Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/NGphx2qhBW9gE8CfDHfoJNe6mG0.roa
File: NGphx2qhBW9gE8CfDHfoJNe6mG0.roa (raw, json)
Hash identifier: ECnwkjX75lQ4kRJVM7O1TZuPUXkcSD/08JlEytcC2F8=
Subject key identifier: 34:6A:61:C7:6A:A1:05:6F:60:13:C0:9F:0C:77:E8:24:D7:BA:98:6D
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 019427482436B84CE7818F359E6DE83D88F3
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/NGphx2qhBW9gE8CfDHfoJNe6mG0.roa
Signing time: Thu 02 Jan 2025 13:50:26 +0000
ROA not before: Thu 02 Jan 2025 13:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56715
IP address blocks: 45.93.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:24:36:b8:4c:e7:81:8f:35:9e:6d:e8:3d:88:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jan 2 13:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=346a61c76aa1056f6013c09f0c77e824d7ba986d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:13:79:67:78:54:34:dd:d6:9b:f2:09:8b:62:
70:6c:a8:c5:39:5e:9a:cd:3e:e0:41:84:c4:a7:5f:
41:1b:61:36:e6:9a:32:3f:c0:34:42:60:5d:c9:8a:
3c:6a:b5:3b:0e:0d:b6:08:a1:9d:80:6e:3e:55:af:
36:99:0f:ef:c8:5f:cb:15:a2:1e:df:c0:cd:5e:f0:
98:a0:0c:96:40:4b:7b:ce:0f:8f:7b:c4:e5:5e:8f:
a0:38:10:cd:6d:0f:a1:53:32:c3:cf:11:01:ca:47:
97:a2:92:ad:22:e8:6a:d1:74:4d:0a:b0:ba:86:27:
08:c3:33:fa:9a:ed:30:ff:ab:71:5a:94:5c:d4:02:
9a:d9:69:8e:39:82:62:7b:0e:99:cd:f9:8e:f9:ac:
b8:d0:5e:58:cf:9f:ca:a1:35:ed:3b:1f:a9:9f:05:
cb:5c:55:dc:69:6c:47:57:4a:bf:d3:17:24:a7:60:
fd:15:8f:9c:4d:1c:4f:42:15:6e:c4:84:f3:cf:fc:
f9:5c:a8:38:1a:93:3c:4e:28:60:94:f3:b1:37:b2:
5c:36:85:49:9a:5b:27:b1:47:49:1d:92:8a:88:3f:
8a:d6:b2:57:05:9d:28:f6:20:f7:ea:dd:e4:de:1e:
8a:06:4c:49:c9:92:2d:15:98:e6:3f:9d:df:ce:a2:
b0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6A:61:C7:6A:A1:05:6F:60:13:C0:9F:0C:77:E8:24:D7:BA:98:6D
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/NGphx2qhBW9gE8CfDHfoJNe6mG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.169.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e6:37:11:df:df:db:4d:da:87:5a:53:91:e1:84:56:2f:7b:
36:72:cf:2a:c1:c8:fe:8f:d5:17:67:ed:bf:e8:d4:5b:d8:58:
da:4c:f0:6d:4e:f8:a6:00:97:0d:00:43:07:74:e6:c7:c6:c6:
cd:58:4e:18:9e:0a:49:f7:04:f5:8f:40:98:46:c3:40:93:5f:
f2:83:e9:e4:19:24:d5:6e:7f:a1:0f:b5:2d:e6:d5:28:20:46:
ac:e5:30:2f:7f:2e:34:6e:96:24:74:4f:08:b8:76:b4:ee:92:
c2:07:20:46:5f:d8:1f:f3:2e:05:ad:4e:e3:91:4c:f2:32:18:
b7:b7:75:4c:2e:c6:eb:57:92:36:83:dc:f9:e5:99:bd:3c:fd:
eb:b9:2b:71:56:59:52:2e:f9:c9:50:f7:e0:56:48:de:00:00:
a0:60:46:c8:92:41:1b:5c:a1:a4:3b:35:ad:67:ee:d2:82:a1:
b0:17:5f:9f:c4:db:b9:02:97:81:9b:a0:3f:9a:cb:74:48:0c:
23:ce:87:5c:23:87:26:7b:82:b9:cf:2a:6f:41:a5:88:5f:33:
c7:cc:f6:73:98:43:c1:fa:e8:d6:06:56:79:2e:8c:ed:c0:2a:
a6:e3:43:51:ab:08:9f:46:07:d3:a2:35:26:7f:39:2a:ec:57:
35:b8:3b:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSCQ2uEzngY81nm3oPYjzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1OWJkMWU4YzU4ZjY0MWJkOTQ0MzA1ZjExYzU0ZWZlNWYz
YTBjZTIwHhcNMjUwMTAyMTM1MDI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDZhNjFjNzZhYTEwNTZmNjAxM2MwOWYwYzc3ZTgyNGQ3YmE5ODZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxN5Z3hUNN3Wm/IJi2JwbKjFOV6a
zT7gQYTEp19BG2E25poyP8A0QmBdyYo8arU7Dg22CKGdgG4+Va82mQ/vyF/LFaIe
38DNXvCYoAyWQEt7zg+Pe8TlXo+gOBDNbQ+hUzLDzxEBykeXopKtIuhq0XRNCrC6
hicIwzP6mu0w/6txWpRc1AKa2WmOOYJiew6ZzfmO+ay40F5Yz5/KoTXtOx+pnwXL
XFXcaWxHV0q/0xckp2D9FY+cTRxPQhVuxITzz/z5XKg4GpM8TihglPOxN7JcNoVJ
mlsnsUdJHZKKiD+K1rJXBZ0o9iD36t3k3h6KBkxJyZItFZjmP53fzqKwBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDRqYcdqoQVvYBPAnwx36CTXuphtMB8GA1UdIwQY
MBaAFMWb0ejFj2Qb2UQwXxHFTv5fOgziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgt
NTZjYzM5ZGI2ZWQ2LzEvTkdwaHgycWhCVzlnRThDZkRIZm9KTmU2bUcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgtNTZjYzM5ZGI2ZWQ2
LzEveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV2pMA0G
CSqGSIb3DQEBCwUAA4IBAQAy5jcR39/bTdqHWlOR4YRWL3s2cs8qwcj+j9UXZ+2/
6NRb2FjaTPBtTvimAJcNAEMHdObHxsbNWE4YngpJ9wT1j0CYRsNAk1/yg+nkGSTV
bn+hD7Ut5tUoIEas5TAvfy40bpYkdE8IuHa07pLCByBGX9gf8y4FrU7jkUzyMhi3
t3VMLsbrV5I2g9z55Zm9PP3ruStxVllSLvnJUPfgVkjeAACgYEbIkkEbXKGkOzWt
Z+7SgqGwF1+fxNu5ApeBm6A/mst0SAwjzodcI4cme4K5zypvQaWIXzPHzPZzmEPB
+ujWBlZ5LoztwCqm40NRqwifRgfTojUmfzkq7Fc1uDvF
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net