Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/gNxZa-k5OjSxWXQPCtSUypU2OVo.roa
File: gNxZa-k5OjSxWXQPCtSUypU2OVo.roa (raw, json)
Hash identifier: gZV2CWW3WgWLEHDBPdOAB77fXlfQdOkM2h6yLLg5UmE=
Subject key identifier: 80:DC:59:6B:E9:39:3A:34:B1:59:74:0F:0A:D4:94:CA:95:36:39:5A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 019428238EB29E6CE5BFAB640903C5879EEA
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/gNxZa-k5OjSxWXQPCtSUypU2OVo.roa
Signing time: Thu 02 Jan 2025 17:50:06 +0000
ROA not before: Thu 02 Jan 2025 17:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20860
IP address blocks: 45.65.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:8e:b2:9e:6c:e5:bf:ab:64:09:03:c5:87:9e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 2 17:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80dc596be9393a34b159740f0ad494ca9536395a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:cb:d0:ae:2f:9c:20:79:09:04:89:23:a1:
06:b0:c1:16:aa:f8:4d:3f:ac:d8:c2:52:3f:0c:83:
a7:6d:fa:74:1e:cb:87:78:fe:48:21:2f:89:24:85:
41:1e:a5:a8:83:74:be:a8:3e:d2:4e:41:c9:06:69:
4e:82:c8:91:3c:b6:f8:c0:5f:b9:3f:c0:ca:13:45:
8f:a7:78:76:55:29:1e:8b:ad:da:65:8b:97:6e:bc:
07:83:e2:dd:09:87:82:68:c5:ce:17:0e:05:14:bd:
44:59:f4:77:5b:00:1e:0c:2a:e8:e2:a5:fb:d4:5b:
a0:37:c8:17:08:f8:83:4d:92:d9:1a:90:b7:f9:55:
0b:9d:ab:bb:54:43:dd:75:57:31:ae:61:76:35:a2:
7a:c2:65:2e:5a:12:2e:d4:03:eb:7b:e6:39:b2:ce:
78:04:e3:6f:99:63:2c:8d:9c:9d:c0:17:b2:b9:58:
f2:cb:34:7b:94:c7:c9:fb:4b:24:59:7d:3f:68:a2:
d6:fe:f5:4a:14:9c:38:3d:35:e5:de:52:8d:63:0a:
91:80:92:73:59:f3:d8:7b:4d:29:a8:81:b2:1d:27:
d3:86:ef:c6:89:45:ea:97:f8:6c:8c:56:dc:e8:1a:
9d:26:28:13:05:3e:1e:6d:df:04:ba:9e:9a:7b:68:
ab:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DC:59:6B:E9:39:3A:34:B1:59:74:0F:0A:D4:94:CA:95:36:39:5A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/gNxZa-k5OjSxWXQPCtSUypU2OVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.113.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c3:bc:1c:14:71:25:75:c8:ee:bc:2d:9f:80:cd:79:b0:4c:
bc:42:d4:73:3e:0f:7a:61:30:39:0e:92:3e:c7:6e:3f:6a:f7:
eb:97:43:1e:66:51:af:3a:d4:77:d4:e0:dd:f4:3c:85:a3:14:
c6:bb:a7:53:54:dc:8a:6f:82:0f:45:fb:c3:cd:f1:73:da:76:
a5:99:88:b6:60:93:d4:92:7a:c3:7b:a6:62:36:22:bf:94:8c:
fc:ea:a5:61:7f:7e:f4:81:a6:70:c1:ac:05:70:74:b4:45:73:
54:ab:c4:dd:f7:7a:6a:32:e6:c6:29:8e:d6:09:41:da:69:39:
36:a9:3f:e8:46:84:43:95:10:64:3b:7e:bb:66:09:02:49:50:
68:0b:fe:0a:91:3d:51:54:22:55:04:d7:c9:f8:1d:00:7a:49:
4a:ba:eb:84:da:37:64:80:b5:a3:2b:31:94:8a:e2:33:c3:0a:
fb:3d:cb:f7:c5:2c:4b:ca:58:64:27:d7:7a:09:1d:45:c7:ed:
0b:d3:97:1f:6d:2a:3f:aa:71:61:a8:63:03:5e:0d:3c:7b:88:
4e:46:28:e4:5d:d8:42:a5:e7:2b:7a:76:e5:a6:0a:27:67:bd:
16:2d:5c:66:ff:8d:91:4f:58:8e:df:d6:5c:81:21:45:9a:8f:
19:bc:4f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:09:18 2025 by rpki-client