Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2gmU9VcuUc2wAFf9V-TKVye32ZU.roa
File: 2gmU9VcuUc2wAFf9V-TKVye32ZU.roa (raw, json)
Hash identifier: okNYtgEK2WppQrrBe8KtE6F7mnmDzztORaD7dmF2MNQ=
Subject key identifier: DA:09:94:F5:57:2E:51:CD:B0:00:57:FD:57:E4:CA:57:27:B7:D9:95
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01950919D6002BD7D911AB2F3E67C0AF2C57
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2gmU9VcuUc2wAFf9V-TKVye32ZU.roa
Signing time: Sat 15 Feb 2025 10:14:02 +0000
ROA not before: Sat 15 Feb 2025 10:14:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214114
IP address blocks: 45.144.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:09:19:d6:00:2b:d7:d9:11:ab:2f:3e:67:c0:af:2c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 15 10:14:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da0994f5572e51cdb00057fd57e4ca5727b7d995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:13:a5:af:0e:32:f5:54:0f:a4:d7:71:7c:8c:
91:65:d2:30:1c:ce:3c:be:59:69:30:d6:d4:52:fd:
ca:30:5e:2d:3d:cf:30:b6:ce:9e:44:ef:af:05:bd:
e4:87:90:3b:fd:99:3d:92:c8:65:44:44:30:a5:aa:
5d:11:a6:5b:2a:13:fb:31:95:0e:d5:67:68:1c:7b:
67:84:35:c1:78:cb:47:43:b9:d0:50:fc:a1:a3:06:
59:e3:75:f8:2a:6f:b2:c3:7d:7f:25:a6:34:68:b2:
fa:ce:72:10:39:f2:a3:44:d0:07:3e:99:cd:fc:17:
54:53:30:58:1a:8f:d4:be:57:9e:d2:72:1f:5c:14:
5f:0d:25:98:7c:4d:5d:45:a0:f2:06:99:d0:e8:17:
4f:94:7d:52:85:72:f7:06:4d:ad:d4:2b:92:7a:da:
e1:1d:fd:d3:ef:9e:64:b5:4c:48:ba:5c:25:89:41:
80:b2:02:21:7c:42:f9:56:7c:46:92:f3:6a:6a:cf:
89:29:ff:92:ac:c5:2d:1e:26:81:eb:2d:ce:74:48:
54:83:a9:01:9e:96:c2:07:f7:f2:d2:a0:ce:c2:06:
42:ef:d8:89:71:aa:70:16:7d:dd:49:8b:8f:db:e7:
e5:1b:c1:7d:bd:71:b6:59:55:a0:69:fb:74:7d:4a:
aa:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:09:94:F5:57:2E:51:CD:B0:00:57:FD:57:E4:CA:57:27:B7:D9:95
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2gmU9VcuUc2wAFf9V-TKVye32ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.173.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ac:a4:59:02:76:47:c5:9f:81:91:40:5e:61:2c:7d:a6:17:
e0:3a:42:90:28:4b:4f:8e:2c:00:b0:94:85:96:19:2a:1f:36:
dd:46:ec:e8:b0:21:91:97:46:0c:6d:a1:c9:2d:4f:30:24:e7:
ae:de:c6:68:fe:28:a4:1b:0b:2a:f0:b3:45:ef:5f:c9:19:61:
cc:d3:0f:91:57:c2:29:2d:8b:c6:12:34:f0:30:3b:5c:23:c1:
c2:4b:3f:8a:70:d0:bb:c1:b5:dd:5d:8b:c9:2e:ed:41:6b:c0:
66:45:e3:d7:7c:22:fa:dd:9d:8c:bb:3f:fc:0d:48:c2:22:f8:
7b:5d:5d:c1:2a:1c:0b:f8:0c:97:59:02:cf:c5:b0:74:39:ac:
bd:33:7c:36:63:bd:d1:37:c3:c5:17:75:e0:a4:6f:90:8a:a9:
f2:74:29:3c:ab:d1:d7:42:45:4c:54:81:af:94:66:14:e0:ac:
c5:0e:8c:84:a0:1f:20:48:4e:c6:64:34:bf:f2:33:18:82:2f:
73:37:ab:89:13:2b:eb:2e:23:76:5f:a1:ca:f2:c9:96:df:e4:
d2:63:bd:24:6f:ac:dd:c5:03:07:bd:cb:7a:99:c8:2e:de:eb:
82:5b:22:54:88:6d:10:58:bd:a5:62:a4:90:fe:4a:f3:ce:74:
19:23:a4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:54 2025 by rpki-client on console.sobornost.net