Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/BiweuLnHoWiHw0dJtOKVLYe5VXw.roa
File: BiweuLnHoWiHw0dJtOKVLYe5VXw.roa (raw, json)
Hash identifier: v5I7lbo3yrRW4OdIb5Z9T1Oajdn5oMeqluzGbBuYfMA=
Subject key identifier: 06:2C:1E:B8:B9:C7:A1:68:87:C3:47:49:B4:E2:95:2D:87:B9:55:7C
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 019424B30DC4CC85E237EA501E79CD7956EC
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/BiweuLnHoWiHw0dJtOKVLYe5VXw.roa
Signing time: Thu 02 Jan 2025 01:48:21 +0000
ROA not before: Thu 02 Jan 2025 01:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208804
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:0d:c4:cc:85:e2:37:ea:50:1e:79:cd:79:56:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 2 01:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=062c1eb8b9c7a16887c34749b4e2952d87b9557c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:83:32:4f:25:a9:27:28:65:bc:c9:01:6a:c7:
65:e6:8f:37:ff:32:1a:bb:f2:c2:bc:df:98:23:09:
71:17:c3:83:eb:c5:41:46:af:08:b7:49:3e:4a:a8:
ee:e0:6f:f7:c2:c7:6d:11:01:90:f1:5f:ff:fd:51:
cf:51:65:54:75:d6:b7:70:e2:e3:92:96:d9:81:35:
02:dd:f5:2f:e9:18:50:64:56:f0:9a:88:3f:57:bf:
e7:7c:f8:ec:e2:fe:50:6e:2c:96:13:1a:6c:69:15:
c4:c7:39:6f:eb:ee:97:3e:97:b7:94:d0:b3:5c:3d:
91:ac:a0:c9:09:b5:0e:8e:b3:25:2f:f6:4e:6f:74:
b0:e8:b8:a6:75:1f:8f:72:a5:a4:25:3a:ad:70:b5:
99:35:92:57:62:fe:2d:4a:0b:f2:f3:80:46:0a:42:
69:a5:da:92:ed:e1:91:7f:01:d1:56:ee:42:b7:b1:
06:01:1e:bd:e2:23:40:99:86:79:df:24:bc:85:96:
c7:f3:c2:0f:14:3a:c4:47:32:2f:6d:75:86:41:8f:
6b:f0:da:2f:28:13:6d:d0:f2:7b:30:75:a5:ca:8c:
a5:2a:70:8d:77:ce:d4:74:a9:85:48:be:de:93:83:
71:90:72:f2:32:4f:df:d9:2b:c7:e9:32:23:0c:ad:
3e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2C:1E:B8:B9:C7:A1:68:87:C3:47:49:B4:E2:95:2D:87:B9:55:7C
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/BiweuLnHoWiHw0dJtOKVLYe5VXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:37:4b:f3:eb:ce:c5:fd:a2:81:e1:05:a7:23:ab:76:b8:0c:
44:11:a0:40:46:cf:1d:4a:4c:3d:98:e3:b3:f6:fb:9a:6e:98:
5f:ec:c0:33:4b:7a:1f:b1:4c:12:dd:3b:40:a4:89:33:37:7c:
63:9e:91:ef:f7:67:1f:f9:e0:ae:75:cd:3b:ac:b7:0d:76:57:
ee:bb:4c:9b:45:46:79:21:dc:f0:eb:1b:13:45:99:86:b1:cf:
80:f6:43:fa:3d:e7:cf:54:bd:0d:be:75:71:2d:18:1b:50:53:
15:ed:dc:a6:64:68:8f:bb:0b:00:d9:1f:dc:bd:43:bd:37:70:
2c:f6:44:84:0b:da:e6:21:2b:91:4c:29:dd:31:91:3d:26:bc:
d5:34:d7:76:58:a9:53:4d:d0:2d:35:8b:f0:4c:d4:84:b3:25:
c8:9d:d7:28:da:79:80:b9:8c:fd:d4:a0:49:1d:82:cb:ce:2b:
45:b1:47:f6:43:0f:a6:74:1e:72:20:9e:6d:45:0f:a4:4a:30:
b4:75:41:7b:d3:d1:b4:d2:00:79:23:ae:d1:4c:53:4d:31:f4:
49:53:29:b4:d0:6a:a1:27:35:49:64:3b:85:57:1c:87:ac:8f:
50:9e:25:ab:94:74:a5:a6:07:fc:ea:4d:bd:2e:e8:29:0e:8d:
50:e9:c9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net