Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2d0da4-a532-4b03-9055-4a5cbdb50e29/1/bz0DaobqFx8uSG65YlIdlCnYXnM.roa
File: bz0DaobqFx8uSG65YlIdlCnYXnM.roa (raw, json)
Hash identifier: iE8VTXx2IgO+YAuuzHNL90UnvmOpv60XoZ6IMkkBBJk=
Subject key identifier: 6F:3D:03:6A:86:EA:17:1F:2E:48:6E:B9:62:52:1D:94:29:D8:5E:73
Certificate issuer: /CN=63fdc09ad54a397c604e94a1c966e2c296059cc1
Certificate serial: 0195E8ACBF1434D72D23E00C06DA151F71DC
Authority key identifier: 63:FD:C0:9A:D5:4A:39:7C:60:4E:94:A1:C9:66:E2:C2:96:05:9C:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_3AmtVKOXxgTpShyWbiwpYFnME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2d0da4-a532-4b03-9055-4a5cbdb50e29/1/bz0DaobqFx8uSG65YlIdlCnYXnM.roa
Signing time: Sun 30 Mar 2025 20:09:50 +0000
ROA not before: Sun 30 Mar 2025 20:09:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35041
IP address blocks: 45.134.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e8:ac:bf:14:34:d7:2d:23:e0:0c:06:da:15:1f:71:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fdc09ad54a397c604e94a1c966e2c296059cc1
Validity
Not Before: Mar 30 20:09:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f3d036a86ea171f2e486eb962521d9429d85e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:86:17:af:0e:ee:ef:e0:ea:66:ff:8f:26:b2:
05:ee:44:77:0b:6e:1a:26:dd:ef:8d:d0:d6:2d:37:
13:ab:63:d1:f8:10:f6:56:c8:f4:27:eb:7f:0d:b5:
bf:76:55:86:6a:58:01:47:56:d7:b0:56:67:7c:9c:
a5:9c:a3:77:f1:7e:1b:02:7f:0a:7d:a8:f3:3d:0f:
8d:d6:59:7a:b4:04:f1:88:fe:7d:cc:d3:0a:b7:c8:
bb:40:f1:26:0a:ba:b9:07:e7:71:ff:f3:43:d0:4f:
8b:00:9f:5a:6e:73:aa:ae:b6:88:9b:33:cd:1c:c8:
28:23:b0:81:9c:fb:fb:0d:52:1a:3e:66:42:a3:c5:
3b:30:fb:b7:26:04:1e:2a:e6:aa:e6:6d:6f:8e:fc:
86:87:22:4f:14:d7:fa:ec:27:58:c2:64:fd:90:32:
79:0f:47:a6:df:fc:1b:95:9e:ad:f4:36:92:e9:b7:
e7:f4:b0:a9:c4:51:ec:f9:a8:7c:e3:b6:0f:43:99:
a9:4c:e3:57:e6:83:b3:27:0c:19:92:c1:ac:d6:9e:
f6:52:a3:cb:ad:70:00:14:6d:c9:98:e5:b6:5b:8d:
f0:c6:22:a7:d2:79:13:e2:4e:0d:e9:08:72:2c:86:
aa:fa:5e:55:29:3c:ed:ab:ed:32:b0:fc:52:4c:db:
16:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3D:03:6A:86:EA:17:1F:2E:48:6E:B9:62:52:1D:94:29:D8:5E:73
X509v3 Authority Key Identifier:
keyid:63:FD:C0:9A:D5:4A:39:7C:60:4E:94:A1:C9:66:E2:C2:96:05:9C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_3AmtVKOXxgTpShyWbiwpYFnME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2d0da4-a532-4b03-9055-4a5cbdb50e29/1/bz0DaobqFx8uSG65YlIdlCnYXnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2d0da4-a532-4b03-9055-4a5cbdb50e29/1/Y_3AmtVKOXxgTpShyWbiwpYFnME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.44.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:17:56:eb:41:20:cb:a3:29:89:3b:c7:9e:a4:90:b4:12:9d:
cf:45:97:c6:d7:83:6c:b3:4a:eb:94:fc:d9:3b:ff:ab:6b:47:
4b:65:01:9b:9d:30:44:fb:2d:74:3a:3f:a7:c4:4f:bc:aa:24:
44:f3:b4:c2:80:f3:fe:4c:2f:1e:54:7b:3f:80:d6:dd:f3:5c:
e8:a8:1a:9d:5a:c4:14:00:c0:24:0f:a6:30:7d:7c:75:e4:4d:
04:6f:1a:2f:08:a1:d1:e4:17:a4:ce:4d:36:7e:d0:7d:2c:8e:
85:cc:17:7b:9d:49:12:ef:c5:31:04:33:20:49:1d:92:51:ba:
90:23:62:c2:c3:09:d4:c1:11:43:6d:70:6b:01:d5:84:23:1a:
95:59:88:3a:58:e4:c4:bb:cc:72:e9:64:60:5f:84:4d:84:bf:
dc:d4:a7:49:ee:f8:83:2c:9e:1d:7f:63:8e:57:f3:82:dd:a3:
fe:d9:42:b7:33:10:29:1b:65:09:d9:23:2a:71:e8:a3:dd:56:
9a:a9:d8:7c:5a:43:76:2e:30:d7:ea:f6:53:1a:45:5c:84:35:
36:8d:ac:62:8d:de:9b:d7:f3:2c:2a:fe:26:a2:d4:54:2f:e6:
02:50:80:39:79:71:e9:37:08:eb:c1:6f:53:a0:d8:5e:d1:28:
c2:3b:ce:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net