4:8b:11:64:19:da:d7:50:aa:bb:b8:40:c7:94:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Validity
Not Before: Apr 11 12:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d2acac0578bd895895fe3bac91b098ccc9e9cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a2:4c:07:eb:b6:1f:53:73:ee:6e:fc:78:cf:
15:9a:b9:5a:0e:01:68:0c:fc:4a:f4:a7:f3:29:62:
8b:f1:0f:73:dc:a1:50:30:69:a8:87:15:bd:63:e8:
c4:66:a0:66:9d:5a:6c:75:3b:bd:8f:64:d5:01:25:
e0:69:39:e5:31:0a:8f:b4:42:c3:dd:09:c3:2a:b5:
2e:2d:ee:e0:27:1d:8b:f0:6f:18:c2:ea:3f:36:a3:
4c:a6:90:ea:b7:b1:5b:71:f3:21:f9:28:70:9e:cc:
f2:14:d3:fd:88:c2:31:e3:4b:e6:bb:ce:78:03:fe:
c2:99:37:09:ec:d4:bf:0f:44:87:9f:33:92:77:60:
3d:4d:82:fc:19:25:a6:63:a2:20:2d:db:0c:a1:d7:
75:22:94:cb:fe:6d:26:79:91:eb:7f:8c:ee:d9:bb:
2c:51:25:42:dc:a5:64:32:23:92:4b:4c:7e:15:91:
24:65:67:16:7e:7a:0c:c8:9c:7a:2d:1b:ea:af:62:
49:92:aa:68:b8:ec:b2:30:c8:86:b6:f2:06:5d:78:
d4:a2:3a:1d:5f:8a:6f:73:4f:9e:80:58:c3:c0:a7:
81:31:40:82:4d:06:8b:00:0f:ab:1c:55:4d:bf:c8:
c6:ce:75:23:dd:6b:c0:29:cd:56:6a:ba:7e:24:0b:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2A:CA:C0:57:8B:D8:95:89:5F:E3:BA:C9:1B:09:8C:CC:9E:9C:EE
X509v3 Authority Key Identifier:
keyid:AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/nSrKwFeL2JWJX-O6yRsJjMyenO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/qvSWmELenEweGldZ2Y0e1cDWLvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:fd:0f:b7:99:4b:91:e6:4f:59:cd:46:23:56:e1:61:b1:b7:
89:a5:b5:c4:c7:5d:73:98:c3:eb:ce:56:50:a6:d5:58:e0:9d:
cb:7f:b7:8d:0d:5b:b1:cb:ee:4c:93:8c:e2:04:3e:fa:0a:ad:
df:1e:97:e8:77:a2:a1:17:81:88:de:1e:18:01:29:fc:ec:cf:
29:c0:a1:c7:df:68:24:c3:72:cd:ef:62:99:cb:a2:f4:44:a4:
59:87:77:6d:40:e9:76:70:c7:c4:c9:0f:17:47:56:05:0a:c2:
c1:3e:63:0a:f5:7b:a0:69:03:b6:e7:18:e6:b2:1b:0c:96:2c:
85:9d:76:c7:c7:be:39:a5:dd:34:24:f8:da:8d:1e:bb:14:8b:
25:51:a2:da:01:cf:d5:f4:58:6a:de:2e:31:79:f5:83:e7:5e:
bd:81:8c:98:cf:08:6f:33:f5:f9:29:26:45:8c:8b:84:f6:af:
bb:d6:8b:4d:f9:94:ec:d6:3e:1f:58:1d:5d:18:8a:af:29:13:
b0:9e:0d:9d:8a:93:d2:2d:55:4d:70:28:33:16:9e:79:29:b3:
92:96:c3:07:17:df:94:e7:2b:7a:9e:b3:e7:6c:a1:a4:cd:9e:
c6:60:23:79:73:27:5b:4a:e3:13:7d:f2:54:ab:41:19:59:ef:
d5:f3:3a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net