Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/LdRBYy0Dc5TAEL5DjhgBeOrbOd4.roa
File: LdRBYy0Dc5TAEL5DjhgBeOrbOd4.roa (raw, json)
Hash identifier: DqAe52Zea4wwRHNsVvBEFGj53/XE1pCKy+2JNBHlZFI=
Subject key identifier: 2D:D4:41:63:2D:03:73:94:C0:10:BE:43:8E:18:01:78:EA:DB:39:DE
Certificate issuer: /CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Certificate serial: 019426D9AAA7258DCD66CC5A6D8D8A6A24D3
Authority key identifier: EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/LdRBYy0Dc5TAEL5DjhgBeOrbOd4.roa
Signing time: Thu 02 Jan 2025 11:49:46 +0000
ROA not before: Thu 02 Jan 2025 11:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60475
IP address blocks: 45.90.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:aa:a7:25:8d:cd:66:cc:5a:6d:8d:8a:6a:24:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Validity
Not Before: Jan 2 11:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2dd441632d037394c010be438e180178eadb39de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:67:2a:af:b8:b2:70:5e:0d:1e:26:0b:92:
43:b8:e2:33:3b:30:8a:af:20:33:58:80:56:7c:10:
13:5e:8b:97:f4:13:5c:7f:80:2f:34:d3:95:f2:5f:
95:3a:ed:4f:ae:c7:2c:55:e2:e6:2e:95:8b:09:11:
bc:05:14:fc:73:99:67:81:bb:8c:01:42:c2:6b:93:
31:32:9f:40:68:28:04:4f:aa:8a:27:92:68:c6:23:
4b:53:54:02:88:f1:41:35:4d:56:c5:9d:e1:e0:c7:
dc:cf:44:44:79:f9:8f:74:e9:3a:92:3f:44:b3:cc:
9e:0f:06:d5:96:16:d3:e5:b7:24:e8:44:a3:4f:ce:
f0:f9:3c:7a:fd:b2:9e:49:8f:d5:85:70:aa:4b:c6:
e3:68:3a:df:e9:84:e9:31:49:63:c8:38:d5:e6:22:
42:66:2a:c1:60:23:41:c3:ce:c3:d7:8c:52:70:3a:
9d:62:b0:68:01:6a:f0:ba:70:c2:3c:21:c8:4a:3b:
76:08:8b:64:ba:e6:c4:92:05:c7:07:32:45:d8:18:
1e:1a:c4:4c:d0:d3:2d:58:4a:49:c9:0b:76:50:fd:
51:59:f6:7a:5f:97:d7:ff:42:d4:a5:f1:38:5e:fa:
c8:53:0f:f5:d9:96:db:31:21:83:08:fc:7a:30:51:
f4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D4:41:63:2D:03:73:94:C0:10:BE:43:8E:18:01:78:EA:DB:39:DE
X509v3 Authority Key Identifier:
keyid:EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/LdRBYy0Dc5TAEL5DjhgBeOrbOd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.240.0/22
Signature Algorithm: sha256WithRSAEncryption
73:34:4b:d0:82:80:4e:db:0d:78:cd:f5:f2:b9:89:a8:ac:d4:
e4:48:b0:6e:c3:a7:04:5a:ab:06:19:6b:47:f4:2a:8f:02:13:
ca:a2:a9:06:64:1c:63:7a:d4:f1:8b:ef:96:d0:33:d6:ee:78:
99:4e:c4:a5:e3:38:46:49:2c:3a:21:fa:d1:89:bd:54:1a:33:
a3:e2:80:ee:94:04:a6:b9:fd:d6:00:54:9c:77:c6:9f:3a:af:
fc:c5:5b:f6:98:d3:28:b0:50:57:63:ee:16:da:3f:e8:42:d3:
61:6f:15:52:a5:d6:69:d7:24:91:9a:81:fd:c4:34:9d:32:ce:
04:b0:d3:98:3f:71:ae:b0:4a:c7:39:66:a6:75:95:84:1c:b6:
f3:ef:5b:a2:72:ce:d2:01:b7:be:98:8b:bb:93:2c:a4:7d:da:
09:b3:e1:3b:da:58:04:0e:9a:48:9a:de:76:30:fd:e9:f8:eb:
34:e3:1c:2b:73:8e:3f:8e:ba:a3:6d:26:d2:7e:54:88:27:09:
7e:f4:33:57:11:3a:b7:78:2a:45:0a:f9:67:60:e8:50:f2:e7:
f4:49:c3:c6:e2:63:da:20:f3:10:b0:e5:5e:43:9c:3b:85:da:
d9:2f:54:3e:7a:22:c9:8e:21:e5:2d:2c:ef:af:bc:bb:88:e5:
f7:cc:cb:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net