Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/KdlAk3dh27bShWAn4-0kWb61hVQ.roa
File: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (raw, json)
Hash identifier: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=
Subject key identifier: 29:D9:40:93:77:61:DB:B6:D2:85:60:27:E3:ED:24:59:BE:B5:85:54
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 019426D977489E8281CA1A5186C45DCDAFDE
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/KdlAk3dh27bShWAn4-0kWb61hVQ.roa
Signing time: Thu 02 Jan 2025 11:49:33 +0000
ROA not before: Thu 02 Jan 2025 11:49:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9044
IP address blocks: 45.86.132.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:77:48:9e:82:81:ca:1a:51:86:c4:5d:cd:af:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Jan 2 11:49:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=29d940937761dbb6d2856027e3ed2459beb58554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:11:fc:3e:c5:e5:ad:f8:e6:7e:79:9b:e7:30:
0a:fe:23:aa:e2:fd:22:ad:7b:16:a0:32:50:06:89:
b4:7a:c9:88:e0:a6:81:c6:a6:7a:18:ab:34:f8:1d:
65:08:ab:0b:0a:b0:74:02:7f:75:ac:33:2f:8f:83:
2e:83:7c:74:4d:34:09:49:ac:4d:5c:7a:b9:4e:dc:
6d:54:24:b7:50:d7:80:d9:bc:04:a1:1d:e6:df:16:
ac:12:53:34:de:ea:ed:c6:ec:17:47:e0:f4:a0:3a:
59:f8:46:4b:75:4b:0c:7d:c3:c3:87:59:7f:08:b6:
dc:95:bb:eb:53:e7:d3:49:6f:a3:52:67:ad:a2:4a:
05:76:2e:e4:9a:e7:24:cb:f0:dc:f5:a7:34:7a:54:
74:40:5d:13:67:97:e3:c9:c9:53:5c:ec:b8:0f:53:
aa:d9:d6:ac:55:99:07:0c:c5:f1:cc:ea:32:bc:9a:
10:17:b0:d8:e2:9e:9f:ac:a8:f6:75:b1:1a:b3:3c:
c1:d1:16:49:d1:a3:45:1b:5f:87:6f:01:4d:74:ae:
97:70:61:b0:a9:ff:75:9d:4e:ff:04:93:2c:d9:af:
dc:29:8a:bb:e8:0d:fa:f2:4b:af:f5:cf:fd:90:58:
9d:d1:ea:86:18:d5:6d:1e:4e:b5:b2:7d:89:5b:53:
c2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D9:40:93:77:61:DB:B6:D2:85:60:27:E3:ED:24:59:BE:B5:85:54
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/KdlAk3dh27bShWAn4-0kWb61hVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.132.0/23
Signature Algorithm: sha256WithRSAEncryption
10:3f:97:76:3d:2e:4e:7f:b6:9d:b4:f6:9c:20:99:59:13:f9:
18:db:ed:0c:21:b9:3a:c1:31:ed:df:da:32:9b:da:16:fd:22:
fd:1b:2c:de:46:3d:18:bc:2e:fc:f9:54:0c:58:9f:68:0a:16:
9e:54:07:f1:db:01:84:a6:59:c7:5c:fd:13:b5:3c:de:77:e7:
02:75:2d:03:f6:15:40:f5:1a:c1:6c:ee:90:95:58:78:18:7c:
d7:be:5f:4c:db:83:c0:ea:67:62:15:9c:ac:66:50:35:f1:5e:
eb:6b:ed:f4:76:f4:14:4b:3d:c2:15:99:59:de:2d:14:57:2b:
85:a9:8f:31:f2:4d:48:62:76:16:8f:7b:46:ee:95:8a:d3:bb:
dc:b5:a8:e4:1d:b6:6e:7a:19:20:08:6b:f0:e7:6e:a6:14:de:
a9:35:38:ef:44:2d:87:b7:c6:37:e5:a4:02:3a:fb:bb:31:fb:
37:71:e8:ca:45:fb:a1:ff:7e:d5:a1:67:0e:46:fb:bb:e7:63:
54:c0:b5:5e:0a:ec:89:18:2f:81:36:96:e1:3a:6e:68:a0:03:
bb:63:8f:f8:96:c7:ff:77:b5:1d:e1:e7:47:6e:01:f5:75:0f:
f5:cc:0b:03:d0:f2:cd:5b:b2:2b:44:65:63:53:d7:a1:b7:f6:
20:45:3d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net