Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/1Gb7bKOB6qaqSl4slwDpG6HeQuU.roa
File: 1Gb7bKOB6qaqSl4slwDpG6HeQuU.roa (raw, json)
Hash identifier: +m50Iqil1tpGPCH1POgDTMYG3pR8qHGO84rW5K/euCI=
Subject key identifier: D4:66:FB:6C:A3:81:EA:A6:AA:4A:5E:2C:97:00:E9:1B:A1:DE:42:E5
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 01962362AEACA4021140FB831F45435593BE
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/1Gb7bKOB6qaqSl4slwDpG6HeQuU.roa
Signing time: Fri 11 Apr 2025 05:46:31 +0000
ROA not before: Fri 11 Apr 2025 05:46:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211750
IP address blocks: 45.152.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:62:ae:ac:a4:02:11:40:fb:83:1f:45:43:55:93:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Apr 11 05:46:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d466fb6ca381eaa6aa4a5e2c9700e91ba1de42e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:8a:48:98:94:59:e1:48:19:29:11:90:aa:
33:5b:29:20:8e:95:c3:34:1e:b0:0e:3f:59:9c:da:
00:93:56:7a:5c:30:9b:2c:1a:3a:7b:56:d2:45:57:
10:75:03:ff:c3:b9:6a:a8:52:97:33:96:0b:d6:a9:
ec:16:c1:9d:98:5a:5d:17:61:08:d8:41:9a:fd:5e:
17:96:f8:3d:f9:01:76:ac:c4:de:b2:bd:7d:c8:c6:
51:65:4d:6a:cd:3f:87:f1:74:10:2b:55:77:f9:74:
a0:9b:94:e6:58:05:c8:a4:46:d4:d0:fc:e9:45:55:
f9:3f:c8:4a:f6:d5:7c:5c:be:68:23:9c:25:0c:bf:
38:fe:aa:a5:4d:85:df:32:c5:59:1e:a1:23:c7:f5:
11:fa:27:79:c5:14:bd:66:a0:1d:0a:52:40:f0:1f:
f1:c3:8f:56:d7:d1:b3:75:1f:6d:a8:a9:5f:16:fe:
80:23:69:0f:89:da:a1:5a:fe:ac:c2:fe:6c:d6:5a:
1e:e3:54:45:63:1b:f2:19:af:c0:6f:19:0b:07:0f:
ae:89:70:a9:a7:f1:44:8f:b3:fa:aa:35:f2:ea:72:
24:0e:77:9c:c9:2f:6b:32:65:0f:bb:e9:4b:aa:50:
f7:08:1f:22:e1:76:7d:12:48:c4:c8:bc:d2:cf:42:
30:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:66:FB:6C:A3:81:EA:A6:AA:4A:5E:2C:97:00:E9:1B:A1:DE:42:E5
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/1Gb7bKOB6qaqSl4slwDpG6HeQuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:0b:e2:28:98:a1:57:aa:77:a6:c3:d0:24:1e:f1:62:0e:5a:
50:40:d1:27:1f:93:a2:d8:e6:07:a2:10:09:2f:b0:1b:4d:07:
e3:9e:ee:59:50:c6:88:e6:77:19:0f:fd:2d:9a:85:ea:8d:34:
a9:e0:dc:60:43:c0:06:be:fa:88:bb:50:16:e9:4c:0c:bd:5b:
c7:a7:b7:a7:94:2e:f0:6b:da:41:11:35:a9:1b:17:ea:11:eb:
1b:05:3c:94:97:f3:e5:9f:34:1b:b8:10:9e:06:02:e1:02:f2:
2e:8f:1b:94:f8:c6:41:c7:ad:10:d3:a5:02:7b:91:36:1b:3a:
14:e8:e4:eb:13:29:66:90:a8:6a:c6:e3:1f:88:63:35:2d:22:
41:6b:d5:8e:7d:a6:e3:dc:0f:f9:92:a5:71:75:f9:58:6d:96:
f5:26:32:65:8d:f3:a2:bc:93:b3:66:04:67:9b:2a:db:90:8b:
05:26:f9:c7:67:66:eb:4c:4f:89:70:c6:12:f5:b4:16:9e:0c:
e0:44:fb:6b:de:9d:8a:2a:ba:b1:f2:39:6d:b0:8f:0b:fb:69:
96:62:6e:d4:6d:f8:0b:bc:35:9f:ca:8d:68:72:2c:0b:a8:33:
b8:22:39:8c:e4:51:8c:27:85:f8:6f:76:d6:63:15:85:6c:0d:
7f:3f:9b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net