Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/FrmVEYuDa9xtluHCEQ99gg4ezxk.roa
File: FrmVEYuDa9xtluHCEQ99gg4ezxk.roa (raw, json)
Hash identifier: ROrbhIKSviaPzDwOSSegQp+fGjZAnP/YBP5hACLrt+g=
Subject key identifier: 16:B9:95:11:8B:83:6B:DC:6D:96:E1:C2:11:0F:7D:82:0E:1E:CF:19
Certificate issuer: /CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Certificate serial: 0194258F07DD86C1EFF03C2B6AEC84ABACB1
Authority key identifier: 52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/FrmVEYuDa9xtluHCEQ99gg4ezxk.roa
Signing time: Thu 02 Jan 2025 05:48:38 +0000
ROA not before: Thu 02 Jan 2025 05:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207942
IP address blocks: 45.152.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:07:dd:86:c1:ef:f0:3c:2b:6a:ec:84:ab:ac:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Validity
Not Before: Jan 2 05:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16b995118b836bdc6d96e1c2110f7d820e1ecf19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c3:f8:93:d9:bb:0c:36:a2:bc:cc:24:86:52:
d2:4e:95:e2:c8:07:f3:67:c9:e0:7f:00:8f:a2:73:
26:e5:71:f6:43:7f:87:57:f2:96:d7:c7:c9:bf:eb:
60:f7:cf:82:28:0d:dc:06:63:8d:01:59:fd:a3:72:
7d:01:c6:1f:87:08:cd:22:c7:44:46:9a:fb:75:f0:
fb:8a:65:69:0b:cb:ba:f2:fd:71:4b:59:8d:43:27:
ec:ed:74:a3:d0:ca:cb:d7:0e:1d:4e:5f:d8:45:0a:
92:1d:b4:c0:64:33:2b:ea:8c:73:6b:a3:ec:75:bc:
2f:07:9e:be:56:6b:97:67:21:ed:3e:b0:32:21:9f:
67:1f:cf:36:e4:b2:7c:1a:06:8e:7c:e6:4e:c0:98:
d9:40:d0:8d:51:25:d3:42:ec:fa:5e:07:60:fb:0d:
99:fb:6c:5f:ef:51:f9:7a:c8:d0:70:9c:15:95:2d:
08:45:fb:f2:12:16:5b:aa:c7:ec:93:67:68:f7:bb:
8e:68:fe:66:c9:9b:32:60:a9:80:89:e1:cb:85:65:
0d:9f:a5:ae:1e:23:c2:5d:df:7e:86:45:3c:d8:ea:
12:cc:bb:b5:bb:55:d3:38:0c:e9:0e:ca:50:53:6a:
23:b2:72:11:74:16:c4:57:92:a3:f0:f2:07:a7:c5:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B9:95:11:8B:83:6B:DC:6D:96:E1:C2:11:0F:7D:82:0E:1E:CF:19
X509v3 Authority Key Identifier:
keyid:52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/FrmVEYuDa9xtluHCEQ99gg4ezxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/Up-6tRcaXLIvbFTxCzostttRcj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.248.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:10:1a:a3:00:1c:08:63:2b:27:5b:c6:ff:6d:f6:ac:a6:00:
78:93:cf:6c:d9:68:e1:42:d5:6b:04:78:e0:5e:d8:32:e0:00:
4f:f5:eb:b5:61:77:31:43:1e:4a:f7:4b:a4:43:d2:25:eb:3e:
71:4d:37:b2:31:58:22:af:b1:18:29:f2:3c:66:23:7e:59:2f:
9c:13:ba:08:75:79:32:62:c3:1f:46:ed:87:ea:3d:5d:62:ce:
5e:a4:f3:0a:e2:6d:08:89:99:96:ad:29:bf:e2:2b:f7:84:3c:
70:1c:d3:3e:24:5e:a6:00:fe:a5:1f:a0:df:b0:05:15:ed:35:
8e:42:a3:86:32:66:e5:5f:98:6d:22:ac:d6:25:41:88:18:6a:
d3:4b:55:3d:17:45:a7:fa:e7:61:2c:be:53:b8:10:45:71:25:
9d:e9:af:35:e6:bd:89:d7:18:75:62:57:63:04:02:33:c9:dc:
55:30:c5:1a:20:69:42:01:16:60:f5:01:64:6b:43:90:0a:fc:
a7:6a:97:3c:54:ee:7d:16:7d:5c:80:72:59:2a:20:d1:76:2d:
c3:ff:dc:2d:8f:e8:09:1d:8f:63:d7:9f:ce:53:b7:49:85:1c:
71:05:b0:64:9e:d9:ed:ed:75:d9:61:ec:a9:5e:a4:b6:a9:c4:
bf:e5:0a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:57 2025 by rpki-client on console.sobornost.net