Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/LKSIMzg2qS8EWL02SO5YPjrz_I0.roa
File: LKSIMzg2qS8EWL02SO5YPjrz_I0.roa (raw, json)
Hash identifier: ZtwqDuK6zfdHnP5iApdAnlCr/naZTEL8mOtuOOiHgUY=
Subject key identifier: 2C:A4:88:33:38:36:A9:2F:04:58:BD:36:48:EE:58:3E:3A:F3:FC:8D
Certificate issuer: /CN=ded8582b0243863c572ce25786ccb36ff795b22e
Certificate serial: 01941F8C2ADD796520A126C67EEFED09593C
Authority key identifier: DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/LKSIMzg2qS8EWL02SO5YPjrz_I0.roa
Signing time: Wed 01 Jan 2025 01:47:47 +0000
ROA not before: Wed 01 Jan 2025 01:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207889
IP address blocks: 45.142.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:2a:dd:79:65:20:a1:26:c6:7e:ef:ed:09:59:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded8582b0243863c572ce25786ccb36ff795b22e
Validity
Not Before: Jan 1 01:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2ca488333836a92f0458bd3648ee583e3af3fc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:93:71:76:d7:20:2d:d4:f2:b2:29:65:51:9a:
9b:e3:d1:33:73:58:64:e5:e5:06:95:43:23:c8:cd:
90:80:c9:7d:a0:1c:11:7e:cf:55:7f:5a:e4:ce:27:
2b:3e:9a:2a:97:25:d5:38:b7:f4:71:74:07:ce:5b:
7b:3b:33:de:19:e0:b5:8c:49:a8:28:98:d5:97:1a:
ae:d0:3d:14:61:b3:96:86:f3:4e:5e:4c:05:fd:e8:
55:82:1d:5f:f3:0d:80:45:b5:67:e4:99:6f:d5:79:
7a:fd:1a:06:a0:86:a3:9d:b2:0a:49:94:9e:c0:dc:
d5:1d:7b:22:cf:2f:97:6e:3e:b0:53:c1:1e:ba:35:
a0:38:78:f9:dc:8b:c9:0f:e0:b0:50:d6:62:7f:13:
0c:0f:13:9f:eb:7f:c2:15:63:0a:b5:87:c6:cc:cb:
d0:81:1c:f8:ba:d6:36:db:fc:17:78:e6:01:0f:61:
c4:9e:4a:89:d1:24:40:c7:4c:d0:66:1b:39:8a:55:
96:e2:3f:e4:f4:e5:29:cd:69:6f:78:04:3b:c7:c1:
74:7d:ed:84:d0:cf:96:4b:1f:fd:e1:04:2d:40:20:
ef:ea:1d:56:db:ae:bc:b8:fd:56:2f:38:93:37:91:
e9:ac:9d:10:77:45:d0:78:42:8f:7e:ad:d9:6a:fc:
50:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A4:88:33:38:36:A9:2F:04:58:BD:36:48:EE:58:3E:3A:F3:FC:8D
X509v3 Authority Key Identifier:
keyid:DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/LKSIMzg2qS8EWL02SO5YPjrz_I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/3thYKwJDhjxXLOJXhsyzb_eVsi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.91.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:e4:2c:73:89:bc:65:df:5a:7d:e5:f8:3a:df:95:ad:37:fd:
c6:39:0f:50:1b:4d:8a:e2:f2:fb:a0:cb:ca:4e:de:c9:a9:93:
26:ba:69:95:45:c0:ee:af:25:b5:08:6d:3c:20:00:9b:e3:7b:
4a:1b:9f:6f:c0:a3:1d:10:48:40:88:f4:ac:34:d8:a8:78:33:
95:cd:fc:57:2c:23:2c:cd:a7:e8:3c:b7:d4:2b:08:e0:7a:f7:
25:49:9e:9a:0c:2c:d0:e0:3a:5c:28:25:8f:f7:06:17:08:31:
d0:a2:08:fc:29:76:32:bd:5b:71:ae:d5:5d:6b:7d:75:bc:6a:
b9:b5:b0:f5:61:8d:d6:61:20:c6:8f:32:f4:4b:4d:1e:44:0d:
70:1a:bb:aa:21:41:8f:9f:07:d7:db:c7:0d:57:f9:a8:f9:59:
ad:e1:85:3c:e7:7d:a1:0c:89:1e:5b:9f:e8:d0:8a:02:7f:7e:
9d:db:02:78:8a:f2:19:a9:24:4e:54:cd:53:81:a8:d0:5f:64:
e2:b0:37:93:a9:55:4b:91:e7:14:16:e8:7d:79:25:7e:94:db:
05:4c:c4:ab:0b:bd:39:d8:ac:6a:bd:92:28:56:35:4b:ac:8a:
f5:4f:8c:89:be:fa:b8:89:08:f5:19:dd:c3:fa:56:5b:46:76:
25:14:dd:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjCrdeWUgoSbGfu/tCVk8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZDg1ODJiMDI0Mzg2M2M1NzJjZTI1Nzg2Y2NiMzZmZjc5
NWIyMmUwHhcNMjUwMTAxMDE0NzQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2E0ODgzMzM4MzZhOTJmMDQ1OGJkMzY0OGVlNTgzZTNhZjNmYzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZNxdtcgLdTysillUZqb49Ezc1hk
5eUGlUMjyM2QgMl9oBwRfs9Vf1rkzicrPpoqlyXVOLf0cXQHzlt7OzPeGeC1jEmo
KJjVlxqu0D0UYbOWhvNOXkwF/ehVgh1f8w2ARbVn5Jlv1Xl6/RoGoIajnbIKSZSe
wNzVHXsizy+Xbj6wU8EeujWgOHj53IvJD+CwUNZifxMMDxOf63/CFWMKtYfGzMvQ
gRz4utY22/wXeOYBD2HEnkqJ0SRAx0zQZhs5ilWW4j/k9OUpzWlveAQ7x8F0fe2E
0M+WSx/94QQtQCDv6h1W2668uP1WLziTN5HprJ0Qd0XQeEKPfq3ZavxQpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCykiDM4NqkvBFi9NkjuWD468/yNMB8GA1UdIwQY
MBaAFN7YWCsCQ4Y8VyziV4bMs2/3lbIuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3RoWUt3SkRoanhYTE9KWGhzeXpiX2VWc2k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jYTUxMGMtYjZkMS00ZWIzLThkZDEt
NDk4ZjRjMTBiNjU1LzEvTEtTSU16ZzJxUzhFV0wwMlNPNVlQanJ6X0kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9jYTUxMGMtYjZkMS00ZWIzLThkZDEtNDk4ZjRjMTBiNjU1
LzEvM3RoWUt3SkRoanhYTE9KWGhzeXpiX2VWc2k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY5bMA0G
CSqGSIb3DQEBCwUAA4IBAQDs5Cxzibxl31p95fg635WtN/3GOQ9QG02K4vL7oMvK
Tt7JqZMmummVRcDuryW1CG08IACb43tKG59vwKMdEEhAiPSsNNioeDOVzfxXLCMs
zafoPLfUKwjgevclSZ6aDCzQ4DpcKCWP9wYXCDHQogj8KXYyvVtxrtVda311vGq5
tbD1YY3WYSDGjzL0S00eRA1wGruqIUGPnwfX28cNV/mo+Vmt4YU8532hDIkeW5/o
0IoCf36d2wJ4ivIZqSROVM1TgajQX2TisDeTqVVLkecUFuh9eSV+lNsFTMSrC705
2KxqvZIoVjVLrIr1T4yJvvq4iQj1Gd3D+lZbRnYlFN3f
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net