Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/E4_h1qYRN41D_VDuA1H5nUNKrr4.roa
File: E4_h1qYRN41D_VDuA1H5nUNKrr4.roa (raw, json)
Hash identifier: cIztELSHss6QRuEFFxw4N/UrkNKRSLWYj+DkUBUvoq4=
Subject key identifier: 13:8F:E1:D6:A6:11:37:8D:43:FD:50:EE:03:51:F9:9D:43:4A:AE:BE
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 019615759ECEA2079F19F53B77FD3023D579
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/E4_h1qYRN41D_VDuA1H5nUNKrr4.roa
Signing time: Tue 08 Apr 2025 12:52:31 +0000
ROA not before: Tue 08 Apr 2025 12:52:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 45.152.167.0/24 maxlen: 24
152.89.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:75:9e:ce:a2:07:9f:19:f5:3b:77:fd:30:23:d5:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Apr 8 12:52:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=138fe1d6a611378d43fd50ee0351f99d434aaebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a6:55:c8:3d:ea:a2:b4:28:0c:ca:cb:d0:03:
da:e4:59:e3:7b:e9:13:f9:ee:b8:c0:18:a7:d3:57:
07:9a:a5:8d:09:8b:68:d9:f3:bf:8b:48:b4:e6:ab:
a3:d0:9b:6a:f3:8a:52:87:82:49:30:7c:bf:3d:1b:
70:4f:1f:8c:2f:30:ba:a2:15:1b:20:a1:40:4c:86:
6d:5a:d8:f3:83:8f:44:7c:b3:60:17:c5:b9:71:b6:
61:db:5e:89:02:e6:be:5f:39:a2:aa:41:0f:2d:d1:
63:f9:ce:62:b4:71:b4:f3:c9:93:ae:d2:a0:22:f2:
4b:5a:af:dc:c1:c1:57:36:8b:55:63:15:2a:cf:28:
62:2a:84:d9:ae:24:de:5c:1c:f1:75:7b:cc:47:d5:
a1:a2:ec:a6:45:eb:96:b4:83:fa:45:af:ac:14:45:
c4:57:73:e2:b5:4f:ff:3d:df:9f:ae:07:0c:b4:36:
17:2f:c6:21:76:c8:0a:0d:fe:a9:a3:d2:73:ea:b3:
1a:f7:69:c3:b1:15:a8:9e:6c:62:f4:14:cc:66:4b:
52:82:94:71:fc:39:c1:66:eb:b7:09:0a:cc:da:3c:
c1:52:96:9c:ab:7a:81:b6:04:3e:11:a3:23:67:56:
95:95:66:67:18:f6:4c:b7:24:00:c5:96:9e:7f:21:
99:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8F:E1:D6:A6:11:37:8D:43:FD:50:EE:03:51:F9:9D:43:4A:AE:BE
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/E4_h1qYRN41D_VDuA1H5nUNKrr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.167.0/24
152.89.192.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:7a:84:c7:13:0b:bf:04:79:25:e3:be:1c:a7:f3:64:43:76:
aa:9f:b9:83:ae:5e:8f:cd:c1:1a:e0:2d:fa:4d:dc:fa:1e:93:
82:43:47:0e:c0:93:d9:21:10:3a:bc:f5:50:12:55:cc:bd:6a:
7a:21:fd:54:28:a5:83:97:fc:5f:06:05:fb:36:bd:72:9b:f1:
e7:3f:c1:61:3d:a9:2d:37:e8:61:8a:4a:33:65:17:d9:96:0a:
35:f2:ef:22:2e:ae:95:be:11:69:32:b6:b2:0d:73:92:29:55:
df:c8:ab:41:d6:61:a7:26:17:75:2e:24:f1:80:81:49:dc:2b:
f8:72:39:2a:eb:1d:b1:5b:79:0d:a5:77:cc:fb:34:d7:95:95:
a4:45:a6:e0:62:07:80:b7:5b:77:d5:00:5f:5b:66:18:8b:5d:
de:04:5e:d9:f6:89:73:d2:9d:cd:f7:29:5d:9f:e7:66:fd:0c:
b4:28:0f:cb:47:d8:82:6b:90:a8:70:3d:94:75:e7:8e:f2:86:
18:43:2d:7f:55:0e:37:ed:6f:87:a1:09:66:62:d6:fd:56:11:
75:b7:14:98:1a:19:18:a5:59:19:7c:15:bc:93:18:dc:1f:69:
32:dc:69:df:cf:89:7c:a5:fc:6c:bc:2d:0e:cb:2d:92:ed:c1:
e5:c1:ff:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net