Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e996aa-2dcb-4c43-93fd-34b7d17ff715/1/XpdAC2CuEGkYk1z1zkOTjlju-Rg.roa
File: XpdAC2CuEGkYk1z1zkOTjlju-Rg.roa (raw, json)
Hash identifier: 1El56OSjhFHRSJhlBb4c0HE0W+XJGN0QCFbnBM5w1i8=
Subject key identifier: 5E:97:40:0B:60:AE:10:69:18:93:5C:F5:CE:43:93:8E:58:EE:F9:18
Certificate issuer: /CN=076394845325084bb9ef78d4f717fc4b545fa7ed
Certificate serial: 0194258F7AF7A9118664DAD3A3C3A5365D62
Authority key identifier: 07:63:94:84:53:25:08:4B:B9:EF:78:D4:F7:17:FC:4B:54:5F:A7:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2OUhFMlCEu573jU9xf8S1Rfp-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e996aa-2dcb-4c43-93fd-34b7d17ff715/1/XpdAC2CuEGkYk1z1zkOTjlju-Rg.roa
Signing time: Thu 02 Jan 2025 05:49:07 +0000
ROA not before: Thu 02 Jan 2025 05:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52199
IP address blocks: 45.149.54.0/24 maxlen: 24
2a0b:18c0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:7a:f7:a9:11:86:64:da:d3:a3:c3:a5:36:5d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=076394845325084bb9ef78d4f717fc4b545fa7ed
Validity
Not Before: Jan 2 05:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e97400b60ae106918935cf5ce43938e58eef918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:39:81:55:f9:94:53:74:06:03:c6:7d:29:
77:c5:b9:8f:7a:59:a6:9a:66:49:0d:fb:d5:1e:57:
76:a2:d8:ed:14:22:58:1a:41:d7:6b:c7:f2:f4:bf:
38:27:74:7f:39:c5:8b:86:0e:94:67:c1:cd:54:1a:
8c:38:5c:3b:f6:83:ca:a0:46:b0:2f:f4:ac:e4:ae:
19:ed:ec:41:07:58:6b:4a:e7:72:28:d2:db:ef:67:
63:7e:fb:fd:25:6d:7c:bf:d2:5f:c7:77:05:c3:fe:
51:d1:86:f5:94:39:c7:02:8d:72:e4:d3:ec:74:43:
3e:eb:18:ff:f0:9a:04:36:b8:c4:04:3f:61:78:2b:
04:40:87:60:41:eb:08:5f:f0:6a:04:f9:ae:5c:6d:
8e:4e:c4:f0:3c:59:ce:d2:9e:74:a7:4e:4a:fa:33:
76:8f:49:e6:63:dd:59:12:68:6d:f0:5b:ca:e1:19:
41:b2:a4:02:30:21:a0:ed:3d:de:35:04:55:50:c4:
53:db:8f:2f:dc:e2:bc:cf:88:77:21:92:00:73:f6:
b2:c3:50:13:51:94:ad:cd:2a:97:9f:ec:06:a4:08:
a6:76:20:cb:69:5d:18:2f:c8:ad:3f:69:a9:64:13:
04:e5:f0:c4:b5:14:be:68:37:2d:52:31:42:07:76:
55:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:97:40:0B:60:AE:10:69:18:93:5C:F5:CE:43:93:8E:58:EE:F9:18
X509v3 Authority Key Identifier:
keyid:07:63:94:84:53:25:08:4B:B9:EF:78:D4:F7:17:FC:4B:54:5F:A7:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2OUhFMlCEu573jU9xf8S1Rfp-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e996aa-2dcb-4c43-93fd-34b7d17ff715/1/XpdAC2CuEGkYk1z1zkOTjlju-Rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e996aa-2dcb-4c43-93fd-34b7d17ff715/1/B2OUhFMlCEu573jU9xf8S1Rfp-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.54.0/24
IPv6:
2a0b:18c0::/29
Signature Algorithm: sha256WithRSAEncryption
09:42:77:28:95:2e:fb:6e:6d:01:d6:b0:6b:c9:c6:38:79:98:
55:1e:82:67:0f:df:6f:55:4b:a5:60:a2:ab:cf:3e:e5:81:38:
1c:4d:d2:1f:6d:f7:e8:28:37:12:3d:bb:04:c3:e1:b4:8c:c7:
0d:fa:be:27:ec:a0:05:92:f4:e6:97:ca:a2:f4:ca:c7:8f:5d:
dd:96:1f:2c:63:84:68:56:4e:08:54:9f:e7:c9:e2:5e:f5:1d:
6f:2e:36:95:5e:aa:5f:b8:1d:fa:e9:df:28:b6:d2:d1:33:0f:
1b:9a:3d:e1:ff:a2:27:ce:94:96:72:5f:4c:fc:2b:e2:78:5d:
83:e1:4b:68:bd:22:ce:47:cf:8c:61:fc:d1:f7:28:d5:8f:e2:
07:6a:4b:7c:35:98:17:9e:aa:14:53:6d:1e:f2:a7:e9:e6:ea:
8d:8f:08:2a:d6:27:cb:f8:25:61:00:7e:97:df:5f:d9:40:a2:
41:fc:2d:07:58:89:9f:4b:31:37:93:14:2f:7b:04:39:f3:b2:
35:5a:54:90:2d:31:a9:5b:2c:4d:3d:b1:00:99:13:15:c7:b8:
9f:22:84:50:be:9f:ad:ac:b3:89:8b:66:c5:33:29:44:3f:6b:
65:a1:c1:45:f1:21:e8:61:1d:ff:48:67:80:63:be:65:e7:94:
49:c4:74:dc
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQlj3r3qRGGZNrTo8OlNl1iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3NjM5NDg0NTMyNTA4NGJiOWVmNzhkNGY3MTdmYzRiNTQ1
ZmE3ZWQwHhcNMjUwMTAyMDU0OTA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTk3NDAwYjYwYWUxMDY5MTg5MzVjZjVjZTQzOTM4ZTU4ZWVmOTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsH85gVX5lFN0BgPGfSl3xbmPelmm
mmZJDfvVHld2otjtFCJYGkHXa8fy9L84J3R/OcWLhg6UZ8HNVBqMOFw79oPKoEaw
L/Ss5K4Z7exBB1hrSudyKNLb72djfvv9JW18v9Jfx3cFw/5R0Yb1lDnHAo1y5NPs
dEM+6xj/8JoENrjEBD9heCsEQIdgQesIX/BqBPmuXG2OTsTwPFnO0p50p05K+jN2
j0nmY91ZEmht8FvK4RlBsqQCMCGg7T3eNQRVUMRT248v3OK8z4h3IZIAc/ayw1AT
UZStzSqXn+wGpAimdiDLaV0YL8itP2mpZBME5fDEtRS+aDctUjFCB3ZV/QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFF6XQAtgrhBpGJNc9c5Dk45Y7vkYMB8GA1UdIwQY
MBaAFAdjlIRTJQhLue941PcX/EtUX6ftMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjJPVWhGTWxDRXU1NzNqVTl4ZjhTMVJmcC0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lOTk2YWEtMmRjYi00YzQzLTkzZmQt
MzRiN2QxN2ZmNzE1LzEvWHBkQUMyQ3VFR2tZazF6MXprT1RqbGp1LVJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9lOTk2YWEtMmRjYi00YzQzLTkzZmQtMzRiN2QxN2ZmNzE1
LzEvQjJPVWhGTWxDRXU1NzNqVTl4ZjhTMVJmcC0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALZU2MA0E
AgACMAcDBQMqCxjAMA0GCSqGSIb3DQEBCwUAA4IBAQAJQncolS77bm0B1rBrycY4
eZhVHoJnD99vVUulYKKrzz7lgTgcTdIfbffoKDcSPbsEw+G0jMcN+r4n7KAFkvTm
l8qi9MrHj13dlh8sY4RoVk4IVJ/nyeJe9R1vLjaVXqpfuB366d8ottLRMw8bmj3h
/6InzpSWcl9M/CvieF2D4UtovSLOR8+MYfzR9yjVj+IHakt8NZgXnqoUU20e8qfp
5uqNjwgq1ifL+CVhAH6X31/ZQKJB/C0HWImfSzE3kxQvewQ587I1WlSQLTGpWyxN
PbEAmRMVx7ifIoRQvp+trLOJi2bFMylEP2tlocFF8SHoYR3/SGeAY75l55RJxHTc
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:46 2025 by rpki-client on console.sobornost.net