Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/924c77-b283-4a52-9094-11f1b5a4b0dc/1/fSiDlWwoGniklT0F1na2YoYly6g.roa
File: fSiDlWwoGniklT0F1na2YoYly6g.roa (raw, json)
Hash identifier: jQShuABqrNJ6xVnXKO1phumkAcZdn3LFktiTS8/eFss=
Subject key identifier: 7D:28:83:95:6C:28:1A:78:A4:95:3D:05:D6:76:B6:62:86:25:CB:A8
Certificate issuer: /CN=40cb59a418eadfa5dc869f56f1847fb25d987fc6
Certificate serial: 01941F8CA1997DE4F3957B534D2561299564
Authority key identifier: 40:CB:59:A4:18:EA:DF:A5:DC:86:9F:56:F1:84:7F:B2:5D:98:7F:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMtZpBjq36Xchp9W8YR_sl2Yf8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/924c77-b283-4a52-9094-11f1b5a4b0dc/1/fSiDlWwoGniklT0F1na2YoYly6g.roa
Signing time: Wed 01 Jan 2025 01:48:17 +0000
ROA not before: Wed 01 Jan 2025 01:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29075
IP address blocks: 45.140.103.0/24 maxlen: 24
185.18.172.0/22 maxlen: 22
2a04:cc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a1:99:7d:e4:f3:95:7b:53:4d:25:61:29:95:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cb59a418eadfa5dc869f56f1847fb25d987fc6
Validity
Not Before: Jan 1 01:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d2883956c281a78a4953d05d676b6628625cba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:c5:6d:01:f3:f4:c2:ed:66:38:47:73:db:
8f:3c:26:9c:6b:8a:11:23:31:42:ef:aa:e4:24:78:
12:37:dd:56:10:83:78:f4:fa:79:1e:23:54:eb:54:
dc:ef:af:bf:de:3e:51:27:d0:94:26:56:6a:ff:c6:
63:37:b7:7e:1a:67:97:40:30:ef:37:6a:b0:7e:09:
8f:25:9e:03:c3:b7:1a:31:78:58:38:e3:c0:1b:ea:
41:df:c1:92:c4:2b:b5:47:d3:4a:ad:20:ef:ff:01:
65:10:19:e4:0c:29:2c:21:52:9d:52:f9:20:b1:fc:
cf:a9:df:88:2a:0f:38:6b:ae:c0:42:a2:1f:2e:2b:
52:7f:f9:9a:7e:ee:53:71:72:06:a2:49:21:b0:9b:
f8:2d:fd:77:1f:15:8b:0e:e3:38:36:01:96:b1:52:
aa:cc:c7:d8:ef:d9:ce:43:e6:29:51:96:88:c7:4b:
45:10:4f:e3:7e:d5:1d:1f:cb:41:43:d0:dc:de:72:
22:b3:42:a9:0b:ad:11:9f:24:69:c3:56:ae:ce:31:
af:cf:11:2f:41:9f:47:96:4d:57:d0:4e:a7:c9:e6:
f3:27:99:57:1e:21:b5:ed:91:79:71:97:6f:d6:1c:
07:44:e5:ca:c6:3b:93:fc:86:6a:d0:cb:44:c5:47:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:28:83:95:6C:28:1A:78:A4:95:3D:05:D6:76:B6:62:86:25:CB:A8
X509v3 Authority Key Identifier:
keyid:40:CB:59:A4:18:EA:DF:A5:DC:86:9F:56:F1:84:7F:B2:5D:98:7F:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMtZpBjq36Xchp9W8YR_sl2Yf8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/924c77-b283-4a52-9094-11f1b5a4b0dc/1/fSiDlWwoGniklT0F1na2YoYly6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/924c77-b283-4a52-9094-11f1b5a4b0dc/1/QMtZpBjq36Xchp9W8YR_sl2Yf8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.103.0/24
185.18.172.0/22
IPv6:
2a04:cc0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:ef:8b:32:af:9b:09:e2:c9:24:e9:7e:fb:49:a8:54:c0:62:
8c:49:69:1e:ff:c8:ff:62:01:40:d7:1b:59:20:eb:55:4e:dc:
a7:4d:13:e2:ed:f0:fb:04:c0:ba:e4:d0:bf:07:cf:5c:d1:c8:
fc:53:f0:c0:29:16:a6:6b:63:06:aa:3b:53:6e:67:29:2a:33:
f5:4d:a3:a5:77:5a:24:1a:0e:33:f2:50:17:24:34:79:aa:63:
f6:46:9f:6d:0f:6c:c5:6f:7f:c3:56:4f:6c:7c:5b:4e:11:74:
3d:09:d4:c8:44:2a:a0:dc:bd:96:98:80:da:b4:ac:cf:55:16:
bb:dd:cf:66:bd:05:32:28:e6:3f:ce:cc:b9:56:76:66:8c:66:
d7:83:7b:33:ef:84:7a:c9:0d:7a:7f:5e:d4:db:86:b5:24:a8:
e3:1d:2f:ba:d1:55:68:d7:f1:ce:8b:ee:3d:a2:f7:71:4a:0d:
91:97:7c:1e:3e:de:7b:63:5e:d8:dc:3f:62:6d:9a:9d:38:dd:
2d:75:e1:93:c2:3d:cf:c1:66:4a:95:02:e6:58:3a:f7:af:78:
34:78:2c:fc:0f:03:60:cb:2a:f6:bf:2b:36:b0:ce:28:c4:c4:
d3:86:c4:ae:3e:ef:10:9b:8f:6c:d8:2c:2e:4d:11:90:aa:8b:
59:29:ac:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:30:53 2025 by rpki-client