Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/mAXlXNB9v-X9Wiu9xA-qkNOSmGk.roa
File: mAXlXNB9v-X9Wiu9xA-qkNOSmGk.roa (raw, json)
Hash identifier: oVGw8L/hb1uj03ZIPyJ/jrTD+46lhm6KM/O1Nxc9Los=
Subject key identifier: 98:05:E5:5C:D0:7D:BF:E5:FD:5A:2B:BD:C4:0F:AA:90:D3:92:98:69
Certificate issuer: /CN=f97fdecadb3261334387cf091d02e0713b781d31
Certificate serial: 01942068084164646B0AD0A3AED11601F671
Authority key identifier: F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/mAXlXNB9v-X9Wiu9xA-qkNOSmGk.roa
Signing time: Wed 01 Jan 2025 05:47:56 +0000
ROA not before: Wed 01 Jan 2025 05:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212700
IP address blocks: 45.13.146.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:08:41:64:64:6b:0a:d0:a3:ae:d1:16:01:f6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f97fdecadb3261334387cf091d02e0713b781d31
Validity
Not Before: Jan 1 05:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9805e55cd07dbfe5fd5a2bbdc40faa90d3929869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e6:01:56:93:71:bd:14:4f:5a:37:37:5d:fd:
79:69:ee:aa:a7:2b:4c:0a:0c:1e:1a:90:24:60:54:
c1:0e:c7:d7:af:0c:95:d9:c7:57:d1:98:90:88:c7:
2a:4b:b2:0c:4b:5e:ac:81:b3:37:b4:8c:1d:98:15:
91:25:0c:b5:04:aa:7d:84:01:d1:e2:20:0f:b9:f1:
c5:a7:aa:7b:45:f1:82:f2:1e:e7:f0:84:ab:82:56:
65:f3:84:1b:b3:0d:d4:4c:56:5e:87:49:e3:85:9a:
7a:cc:89:a5:a4:06:83:ed:e1:f1:bf:1f:fa:62:ec:
45:09:fa:52:f4:6c:97:06:e4:80:a5:b6:77:e7:5f:
38:09:c1:23:36:a3:55:36:3c:69:87:02:07:5b:83:
f6:65:77:11:57:34:a2:06:ac:50:31:9c:25:7c:7c:
95:25:f3:b4:1e:f1:19:60:c6:58:b7:76:6b:0a:f7:
d6:21:4d:c8:08:ae:a8:4b:6d:61:89:14:00:ed:ba:
66:b7:8d:76:7b:44:90:4f:c5:dd:35:e0:7a:c8:78:
d4:12:99:e6:f9:da:9e:f9:00:f4:9d:8e:ac:77:97:
0f:30:4f:07:3b:c4:08:4e:37:85:31:1b:b6:49:4f:
27:b3:ed:3d:59:98:19:53:36:de:f6:54:96:58:63:
df:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:05:E5:5C:D0:7D:BF:E5:FD:5A:2B:BD:C4:0F:AA:90:D3:92:98:69
X509v3 Authority Key Identifier:
keyid:F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/mAXlXNB9v-X9Wiu9xA-qkNOSmGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/1-X_eytsyYTNDh88JHQLgcTt4HTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.146.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:eb:a5:45:05:c4:ad:7f:3b:41:a7:e5:3a:14:a0:b2:69:68:
b7:30:a6:dc:c6:9c:09:e2:60:55:38:06:98:12:a1:f9:a1:ba:
ce:f1:d0:fd:82:cb:fd:18:ba:c4:3f:bd:f8:7a:ef:ea:b2:7e:
23:05:24:48:9c:66:6a:66:75:69:b6:a0:c5:c2:57:15:86:7c:
4c:8f:0f:94:12:c1:d7:74:e7:3c:41:fe:d5:f1:f0:6b:dd:83:
e8:39:64:69:12:77:70:89:07:7f:df:fc:cb:fb:aa:cd:56:bf:
64:59:aa:a9:80:34:ab:02:9e:f5:84:83:62:cc:86:b6:07:41:
66:32:37:26:fe:b5:d1:ef:ec:9e:f1:17:fc:09:e0:e7:2a:40:
fb:cc:74:e6:b4:81:1b:fb:be:ef:4c:77:45:57:2d:b0:dc:bb:
84:4a:9d:23:06:1f:63:1c:2e:c9:72:68:5a:20:20:5a:fa:34:
8d:8d:ea:36:f6:c8:e8:8c:89:61:a3:e4:5f:f9:38:a4:2e:89:
0a:d9:0f:6c:a8:1b:a6:06:0c:4e:3e:29:07:36:75:e4:1d:e3:
12:8e:e7:bb:33:79:a9:6f:19:9d:ef:ba:3e:99:bc:4c:30:41:
07:5c:90:ee:31:df:d6:ea:ec:6f:e2:9d:bb:40:63:b5:6f:93:
c0:9a:4a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net