Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/9f18f8-96c4-4b23-931f-d5f047c29190/1/3uMI0eyGDTP_4VBHSu_Gi3THkOI.roa
File: 3uMI0eyGDTP_4VBHSu_Gi3THkOI.roa (raw, json)
Hash identifier: Cm4F2kvA5ErK54YFSvS76c/R+lAu7cqvwhz+i9YfFXg=
Subject key identifier: DE:E3:08:D1:EC:86:0D:33:FF:E1:50:47:4A:EF:C6:8B:74:C7:90:E2
Certificate issuer: /CN=33358b451ee0fe85b004a0564f8310fb211c95fa
Certificate serial: 01946934450F77A879BD7812C9EF44E7D9A5
Authority key identifier: 33:35:8B:45:1E:E0:FE:85:B0:04:A0:56:4F:83:10:FB:21:1C:95:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzWLRR7g_oWwBKBWT4MQ-yEclfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/9f18f8-96c4-4b23-931f-d5f047c29190/1/3uMI0eyGDTP_4VBHSu_Gi3THkOI.roa
Signing time: Wed 15 Jan 2025 09:03:40 +0000
ROA not before: Wed 15 Jan 2025 09:03:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49042
IP address blocks: 45.148.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:34:45:0f:77:a8:79:bd:78:12:c9:ef:44:e7:d9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33358b451ee0fe85b004a0564f8310fb211c95fa
Validity
Not Before: Jan 15 09:03:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dee308d1ec860d33ffe150474aefc68b74c790e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:32:eb:6d:8f:2e:77:13:7c:41:93:b8:86:
9d:c1:5a:1e:eb:8a:07:ae:58:36:b2:67:c4:df:4d:
5b:fb:10:37:42:1c:5a:85:dd:49:a2:7b:e6:5f:eb:
c1:a9:12:22:5b:1d:5d:e5:98:08:5d:52:ca:c3:3d:
90:cb:8e:99:08:e6:ef:4d:67:85:39:50:d9:0f:da:
b9:08:9b:2d:8b:91:21:53:cd:d9:93:80:42:1c:e0:
6e:51:60:dc:07:55:bb:0a:fa:9a:8d:c3:b7:a7:64:
3b:f4:a8:72:1f:05:ed:90:d6:50:58:9f:11:d7:07:
cf:b6:1d:d7:49:34:c9:9a:7c:f4:1d:4b:ee:b8:38:
3b:0c:2f:3c:09:7b:0e:03:9a:7d:8a:bd:cd:3d:bc:
89:cf:88:04:29:62:17:1d:79:fb:61:ef:ea:7f:9b:
3e:55:00:fa:9a:ad:56:53:e9:55:c9:30:13:51:b7:
c7:49:4e:ea:27:8a:3b:9d:a1:c7:e5:e1:43:0e:6b:
fa:5b:87:d1:1b:bc:8e:9a:ce:05:85:97:15:42:95:
83:56:d7:76:d6:92:15:9a:55:99:a2:2e:23:b1:e0:
df:18:8e:13:e0:f7:69:b1:ad:4d:ff:a6:7c:ab:82:
29:d6:50:48:36:14:f9:f7:48:c0:69:a9:20:0a:9a:
f3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E3:08:D1:EC:86:0D:33:FF:E1:50:47:4A:EF:C6:8B:74:C7:90:E2
X509v3 Authority Key Identifier:
keyid:33:35:8B:45:1E:E0:FE:85:B0:04:A0:56:4F:83:10:FB:21:1C:95:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzWLRR7g_oWwBKBWT4MQ-yEclfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/9f18f8-96c4-4b23-931f-d5f047c29190/1/3uMI0eyGDTP_4VBHSu_Gi3THkOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/9f18f8-96c4-4b23-931f-d5f047c29190/1/MzWLRR7g_oWwBKBWT4MQ-yEclfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.123.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c2:d5:37:c1:75:23:24:0c:47:a2:2d:b1:71:77:4a:9d:cc:
6e:b1:50:7c:10:58:a7:4e:49:fa:aa:f9:cc:41:ad:32:3d:86:
3b:c3:53:c9:ec:8f:41:93:49:87:1a:10:29:56:07:b0:0b:d8:
32:30:27:f5:ac:97:c2:cb:62:63:c6:1f:ac:57:46:49:9e:f9:
33:69:6f:0e:a3:b4:cb:3b:30:c6:49:82:30:f0:40:49:f0:47:
0d:9e:9e:04:d4:61:93:b9:35:0f:53:5e:1b:3e:55:a5:37:1a:
b3:29:0c:a3:d3:2c:42:2d:b0:d5:38:dc:43:e5:33:3b:00:a8:
03:ba:fe:ea:8c:a8:d6:9e:e5:2e:7a:14:3b:e1:e5:e0:fa:5d:
5e:7c:03:a2:85:f1:57:ad:c9:ef:a0:8d:36:f2:1c:26:21:83:
52:ab:93:06:28:17:da:3a:74:94:97:6e:4c:39:cb:f6:9a:92:
58:a0:52:35:c0:74:cc:ce:59:8f:f8:6b:e0:12:43:3d:f9:a5:
04:4d:ed:b7:c3:c5:08:4f:e8:e6:2a:ea:5b:ef:5c:19:a0:03:
2e:80:9a:53:f9:85:6d:ae:fa:b2:75:92:7e:d5:8a:ac:e9:65:
d4:67:d2:49:83:6c:5e:07:d4:86:1a:6a:06:1b:c7:5a:bf:f8:
ce:b6:01:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:43 2025 by rpki-client on console.sobornost.net