Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/0w9FBc0vTYSPsjAWKJJCnffXw-k.roa
File: 0w9FBc0vTYSPsjAWKJJCnffXw-k.roa (raw, json)
Hash identifier: jLDk0IcPs8Pb9A807RQu6H+l6FnV9GFyw8DjOzzYbaA=
Subject key identifier: D3:0F:45:05:CD:2F:4D:84:8F:B2:30:16:28:92:42:9D:F7:D7:C3:E9
Certificate issuer: /CN=235163d39db88816cddc597a5db5eae707d3de39
Certificate serial: 01941FFA8F2B1600532E75EA46D91DFF68DD
Authority key identifier: 23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/0w9FBc0vTYSPsjAWKJJCnffXw-k.roa
Signing time: Wed 01 Jan 2025 03:48:21 +0000
ROA not before: Wed 01 Jan 2025 03:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203819
IP address blocks: 45.150.123.0/24 maxlen: 24
2a0f:be01::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8f:2b:16:00:53:2e:75:ea:46:d9:1d:ff:68:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=235163d39db88816cddc597a5db5eae707d3de39
Validity
Not Before: Jan 1 03:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d30f4505cd2f4d848fb230162892429df7d7c3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:03:f5:cf:7c:30:38:3b:7c:03:cb:29:e3:
02:f8:57:61:17:e6:ea:6c:3a:39:b7:8a:bd:10:b4:
8b:9e:96:25:cb:5f:8d:15:b6:05:14:6c:ca:67:d8:
7d:6d:b5:e8:2f:16:96:cd:4a:33:d2:91:b2:f3:a7:
22:d7:84:bd:9a:ea:d7:d8:dd:79:0f:74:88:30:23:
c9:72:69:64:75:a1:96:33:72:0e:2a:57:a0:61:98:
86:5e:28:6f:90:b0:da:88:ff:4d:34:5f:6a:54:ad:
76:89:87:36:0b:7b:64:c6:4a:50:5a:bf:a0:c1:1b:
30:f4:5b:c8:58:4a:23:d3:dc:d6:cf:0f:cc:a6:cd:
47:45:8a:9f:cd:50:27:5c:d4:fd:63:63:47:7e:8f:
25:58:11:a9:ef:83:d4:4e:cb:a4:97:b1:9a:b5:2c:
0e:31:d1:47:e1:16:3b:84:b0:fb:71:d5:d7:41:b5:
00:be:b5:fa:23:69:a2:23:e4:19:db:56:a3:5b:ce:
ba:ce:11:1d:80:ae:b9:8e:fc:f0:ad:81:5c:cd:4b:
73:e2:93:a8:e4:e2:30:d2:ab:9a:f0:3e:fa:12:f3:
65:d1:38:22:3c:ed:bb:05:e7:43:3c:45:ca:ba:f9:
00:f6:bd:ce:c3:f1:ba:61:4f:8d:0d:99:f1:d2:21:
25:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0F:45:05:CD:2F:4D:84:8F:B2:30:16:28:92:42:9D:F7:D7:C3:E9
X509v3 Authority Key Identifier:
keyid:23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/0w9FBc0vTYSPsjAWKJJCnffXw-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.123.0/24
IPv6:
2a0f:be01::/40
Signature Algorithm: sha256WithRSAEncryption
10:1c:99:1d:66:ef:f9:5a:1d:eb:72:a3:2e:68:3f:3f:b9:b4:
6a:07:f0:bc:02:d4:ee:78:2a:78:d7:f9:38:67:5c:56:b8:2f:
98:db:dc:88:f2:2e:ec:76:71:83:15:dc:b3:d8:72:48:3c:3d:
6a:30:0d:84:e0:27:f3:68:ab:76:5d:87:13:7d:cd:b7:ed:e6:
2b:45:3a:40:62:7b:22:06:25:a1:55:1e:1b:6d:02:6f:b9:c3:
4a:77:52:34:0f:4e:d3:7b:da:d4:cc:d7:b1:71:a1:4d:62:da:
bc:c9:d6:08:f8:46:89:ac:cd:a7:55:61:84:28:10:75:da:80:
06:bc:c8:7b:26:a1:d3:cf:2a:f4:5a:04:b9:b2:92:a4:fc:1c:
da:d4:90:15:25:dd:6f:35:15:e6:56:eb:bd:b4:3e:6a:ed:5b:
b3:b4:05:2b:d8:7d:8f:e2:21:5c:d6:73:c8:ba:a6:e7:2b:6a:
1e:ee:ed:ed:9c:8b:16:fc:56:05:1e:be:e7:a2:b5:83:d8:e2:
eb:14:a3:2f:d5:fe:28:09:7a:72:ad:6d:f2:00:43:cd:e0:f9:
82:c2:75:af:ec:57:f3:cf:34:63:a7:6e:4f:99:39:5b:2b:46:
61:b9:b3:96:5a:1a:bd:8e:67:cf:ee:38:16:8f:b9:c1:a1:5a:
99:97:66:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:47 2025 by rpki-client on console.sobornost.net