Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/9c6691-adac-41e5-8ce9-f4b7b398c634/1/ub1kPDAxllR0WFP6iXd1W5UcG_k.roa
File: ub1kPDAxllR0WFP6iXd1W5UcG_k.roa (raw, json)
Hash identifier: 8WBQDzQQjZxzhaXE+nFlYVRYm6wxvzqPDNkDDz5P6H0=
Subject key identifier: B9:BD:64:3C:30:31:96:54:74:58:53:FA:89:77:75:5B:95:1C:1B:F9
Certificate issuer: /CN=6977a3116ecc9d7a429f13651613e8ad149ff324
Certificate serial: 01954D850C08BE53FA0D3639BBF436FF1A12
Authority key identifier: 69:77:A3:11:6E:CC:9D:7A:42:9F:13:65:16:13:E8:AD:14:9F:F3:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXejEW7MnXpCnxNlFhPorRSf8yQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/9c6691-adac-41e5-8ce9-f4b7b398c634/1/ub1kPDAxllR0WFP6iXd1W5UcG_k.roa
Signing time: Fri 28 Feb 2025 17:05:19 +0000
ROA not before: Fri 28 Feb 2025 17:05:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209403
IP address blocks: 45.154.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4d:85:0c:08:be:53:fa:0d:36:39:bb:f4:36:ff:1a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6977a3116ecc9d7a429f13651613e8ad149ff324
Validity
Not Before: Feb 28 17:05:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9bd643c30319654745853fa8977755b951c1bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:91:63:b6:26:c6:02:ea:7c:b6:e0:de:6f:ec:
7f:f9:e0:c5:62:c3:cb:ec:0b:a0:fd:6d:27:30:0c:
93:80:77:52:0c:d2:4d:04:f0:1b:da:11:cb:36:02:
26:6c:81:12:fa:97:c8:bb:4e:4d:32:10:80:b7:10:
d6:ce:3a:07:8b:69:7a:26:58:74:a7:11:e1:00:22:
f6:c1:d3:b3:46:37:92:d8:9f:85:17:f8:06:3b:21:
34:c6:7f:24:03:62:b2:47:94:c1:c9:02:31:73:63:
00:d4:ed:3d:da:cc:91:8c:56:12:cf:cc:68:a2:4b:
0c:5a:7e:36:07:7e:9c:11:be:68:dc:dc:95:aa:a9:
a3:b5:21:31:5b:a9:74:0f:88:49:83:44:4c:74:20:
41:16:a7:4f:f2:9e:12:5f:87:6b:9c:79:c2:1d:c1:
da:80:b7:e1:d4:2f:a3:4e:eb:34:f8:5b:ef:92:4c:
ce:0d:24:e3:1f:d4:4d:55:3c:02:f4:88:87:38:00:
cc:2c:69:5f:69:c3:6f:10:0b:1e:3a:04:a5:09:c9:
09:ef:e4:2d:97:b1:7d:d5:0a:a7:70:cd:6e:de:98:
18:97:59:4d:9f:53:cd:be:3a:1e:9c:14:ab:27:f0:
15:ae:ca:fa:55:15:bf:d0:c3:18:f0:63:d9:9f:ed:
d4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BD:64:3C:30:31:96:54:74:58:53:FA:89:77:75:5B:95:1C:1B:F9
X509v3 Authority Key Identifier:
keyid:69:77:A3:11:6E:CC:9D:7A:42:9F:13:65:16:13:E8:AD:14:9F:F3:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXejEW7MnXpCnxNlFhPorRSf8yQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9c6691-adac-41e5-8ce9-f4b7b398c634/1/ub1kPDAxllR0WFP6iXd1W5UcG_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9c6691-adac-41e5-8ce9-f4b7b398c634/1/aXejEW7MnXpCnxNlFhPorRSf8yQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.198.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e2:4a:f4:8d:e1:c9:fa:7e:9e:7b:4a:82:d3:60:84:bb:85:
fe:51:66:7f:0c:9a:01:ab:a0:12:9c:3a:1c:f5:cf:76:8f:3b:
ba:b6:1f:1b:2e:62:95:4e:81:10:61:7c:34:73:b6:52:5e:70:
f5:b6:e3:4b:18:58:ce:33:17:ed:44:c8:5d:43:6f:ea:2f:ef:
14:fe:37:6f:09:49:68:25:79:1c:3c:f4:a4:8e:15:27:2f:b9:
08:28:32:55:ae:f0:43:3c:bc:b9:01:87:8e:63:ed:13:42:c6:
8a:bd:b6:12:20:52:d9:4b:9e:bb:29:e9:b9:1f:3a:65:9f:0f:
e5:b8:4b:b6:49:0b:d4:94:15:cc:26:77:3f:43:3c:5c:58:ff:
06:d2:d1:31:70:0d:fd:f8:1e:93:70:c2:cf:d9:57:04:9a:92:
a2:6a:fa:3b:40:a2:bc:cf:d4:a9:b3:b7:27:3d:8d:4a:7c:4e:
a8:26:1c:3e:7c:bc:32:23:07:b8:f4:9d:24:f1:32:2a:bc:de:
60:1f:3c:13:39:02:30:c6:20:f6:f5:1c:c2:aa:56:95:48:90:
f8:ca:7f:8d:da:ee:bc:7e:b5:4d:3a:8b:18:19:53:d7:42:67:
bf:51:d9:a7:59:9e:dd:5a:9b:66:e4:5d:86:e0:63:4a:02:63:
d8:b6:a1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net