Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/TDfXhLaJicDqER43mZJ9Gt5o4NM.roa
File: TDfXhLaJicDqER43mZJ9Gt5o4NM.roa (raw, json)
Hash identifier: xPlhAH8Cus6o3YMGrcO3bp4+1D+Angi7zwsI6/D/vLM=
Subject key identifier: 4C:37:D7:84:B6:89:89:C0:EA:11:1E:37:99:92:7D:1A:DE:68:E0:D3
Certificate issuer: /CN=bee0a94997672a920a290ccbfd049126f7075c99
Certificate serial: 019425FDAB56AB6C53264FDC9B9D088BC524
Authority key identifier: BE:E0:A9:49:97:67:2A:92:0A:29:0C:CB:FD:04:91:26:F7:07:5C:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vuCpSZdnKpIKKQzL_QSRJvcHXJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/TDfXhLaJicDqER43mZJ9Gt5o4NM.roa
Signing time: Thu 02 Jan 2025 07:49:28 +0000
ROA not before: Thu 02 Jan 2025 07:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51876
IP address blocks: 45.136.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ab:56:ab:6c:53:26:4f:dc:9b:9d:08:8b:c5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bee0a94997672a920a290ccbfd049126f7075c99
Validity
Not Before: Jan 2 07:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c37d784b68989c0ea111e3799927d1ade68e0d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8e:a7:ab:cc:58:0c:91:7d:41:fa:21:24:52:
32:e5:b8:2a:62:6c:4d:c2:07:91:82:67:a1:fe:a4:
46:12:ef:d0:f3:13:4c:9c:97:3e:5b:49:5e:51:2e:
f7:c5:de:1f:2b:f1:f6:dc:1f:73:12:95:19:bf:f3:
eb:2e:9a:33:dd:c4:b3:ca:45:9f:48:95:20:45:bc:
b3:54:30:cc:01:38:e6:b5:24:cb:9b:23:30:df:bb:
ef:32:eb:e3:e5:e9:af:a4:d9:08:41:e2:ff:88:6f:
fe:1f:17:55:f5:32:ce:60:9e:b2:99:cd:d5:f5:66:
80:5b:a5:0f:d8:a5:a8:81:40:67:e0:54:de:9b:bb:
43:cf:6b:81:33:89:b6:b6:d8:99:2d:27:c5:0a:71:
63:f2:69:91:33:06:1f:7c:3f:5d:67:cf:16:69:9d:
ad:14:7a:df:c8:49:1f:f1:7c:56:76:e9:0b:8f:ed:
85:ba:70:01:67:5a:69:77:b0:fd:03:6e:4b:9b:de:
95:0c:0c:a3:89:cb:86:bb:2a:4b:c2:19:17:95:b1:
e2:22:2a:c2:12:51:1d:cf:61:1b:c0:93:76:f9:05:
7a:f7:5f:b1:70:e4:47:d0:89:df:7e:f5:16:12:5b:
89:2c:70:21:f9:1f:2c:75:9e:dd:cd:b4:3e:fb:3c:
55:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:37:D7:84:B6:89:89:C0:EA:11:1E:37:99:92:7D:1A:DE:68:E0:D3
X509v3 Authority Key Identifier:
keyid:BE:E0:A9:49:97:67:2A:92:0A:29:0C:CB:FD:04:91:26:F7:07:5C:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vuCpSZdnKpIKKQzL_QSRJvcHXJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/TDfXhLaJicDqER43mZJ9Gt5o4NM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/vuCpSZdnKpIKKQzL_QSRJvcHXJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.132.0/22
Signature Algorithm: sha256WithRSAEncryption
82:a7:f6:b4:1f:10:4b:38:63:5a:d2:20:ff:2b:ac:f0:6c:4a:
69:65:e9:32:eb:ee:d7:40:0f:fa:ca:38:a6:30:ed:bf:66:85:
ff:5a:7f:dc:da:ef:75:e4:23:ba:76:29:b4:65:95:d6:88:c5:
63:56:b1:32:78:9e:de:0e:50:65:af:1b:89:1d:70:45:fb:51:
59:d7:50:9a:60:94:d1:9c:c8:a9:75:e3:d9:df:d2:cb:dd:97:
5c:92:db:f3:f0:37:9a:18:f4:26:23:87:0b:ce:e5:33:fa:6e:
86:0d:40:db:02:1e:5b:0b:82:12:54:52:32:d8:fc:51:6f:ff:
f4:fe:a3:ad:ee:21:3f:08:2e:25:e0:f4:1a:c1:5f:98:39:7e:
7b:cf:f9:08:69:1f:b6:5b:bb:97:4b:23:7c:ca:0e:d7:92:40:
3f:d0:15:0c:ad:aa:bf:3b:ff:32:8d:05:35:48:b1:05:6f:f9:
a3:aa:e0:d9:3e:bf:9a:01:c5:7b:10:32:88:ff:40:9b:38:6e:
c9:c0:49:e5:dc:6e:74:f2:05:8f:5c:15:52:5a:3f:7e:b2:cd:
09:d8:fd:1e:cb:3f:27:10:56:ef:10:90:e8:3c:57:f1:c9:f5:
32:60:71:aa:12:76:0a:b5:ba:e9:ba:ec:a3:b2:96:17:3f:b6:
b2:0e:24:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:34 2025 by rpki-client on console.sobornost.net