Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/aI06tjVZeZrIS1TA5LHHtgH2TfE.roa
File: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (raw, json)
Hash identifier: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=
Subject key identifier: 68:8D:3A:B6:35:59:79:9A:C8:4B:54:C0:E4:B1:C7:B6:01:F6:4D:F1
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019420D5C9C4FCB2135F0937224460A56750
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/aI06tjVZeZrIS1TA5LHHtgH2TfE.roa
Signing time: Wed 01 Jan 2025 07:47:49 +0000
ROA not before: Wed 01 Jan 2025 07:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13044
IP address blocks: 45.129.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:c9:c4:fc:b2:13:5f:09:37:22:44:60:a5:67:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Jan 1 07:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=688d3ab63559799ac84b54c0e4b1c7b601f64df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:82:3f:11:2b:e4:65:91:d1:4e:2b:1c:c9:d7:
cf:66:5f:67:c7:36:a8:b3:bb:bb:ea:e3:79:f7:25:
83:87:1f:87:76:18:12:b7:35:c3:3d:ed:80:31:0a:
11:bb:4e:b3:fc:1c:e3:c0:a7:5c:46:2e:34:98:7f:
b1:b2:28:20:b9:d6:9f:c9:0f:f7:32:3f:5f:ec:e0:
22:f9:c7:62:a7:e1:9e:f1:64:bd:2c:94:24:11:52:
e0:0f:c4:4d:79:02:06:47:b0:32:58:b4:1c:b5:2b:
d3:dc:b3:23:c8:e8:06:45:3d:0c:a0:a4:a2:58:7c:
66:cb:c7:50:ff:fe:2b:47:85:9b:0f:6b:ba:d1:69:
c0:bd:fe:50:a7:74:aa:d7:d0:13:78:5c:0b:25:6c:
3d:f7:cd:b3:7e:49:20:1b:cd:e6:4e:cc:0d:65:a4:
96:f0:d0:d8:5e:74:f8:b2:3f:4d:66:9c:69:97:72:
f6:46:85:8a:b9:ed:61:85:65:32:70:08:cc:12:a4:
3c:e1:33:18:72:19:fd:8b:c1:c7:af:b8:48:6d:ef:
c3:ee:5e:bf:c7:5e:08:79:ad:53:4b:d4:24:1a:0a:
16:13:b1:49:a3:8e:40:d6:2f:3b:23:d7:6f:70:ec:
59:f0:61:8d:d3:bd:3c:c4:3c:bc:c1:df:4c:1f:96:
a3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8D:3A:B6:35:59:79:9A:C8:4B:54:C0:E4:B1:C7:B6:01:F6:4D:F1
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/aI06tjVZeZrIS1TA5LHHtgH2TfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.138.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2f:78:d4:2c:57:38:14:34:12:a9:dc:46:c2:10:94:e1:84:
5f:7a:87:e8:46:e6:97:bd:63:81:d7:3c:1f:ee:fa:54:fd:44:
20:81:7f:a5:5f:f7:0b:fd:ff:2d:73:4a:bb:01:86:c2:cf:bf:
6f:d6:61:35:46:2a:57:0b:7e:20:50:f2:53:3f:b2:5d:e8:a3:
09:2c:75:3c:c7:67:40:c7:48:01:61:2a:70:85:ee:48:86:65:
e9:3d:5c:2a:6a:0e:eb:c4:07:c0:41:c2:0c:27:d1:79:14:b4:
2e:b1:86:72:ea:ae:3c:66:4f:20:8d:80:42:03:d9:82:d2:7d:
6f:0b:81:3e:40:91:68:b9:e2:a6:5a:f5:e1:21:ae:9d:90:25:
88:ac:69:19:2c:b7:41:c2:91:4b:9f:ba:2b:f4:25:3e:0a:df:
19:17:7a:f4:59:53:6c:6e:b9:bd:98:ce:33:b6:cf:64:0d:f6:
2c:42:f6:9f:a6:c0:b4:60:8b:ed:3a:72:15:39:5d:15:8d:6f:
76:3e:00:1b:57:9c:91:6c:3f:6a:6f:82:8e:eb:55:20:4e:01:
08:73:77:2b:f7:ad:c8:37:2c:15:2c:65:fc:17:9b:6d:9b:ff:
dd:c5:19:d5:ff:31:b3:2a:a9:8b:ca:3e:cd:13:5c:34:d9:d7:
ca:4c:98:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net