Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/dYt1KKj4tCGLif9Uw-PUq5XSPt0.roa
File: dYt1KKj4tCGLif9Uw-PUq5XSPt0.roa (raw, json)
Hash identifier: VRn5rOavF3Z1TUQt1A8oCfFVCQrXkGJKkkqLjlnItNg=
Subject key identifier: 75:8B:75:28:A8:F8:B4:21:8B:89:FF:54:C3:E3:D4:AB:95:D2:3E:DD
Certificate issuer: /CN=bea649ef6030fc80848fdfe21d4321ac8011fd10
Certificate serial: 01942143C4498CA46C278132DC604E25BFCF
Authority key identifier: BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/dYt1KKj4tCGLif9Uw-PUq5XSPt0.roa
Signing time: Wed 01 Jan 2025 09:47:56 +0000
ROA not before: Wed 01 Jan 2025 09:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208627
IP address blocks: 45.91.126.0/24 maxlen: 24
2a0e:f42::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c4:49:8c:a4:6c:27:81:32:dc:60:4e:25:bf:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea649ef6030fc80848fdfe21d4321ac8011fd10
Validity
Not Before: Jan 1 09:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=758b7528a8f8b4218b89ff54c3e3d4ab95d23edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:79:9b:ca:00:4f:ea:8c:4d:75:f8:a3:f4:62:
ed:c9:18:3b:a6:ea:46:2a:f5:ba:68:3d:0b:5a:33:
56:5e:98:fe:5d:3f:2a:1e:c1:b5:86:b7:09:b2:82:
04:f1:33:98:93:03:7a:e6:22:d1:6c:3e:e2:4a:1e:
58:4f:66:eb:a4:72:fe:0d:98:cc:76:7a:c6:d0:6b:
cb:dc:82:4a:52:20:a1:a9:64:c9:d1:f4:e6:54:67:
27:da:79:70:19:5c:d0:ac:8b:ca:7d:1c:ba:c5:f4:
7a:f7:f5:e4:ea:25:9a:7e:93:69:92:61:1c:c3:8d:
5b:fe:ce:06:69:bd:df:2d:df:30:93:18:7b:18:63:
ee:e5:88:86:fa:a0:1a:73:e4:f8:8f:ac:9b:7e:67:
c6:62:0c:1e:58:44:7d:07:06:04:b2:57:53:bb:2f:
1b:32:82:33:71:ac:b2:7b:79:fd:b1:8c:69:ce:69:
20:57:86:9f:0d:4e:71:1c:54:30:9c:bb:b5:33:5c:
73:de:a3:bc:47:b9:31:23:74:c9:05:38:1c:02:46:
1f:56:55:3a:c2:80:50:82:ae:a1:3a:39:42:75:72:
13:de:2d:b8:e8:6d:c2:a2:15:1c:93:12:09:93:6f:
e2:76:aa:a7:b5:fa:a4:86:5e:b5:29:0d:a0:8b:c6:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8B:75:28:A8:F8:B4:21:8B:89:FF:54:C3:E3:D4:AB:95:D2:3E:DD
X509v3 Authority Key Identifier:
keyid:BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/dYt1KKj4tCGLif9Uw-PUq5XSPt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.126.0/24
IPv6:
2a0e:f42::/32
Signature Algorithm: sha256WithRSAEncryption
b3:fb:1e:d9:92:c3:5a:b3:7a:46:14:b4:44:c7:89:fc:43:c1:
13:cd:7e:ef:5e:e7:5a:dd:3f:7d:75:ba:53:56:66:92:8f:a3:
57:ce:0b:cc:f5:68:e4:bc:59:05:7f:01:50:c9:8c:58:bc:56:
b8:91:e9:f0:98:87:1b:48:b6:21:82:d6:56:5b:74:5b:78:30:
05:57:57:de:2b:61:df:83:16:38:36:32:ef:8b:7a:e0:cf:04:
17:47:0b:de:c5:cc:b6:25:81:de:ee:e1:ae:c3:ca:5a:2c:ec:
09:c3:7e:c0:39:9d:59:33:54:cd:08:17:ba:a5:98:75:1f:d9:
ce:f3:8c:07:90:df:51:d8:ab:be:cf:ad:4a:81:29:58:f7:8a:
95:5a:bf:78:44:f4:bd:56:b1:3c:78:a4:e2:5a:e5:e8:d4:9b:
70:d9:94:11:83:7e:de:d5:97:e8:a9:f5:33:7d:d4:bc:69:2c:
59:91:3c:8f:95:33:04:33:92:87:cc:61:1d:f5:7d:9b:8b:aa:
b6:fc:27:c9:4d:f9:97:9d:21:7a:a7:3c:b5:39:f7:77:ed:b2:
e1:a8:b9:66:76:0a:a0:6e:69:1a:2f:02:5a:44:65:e0:83:f3:
37:1a:1b:79:e9:24:bb:21:8d:f8:be:5b:05:aa:c2:35:76:dc:
9f:54:70:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net