Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/1-Dc1j-sDoajA4rj7PpUTOnwnU-0.roa
File: 1-Dc1j-sDoajA4rj7PpUTOnwnU-0.roa (raw, json)
Hash identifier: NijhNjLNNvEG1LM/N8d14Oe4TjDIViDnHYlMTh5ifKg=
Subject key identifier: F8:37:35:8F:EB:03:A1:A8:C0:E2:B8:FB:3E:95:13:3A:7C:27:53:ED
Certificate issuer: /CN=6cf9b24f2c0847d041c1e66a12f01eaba478b4fc
Certificate serial: 01942068425056EF17253BDD2871536034B2
Authority key identifier: 6C:F9:B2:4F:2C:08:47:D0:41:C1:E6:6A:12:F0:1E:AB:A4:78:B4:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPmyTywIR9BBweZqEvAeq6R4tPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/1-Dc1j-sDoajA4rj7PpUTOnwnU-0.roa
Signing time: Wed 01 Jan 2025 05:48:11 +0000
ROA not before: Wed 01 Jan 2025 05:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215694
IP address blocks: 45.156.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:42:50:56:ef:17:25:3b:dd:28:71:53:60:34:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf9b24f2c0847d041c1e66a12f01eaba478b4fc
Validity
Not Before: Jan 1 05:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f837358feb03a1a8c0e2b8fb3e95133a7c2753ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:f2:ad:50:e3:a6:65:7b:35:b1:c0:68:81:
b9:cc:02:e4:8d:84:a4:0e:20:27:c5:20:81:ed:e5:
99:75:d3:a0:53:c3:c9:9a:b9:4c:3e:c8:f1:8e:ac:
48:33:9f:b3:94:25:42:95:23:1f:fe:0b:a5:cb:1c:
7c:62:8c:2f:0a:e0:e9:09:54:18:d9:28:08:62:53:
4c:3d:5c:12:1a:16:95:f3:40:42:eb:9e:c7:aa:d1:
eb:23:45:ba:a5:0c:cc:d3:59:4e:ae:ec:13:45:78:
bf:3a:d8:d6:f3:43:a9:0f:30:49:28:5f:6f:f6:79:
40:a0:86:66:bc:90:5f:a0:f4:c3:79:9c:27:1c:64:
c4:ef:77:8b:69:66:f0:9b:bb:83:5e:f0:82:2d:ad:
1f:71:fe:e6:df:6d:22:a6:be:b0:31:47:29:74:ef:
34:93:1c:e6:a3:13:ab:27:13:79:61:19:29:9d:47:
9f:8f:5c:e0:b2:e1:0a:35:a8:e6:7c:fa:88:24:c9:
ad:25:e1:fc:64:b9:99:61:08:f8:8a:d2:f9:55:42:
6d:fa:e6:4b:8d:a0:39:64:b6:59:77:99:64:0f:bd:
f2:87:91:a7:6d:74:81:67:97:44:48:49:db:1b:fd:
37:b8:80:c0:ce:a4:52:15:a4:67:2e:5d:5e:03:03:
d1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:37:35:8F:EB:03:A1:A8:C0:E2:B8:FB:3E:95:13:3A:7C:27:53:ED
X509v3 Authority Key Identifier:
keyid:6C:F9:B2:4F:2C:08:47:D0:41:C1:E6:6A:12:F0:1E:AB:A4:78:B4:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPmyTywIR9BBweZqEvAeq6R4tPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/1-Dc1j-sDoajA4rj7PpUTOnwnU-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b45765-2c33-4a49-91eb-946892f88beb/1/bPmyTywIR9BBweZqEvAeq6R4tPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.154.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:8a:09:19:43:55:ba:98:22:78:b8:8d:e9:39:d9:ae:30:06:
56:b5:41:47:85:ca:29:fa:ee:62:9f:02:7b:b3:e7:9c:3b:bf:
60:87:f7:7c:ee:7d:4b:0f:c7:13:54:34:fe:d5:2d:cf:07:e5:
cb:34:07:7f:ee:9f:69:81:04:91:17:e0:38:32:57:2a:c0:82:
7b:a7:80:59:44:15:83:48:13:08:8b:62:4e:13:03:18:7e:66:
8b:b9:26:60:b3:4b:ad:6e:07:23:dc:37:2d:3f:bc:59:eb:74:
57:a7:e9:ba:da:55:e8:3c:69:86:dc:4f:28:d8:b5:0e:6a:33:
f9:e1:4b:5d:a0:0b:fb:ff:40:9f:ea:00:1a:5a:76:c8:82:eb:
e6:02:02:ce:de:18:2e:d6:48:bf:3d:df:e6:63:54:7f:dc:5d:
6d:01:aa:52:62:de:ab:fe:9c:93:c3:20:fe:2c:40:79:39:14:
37:ee:eb:21:e6:15:85:ac:6f:b0:ed:05:7a:6d:84:13:cf:d9:
40:27:21:0b:ae:fe:b2:fd:25:ad:7b:9a:b1:c2:16:42:ec:2b:
28:a3:46:b5:a3:85:19:ce:03:4e:e4:db:36:72:c1:a3:53:13:
4b:36:35:b0:34:f1:2b:05:e5:0e:d0:2a:eb:45:a0:94:f5:25:
18:cc:3f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:34 2025 by rpki-client on console.sobornost.net