Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/kB2vNLIHiz3zrtVPA7_yVuKTR5I.roa
File: kB2vNLIHiz3zrtVPA7_yVuKTR5I.roa (raw, json)
Hash identifier: 9AzHx/X53rT3duIhqykEiCb52nN9gduGX1KbZI/pxcE=
Subject key identifier: 90:1D:AF:34:B2:07:8B:3D:F3:AE:D5:4F:03:BF:F2:56:E2:93:47:92
Certificate issuer: /CN=48395eb4c0ee2daa5392cd99fc45efbc4a754e90
Certificate serial: 01942520772D0D22413F4A711903D6584054
Authority key identifier: 48:39:5E:B4:C0:EE:2D:AA:53:92:CD:99:FC:45:EF:BC:4A:75:4E:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SDletMDuLapTks2Z_EXvvEp1TpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/kB2vNLIHiz3zrtVPA7_yVuKTR5I.roa
Signing time: Thu 02 Jan 2025 03:47:52 +0000
ROA not before: Thu 02 Jan 2025 03:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43402
IP address blocks: 45.150.12.0/22 maxlen: 24
2a0f:8a00::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:77:2d:0d:22:41:3f:4a:71:19:03:d6:58:40:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48395eb4c0ee2daa5392cd99fc45efbc4a754e90
Validity
Not Before: Jan 2 03:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=901daf34b2078b3df3aed54f03bff256e2934792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:49:fe:a3:f2:fc:83:f4:59:db:b7:11:52:bb:
c1:f3:c6:0c:ee:67:ca:1e:2d:d3:da:c0:05:e4:81:
41:34:0c:08:08:b6:6a:63:f2:dd:cb:a6:b8:66:0b:
ab:51:b7:06:26:ff:24:46:64:d1:86:af:01:8f:32:
0a:36:59:23:73:82:cd:08:4f:4b:ef:d1:ef:1a:f4:
16:94:78:38:55:56:a0:8b:e5:1c:f1:b2:f4:7f:89:
41:d6:a9:c3:90:a6:aa:07:2e:85:91:17:e3:36:96:
44:ca:99:11:ed:01:bf:15:3f:2a:37:9f:15:81:d8:
4b:dd:90:ea:a7:e8:88:a8:09:95:2a:8f:9f:0e:ec:
b8:21:11:e2:b1:f5:f2:14:c2:ef:34:b4:c1:2a:ec:
b2:eb:e2:f0:69:b6:0c:ad:01:7d:9f:6e:fc:85:89:
e4:1c:91:12:7b:80:82:c3:49:ef:b2:52:79:42:70:
5f:75:9d:51:00:f4:27:74:8d:14:68:33:e5:7f:c6:
e8:ac:84:7b:83:8d:8c:33:0e:c4:51:1e:f8:d3:8c:
25:4f:1a:82:8d:15:02:35:e9:62:f5:43:fe:1a:14:
a9:3e:23:8a:b7:d7:8c:67:bf:73:96:b1:43:e8:26:
7f:88:61:55:e7:a7:13:51:45:01:a7:df:5f:29:07:
1a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:1D:AF:34:B2:07:8B:3D:F3:AE:D5:4F:03:BF:F2:56:E2:93:47:92
X509v3 Authority Key Identifier:
keyid:48:39:5E:B4:C0:EE:2D:AA:53:92:CD:99:FC:45:EF:BC:4A:75:4E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDletMDuLapTks2Z_EXvvEp1TpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/kB2vNLIHiz3zrtVPA7_yVuKTR5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7a9961-213e-4cc4-8f96-7f579ba098be/1/SDletMDuLapTks2Z_EXvvEp1TpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.12.0/22
IPv6:
2a0f:8a00::/29
Signature Algorithm: sha256WithRSAEncryption
48:9c:2d:db:d4:c2:d9:b4:72:07:14:89:fb:fc:75:0d:11:2e:
f8:fd:bf:a3:2f:f4:4f:8f:81:c9:ad:22:e5:2a:cd:f6:a2:88:
46:db:e6:35:bc:c9:90:53:39:98:33:0b:45:f2:a9:7d:67:46:
d2:ca:da:9d:86:2d:9c:da:01:11:01:5e:a8:a6:10:4e:15:21:
ec:5e:af:14:ac:20:45:2f:08:f9:20:c8:10:82:be:1d:d5:70:
28:16:b3:66:61:86:e6:9c:3f:81:4f:9e:20:93:84:07:3f:f8:
f7:a6:56:00:ad:76:98:c3:13:56:43:ce:58:f9:67:90:e7:df:
a9:44:fc:a9:e9:21:fa:97:50:a3:30:20:50:a7:2f:b9:2c:f0:
b8:fa:2a:d4:b4:98:71:6d:a0:ea:b2:c1:f4:03:54:f5:4d:03:
d6:c2:7b:c8:cf:e3:70:fa:e6:a0:d7:cb:f4:15:9b:85:3b:32:
70:43:5d:56:7b:b4:f9:1e:06:fc:39:c8:15:27:8f:30:a0:73:
00:24:78:6b:7a:8e:9b:5e:5f:0f:c1:b2:f0:3b:c6:c9:1d:97:
5b:a4:e0:ff:4f:b7:ab:f2:05:ff:8e:59:a2:68:bc:ca:31:57:
7b:3e:2b:76:a8:19:e9:08:32:d1:44:b4:9c:94:8b:55:d1:25:
fd:18:0b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net