Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/vNgalWxKyCFGqWuDm-_4-hQvAN8.roa
File: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (raw, json)
Hash identifier: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=
Subject key identifier: BC:D8:1A:95:6C:4A:C8:21:46:A9:6B:83:9B:EF:F8:FA:14:2F:00:DF
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 019426D9AE1935D449C4395A59EADFC67576
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/vNgalWxKyCFGqWuDm-_4-hQvAN8.roa
Signing time: Thu 02 Jan 2025 11:49:47 +0000
ROA not before: Thu 02 Jan 2025 11:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208847
IP address blocks: 45.82.232.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:ae:19:35:d4:49:c4:39:5a:59:ea:df:c6:75:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jan 2 11:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bcd81a956c4ac82146a96b839beff8fa142f00df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ef:bc:54:b7:3e:34:57:a7:9f:52:b5:0c:3d:
db:48:67:da:2c:07:08:32:d0:95:e9:46:40:6c:df:
7f:e1:e1:e3:54:79:82:46:80:4b:1f:01:33:76:75:
53:ea:22:58:8b:5e:4d:ea:aa:90:e9:2d:85:7a:a7:
99:27:ca:e4:55:f9:c1:df:77:07:45:6b:aa:7d:90:
76:44:9e:c3:4c:41:7e:4a:36:30:94:63:af:dd:67:
52:f2:f1:5a:3f:26:dd:ad:bd:9c:bb:36:55:6a:dd:
92:61:eb:08:3d:60:70:0d:16:f7:f9:f3:49:dc:bc:
9b:30:74:56:aa:ed:6e:a8:60:93:11:90:21:66:39:
7f:51:1a:b4:cf:34:36:18:fd:26:fc:3a:03:99:22:
98:be:86:23:c6:58:67:b0:7b:4d:d9:0f:b9:f2:33:
50:63:ed:35:a3:91:5a:d0:0a:ea:11:7b:37:f2:68:
46:bb:eb:67:28:cb:0d:af:b2:61:47:9d:6b:44:5a:
a6:db:69:25:37:36:25:e8:5c:ff:02:92:1e:25:0b:
61:8a:83:c7:b0:45:bc:ff:ed:d1:ad:ed:67:90:c4:
20:20:5b:cd:79:3e:d4:13:63:6a:a4:76:d8:71:9a:
38:53:f8:13:57:58:36:85:94:33:11:0b:c1:ff:f7:
56:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D8:1A:95:6C:4A:C8:21:46:A9:6B:83:9B:EF:F8:FA:14:2F:00:DF
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/vNgalWxKyCFGqWuDm-_4-hQvAN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.232.0/22
Signature Algorithm: sha256WithRSAEncryption
24:d4:78:6e:3c:7e:ff:b3:45:1a:50:18:f3:70:3f:80:b7:46:
9a:af:4d:89:98:e0:df:df:bf:a1:e2:c2:26:7f:01:d4:3d:78:
18:b7:a0:ff:18:ae:94:89:99:c9:f3:bc:1b:f7:aa:8e:25:62:
91:a9:d1:08:4c:60:fe:23:90:c5:18:46:56:6b:32:40:83:a2:
8d:8e:89:26:02:e4:43:a5:bf:88:cc:e9:5d:bc:db:52:cd:5b:
74:f8:53:d2:dc:df:c7:1c:e5:3a:f7:d5:62:8c:b9:59:87:bd:
6b:ac:4d:d2:9c:ad:e0:a9:c2:cd:c0:77:2b:08:4c:de:91:2c:
8a:1a:27:d7:33:c3:4a:6c:7b:ce:a5:73:0f:e4:dd:72:66:59:
b7:2a:07:79:19:a0:ad:73:f1:7f:ae:9b:92:35:f1:53:66:91:
9f:cd:ec:57:c5:28:d3:4e:fb:03:29:8d:4c:0c:93:f7:50:fe:
12:11:59:cf:80:59:a8:4b:7b:a1:a9:99:11:d2:68:0b:66:4f:
df:c4:3f:f5:77:1a:f4:4b:f0:9a:f8:f2:b1:ef:6c:39:87:fb:
43:c7:fb:1b:c9:e3:0f:9a:3e:d0:53:3e:ea:66:c0:1e:78:52:
a8:02:a2:0f:02:fc:fb:a8:a3:10:7a:b5:a9:f0:8f:1a:58:8e:
68:50:58:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net