Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/d3558d-9057-47db-9959-3060b36b8506/1/SA5TxO6vU_Lbe1VG4qbjz6Dnmi8.roa
File: SA5TxO6vU_Lbe1VG4qbjz6Dnmi8.roa (raw, json)
Hash identifier: djcPUSZoicJdX74fx7MJFEcoWf4jGWng5I0qHJwX3ns=
Subject key identifier: 48:0E:53:C4:EE:AF:53:F2:DB:7B:55:46:E2:A6:E3:CF:A0:E7:9A:2F
Certificate issuer: /CN=750ffb6552d58ae774ba424d5527b350624faafc
Certificate serial: 019423D6E59430DC0CA0B4C49CB1D0DE0BEE
Authority key identifier: 75:0F:FB:65:52:D5:8A:E7:74:BA:42:4D:55:27:B3:50:62:4F:AA:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQ_7ZVLViud0ukJNVSezUGJPqvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/d3558d-9057-47db-9959-3060b36b8506/1/SA5TxO6vU_Lbe1VG4qbjz6Dnmi8.roa
Signing time: Wed 01 Jan 2025 21:47:53 +0000
ROA not before: Wed 01 Jan 2025 21:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39328
IP address blocks: 45.67.180.0/22 maxlen: 24
185.154.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:e5:94:30:dc:0c:a0:b4:c4:9c:b1:d0:de:0b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=750ffb6552d58ae774ba424d5527b350624faafc
Validity
Not Before: Jan 1 21:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=480e53c4eeaf53f2db7b5546e2a6e3cfa0e79a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:0f:bc:a1:47:4a:b1:ae:f5:cb:db:9e:39:
b7:47:81:53:4a:34:f0:ad:8b:aa:32:16:a8:d7:f4:
cc:85:da:aa:4b:af:08:69:52:2a:50:ae:ca:46:1c:
c0:ad:38:57:d9:a1:fe:00:52:7b:1b:c1:89:3b:57:
24:57:df:41:59:60:1e:c3:cf:cf:a1:f4:48:8c:e4:
1b:99:bb:e6:ea:26:75:aa:fc:d9:9b:62:12:db:c6:
b9:63:18:8b:a1:a6:ad:45:fa:cc:f3:78:42:6d:2d:
09:7a:73:76:54:3b:79:2c:2d:e0:1f:d8:1e:dc:8f:
76:20:83:60:9e:ef:5e:93:ce:cf:32:86:2a:07:a4:
79:99:50:75:0f:58:11:ff:91:8c:f0:e7:fd:1f:83:
3e:2a:c1:46:34:f5:c4:4b:9e:c7:e6:e6:73:f4:28:
83:55:52:59:d2:d4:cd:5f:11:a0:75:3f:e9:e5:b6:
e5:e6:b8:01:59:d1:6b:c8:c6:a7:d4:ef:92:71:1b:
1e:c1:4d:51:22:94:5d:e6:95:c1:61:ca:50:89:cc:
3c:01:ad:96:da:17:f7:7e:12:fb:00:64:6b:84:3c:
f0:97:ea:25:51:8b:44:ce:08:17:e0:96:00:4d:9b:
a5:3a:9b:fe:bf:56:26:c7:f0:74:fd:cd:c8:69:c2:
fd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0E:53:C4:EE:AF:53:F2:DB:7B:55:46:E2:A6:E3:CF:A0:E7:9A:2F
X509v3 Authority Key Identifier:
keyid:75:0F:FB:65:52:D5:8A:E7:74:BA:42:4D:55:27:B3:50:62:4F:AA:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQ_7ZVLViud0ukJNVSezUGJPqvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d3558d-9057-47db-9959-3060b36b8506/1/SA5TxO6vU_Lbe1VG4qbjz6Dnmi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d3558d-9057-47db-9959-3060b36b8506/1/dQ_7ZVLViud0ukJNVSezUGJPqvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.180.0/22
185.154.252.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:56:7a:0f:33:5a:c0:f5:dd:2a:fd:ea:4d:2d:e2:33:5e:fc:
fb:4a:dd:72:83:06:9c:ee:dd:14:23:cb:d8:9a:19:0a:47:09:
9c:12:4d:1f:e4:4c:77:b3:f9:81:7b:f9:60:3e:a3:c5:29:3f:
dc:82:ab:65:a8:e9:f8:91:84:45:07:35:2b:ea:21:3c:65:6c:
e8:2c:a6:13:7d:e7:2a:42:81:16:97:c2:fa:d2:d0:73:6a:7c:
bb:fb:19:75:47:ce:22:50:e7:13:21:4a:a5:ea:98:51:dd:30:
7d:fe:14:03:1f:be:d5:be:40:86:7a:a0:72:b7:cb:59:98:1b:
d9:6f:bd:c5:ac:a8:07:d4:8b:ad:53:35:db:5c:87:9e:04:13:
8e:4c:24:94:1e:5f:57:c4:ae:fb:37:9b:27:2b:e6:4b:48:97:
0d:55:aa:cf:1e:da:35:14:97:87:60:53:f1:3e:54:9f:0d:5b:
4f:4a:8a:a9:37:27:a4:92:5f:6f:c0:a6:c1:e9:5e:14:98:a8:
cc:b2:8e:06:cd:f4:68:78:a3:20:bb:26:b0:10:43:a5:fc:5d:
1b:f6:51:e9:31:6b:0c:41:91:f3:11:3d:74:78:d2:1d:19:68:
79:c0:83:c6:46:af:e6:36:c8:59:cc:40:94:13:a2:f1:ba:3d:
45:de:94:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:45:04 2025 by rpki-client on console.sobornost.net