Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/wpMWqws0Dpp8GOASm90aVo7qq2k.roa
File: wpMWqws0Dpp8GOASm90aVo7qq2k.roa (raw, json)
Hash identifier: 1SPWjmebIHPEJohavvOHRjKSIv+zhB1rg2pQffIZDP4=
Subject key identifier: C2:93:16:AB:0B:34:0E:9A:7C:18:E0:12:9B:DD:1A:56:8E:EA:AB:69
Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d
Certificate serial: 01942826881131E3F2569C06CF322AAE49DE
Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/wpMWqws0Dpp8GOASm90aVo7qq2k.roa
Signing time: Thu 02 Jan 2025 17:53:21 +0000
ROA not before: Thu 02 Jan 2025 17:53:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208209
IP address blocks: 45.154.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:88:11:31:e3:f2:56:9c:06:cf:32:2a:ae:49:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d
Validity
Not Before: Jan 2 17:53:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c29316ab0b340e9a7c18e0129bdd1a568eeaab69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:14:01:00:f5:05:70:2a:67:55:74:7f:ea:eb:
b6:6e:33:78:90:7c:95:ff:59:03:ca:fe:07:89:c0:
94:c6:a4:5e:7c:51:3c:fd:7a:1a:8d:ff:ca:69:46:
9c:17:90:74:9c:7b:65:c7:46:0f:c8:c3:f9:b8:0d:
28:cf:28:5e:35:fb:9a:12:5e:86:83:a6:2b:65:a0:
85:4a:46:15:5d:80:a6:b9:a6:1e:fb:6f:68:3d:cf:
a3:91:65:0b:35:47:69:27:c7:06:87:4a:20:40:d4:
0d:19:80:ca:51:7b:32:bf:94:67:31:54:1b:47:10:
b7:cd:06:44:57:56:85:ab:25:17:ca:04:65:bd:e5:
6e:92:ad:10:8e:f5:93:dd:71:c8:4e:ab:38:eb:37:
1a:92:64:fc:5d:07:d1:45:dd:10:07:a8:ac:00:44:
9b:38:1c:98:3b:da:4f:66:a2:e1:db:ca:0f:ac:72:
f1:07:1b:b4:79:ce:fe:de:12:3b:c3:03:dc:b0:d7:
8c:4d:64:fb:eb:b5:94:09:2f:d7:13:11:a2:7f:de:
4c:99:c4:b5:e2:14:18:c5:a5:a0:e5:ff:55:17:92:
1b:bf:0f:54:12:74:23:85:35:65:eb:b9:37:e8:d9:
90:3c:06:67:58:24:6f:66:85:32:15:80:7e:8b:e8:
e3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:93:16:AB:0B:34:0E:9A:7C:18:E0:12:9B:DD:1A:56:8E:EA:AB:69
X509v3 Authority Key Identifier:
keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/wpMWqws0Dpp8GOASm90aVo7qq2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:3b:85:8b:55:ab:1c:65:d7:9d:1c:bb:1d:1f:4a:a2:33:f7:
76:44:3c:bb:ea:20:21:85:df:67:88:1b:b3:5f:bc:d9:bc:37:
a9:7c:33:14:a5:31:77:06:15:03:51:f3:5d:e5:7c:a9:a9:f7:
43:01:f5:2d:e6:d4:b0:bd:1f:02:ed:03:dd:08:72:ee:63:86:
aa:d4:38:5f:1e:30:f2:2f:07:ca:c5:9a:54:e4:a5:ed:97:20:
57:2c:1b:5d:74:0b:68:4b:6c:b5:a7:ad:4f:23:88:03:49:e3:
21:64:ad:01:0c:c4:7e:1f:d7:8b:20:9e:31:9d:5e:dd:e2:6e:
c5:02:d9:43:14:45:8a:6f:93:cb:34:1c:54:45:a2:fb:a5:bf:
bd:44:36:00:dd:80:d2:a5:1f:14:26:0b:8e:ee:d2:a1:35:6b:
43:36:76:90:b3:c3:54:83:eb:03:68:c1:c6:94:2e:1a:42:a7:
8e:5e:36:08:bb:89:eb:6e:3f:16:b7:b6:3f:11:02:81:3c:65:
f1:c5:d5:91:a0:17:d7:43:ab:72:a9:14:e8:1b:4b:49:fa:34:
fe:ab:2b:65:38:f3:2c:41:ab:a0:30:96:08:81:17:1b:83:3d:
66:fb:80:98:f9:0c:f1:82:33:ea:0d:0a:f2:b1:9a:73:42:aa:
27:d6:4b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:16:24 2025 by rpki-client