Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lQoeI3fot2NEOazpcJqwENKoEUU.roa
File: lQoeI3fot2NEOazpcJqwENKoEUU.roa (raw, json)
Hash identifier: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=
Subject key identifier: 95:0A:1E:23:77:E8:B7:63:44:39:AC:E9:70:9A:B0:10:D2:A8:11:45
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 0195F6DBBEBA58E37187DFE6AABC3E4EE3CF
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lQoeI3fot2NEOazpcJqwENKoEUU.roa
Signing time: Wed 02 Apr 2025 14:15:51 +0000
ROA not before: Wed 02 Apr 2025 14:15:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207912
IP address blocks: 45.10.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f6:db:be:ba:58:e3:71:87:df:e6:aa:bc:3e:4e:e3:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Apr 2 14:15:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=950a1e2377e8b7634439ace9709ab010d2a81145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:15:51:1c:09:c6:88:68:ab:c6:29:32:c9:5b:
b6:bb:6a:73:23:98:72:7a:2b:17:3b:3c:4d:4b:8d:
58:cb:56:65:cf:06:f7:c1:ac:0e:a0:c0:88:c6:0e:
02:33:e7:62:86:36:b4:9a:c9:7e:e8:c0:d4:e9:07:
d0:eb:4b:9c:46:7c:f2:a4:e1:37:8a:86:e3:8c:ec:
b7:90:9a:2f:75:8a:59:d9:c6:ed:3b:ac:e9:b9:fa:
3a:5c:69:3f:5c:3e:1a:2a:44:a7:d7:ef:dd:38:aa:
b1:f6:94:16:39:77:25:5a:11:cc:12:08:c7:06:6e:
71:18:94:11:73:c6:1b:ea:58:c8:e5:19:8e:b4:b5:
b0:38:e9:f0:b2:32:e9:b2:c4:ae:cd:b2:08:43:41:
29:15:9a:2f:ab:0e:ce:93:75:ee:bf:18:4a:31:8d:
da:98:a2:dd:79:b2:d1:b5:aa:fb:5d:54:c4:00:7f:
dc:c5:c8:f6:8c:2e:a7:be:d7:17:cf:32:70:f8:80:
bf:39:3f:0d:29:c2:76:c3:61:0b:cf:af:2c:5a:b7:
fb:a2:f3:ea:31:54:2b:6b:e9:0b:98:2e:4d:76:af:
d3:91:d1:ca:ba:d0:cb:8f:7a:ea:23:7c:b4:9b:34:
6a:6b:94:34:ae:38:f1:30:fc:60:2b:1e:c3:1c:63:
48:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:0A:1E:23:77:E8:B7:63:44:39:AC:E9:70:9A:B0:10:D2:A8:11:45
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/lQoeI3fot2NEOazpcJqwENKoEUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.137.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:38:77:44:6e:25:96:08:cc:1f:89:67:b8:87:11:f6:37:24:
4c:87:73:fe:75:6d:68:69:f7:96:13:52:49:ef:b0:f6:9e:0d:
38:02:d0:4e:ad:5c:b0:4f:db:5e:2b:2e:1d:03:75:bb:ee:b0:
6d:ba:0b:e5:39:97:2a:7a:89:1f:b8:c3:22:3c:bf:e5:6a:93:
6c:94:28:b9:b0:f2:c9:e9:4f:ed:d9:e7:81:14:6f:95:6b:f4:
ab:2d:27:6a:45:56:4b:26:b0:e2:81:da:80:e0:01:18:0c:ea:
a5:86:6c:c1:a3:6e:42:89:ca:3d:d0:bb:9a:30:f0:76:ec:6b:
3e:63:18:72:dd:30:d3:68:78:48:95:0c:7d:54:c7:e8:13:cb:
5a:ca:a6:cf:c8:00:8d:b8:91:08:14:d0:96:10:a2:ee:bf:a2:
a1:3e:33:94:4d:34:e3:df:07:e3:1a:de:0e:31:cc:ec:18:02:
2d:01:78:95:56:a8:e6:73:f4:69:3f:fb:d8:54:06:3d:02:b9:
98:ce:ea:bb:0c:95:a6:39:dd:d0:f2:bd:7f:2a:8e:a2:8d:71:
34:7d:df:77:07:44:1a:51:c4:08:5c:79:1e:45:fd:4e:7b:64:
21:90:ae:7b:28:58:f9:36:7a:bc:24:f1:b9:80:81:c4:b4:26:
fe:48:44:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net