Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/ubILPtIGLcaC5tdulnfQHq0BdoU.roa
File: ubILPtIGLcaC5tdulnfQHq0BdoU.roa (raw, json)
Hash identifier: BJYBDA5/MNdL6MG7ef+wXgyzjJiGCTkzcJs87HpsXHw=
Subject key identifier: B9:B2:0B:3E:D2:06:2D:C6:82:E6:D7:6E:96:77:D0:1E:AD:01:76:85
Certificate issuer: /CN=0265ad94e797135906b3e11a847c8eafd094e745
Certificate serial: 0194228D5E29A8C3BD420ED792E8FEE758C5
Authority key identifier: 02:65:AD:94:E7:97:13:59:06:B3:E1:1A:84:7C:8E:AF:D0:94:E7:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmWtlOeXE1kGs-EahHyOr9CU50U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/ubILPtIGLcaC5tdulnfQHq0BdoU.roa
Signing time: Wed 01 Jan 2025 15:47:57 +0000
ROA not before: Wed 01 Jan 2025 15:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60641
IP address blocks: 185.45.172.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:5e:29:a8:c3:bd:42:0e:d7:92:e8:fe:e7:58:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0265ad94e797135906b3e11a847c8eafd094e745
Validity
Not Before: Jan 1 15:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9b20b3ed2062dc682e6d76e9677d01ead017685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:27:a1:21:61:09:c7:01:1c:b1:a8:e2:b9:9e:
71:26:98:59:e1:29:5b:e9:be:b4:31:41:05:30:59:
16:de:9e:f3:cb:e9:21:79:41:ac:c3:9b:4f:f6:19:
2f:10:ae:17:d9:43:4f:aa:40:cb:6b:cb:ac:c8:99:
37:de:86:b6:ee:64:dd:d0:6d:ef:f7:37:0b:8e:e3:
bd:c7:a4:ac:37:04:bc:ec:d9:e1:79:2f:10:17:be:
c8:7f:70:d8:3d:7e:02:b9:c9:0c:f4:56:18:ab:1d:
a6:31:9a:b0:77:6e:cc:a4:ca:10:5a:bf:50:69:0d:
67:0a:e9:3e:7d:73:de:67:2e:25:f8:64:1a:b7:7d:
34:34:b1:b6:83:8a:c2:58:4c:33:54:ea:a3:f3:0e:
10:fd:0d:52:d0:a0:16:c5:31:57:a7:52:43:7a:22:
7c:7b:38:5d:d6:6b:cd:85:bd:ed:d3:2d:7d:3f:66:
ab:07:be:b9:27:86:81:ea:cb:9d:cc:8b:b1:88:1b:
3c:03:93:6d:85:2f:77:8b:e9:86:55:a5:75:29:d3:
b1:40:ed:96:a6:87:a0:7d:b2:bc:34:2b:f5:78:67:
75:88:5b:25:e6:31:0f:ff:76:46:41:62:40:59:ac:
e3:c2:bf:e9:a3:43:e6:e7:86:e3:5b:36:eb:cd:bb:
c9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B2:0B:3E:D2:06:2D:C6:82:E6:D7:6E:96:77:D0:1E:AD:01:76:85
X509v3 Authority Key Identifier:
keyid:02:65:AD:94:E7:97:13:59:06:B3:E1:1A:84:7C:8E:AF:D0:94:E7:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmWtlOeXE1kGs-EahHyOr9CU50U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/ubILPtIGLcaC5tdulnfQHq0BdoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/cb28b6-2966-444a-8fbd-97fb900d668b/1/AmWtlOeXE1kGs-EahHyOr9CU50U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.172.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:2f:54:2f:d5:20:7c:10:97:cc:45:4a:be:ff:ad:f9:19:f6:
a9:ed:3a:f9:2e:c1:87:03:65:66:fe:9d:76:f3:bd:fa:22:af:
45:dc:dd:57:54:c1:70:9d:98:22:01:18:52:45:38:fe:01:43:
37:48:ce:d3:ce:9b:f5:1c:0e:97:83:0f:3d:ad:8b:54:f9:f8:
f7:c0:83:49:83:eb:bc:7a:36:8e:4e:0a:47:88:6d:d0:06:99:
f5:26:6a:47:f7:dd:4f:3c:f6:98:c8:e6:2d:30:22:ad:81:0e:
33:3f:c9:f2:ee:88:4a:93:09:e0:8c:73:b4:91:c3:14:54:43:
04:e0:d0:20:0b:7a:c5:5c:23:8b:6f:04:97:ae:25:37:14:e1:
02:56:cd:ef:09:98:5e:07:8f:c1:ec:4c:2a:ac:79:f4:6d:24:
fb:41:50:af:6c:2d:f2:2d:6f:4f:fd:e9:76:e4:13:df:bd:75:
1c:af:db:a5:f1:98:33:a0:73:20:80:f2:21:e8:46:f8:74:52:
66:bf:1e:25:be:a5:0f:88:a9:e7:d7:0a:9a:9a:9f:b4:4a:7a:
0d:5b:03:4e:ec:c0:ee:8e:d8:71:52:9a:64:3c:34:4f:87:b1:
1f:a3:c9:a2:42:d8:03:cf:d2:85:95:4a:5a:07:2c:65:54:4c:
84:3b:38:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:01:00 2025 by rpki-client