Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/Ok9Ma17MqnNukUOJZ5aYGqi01Oo.roa
File: Ok9Ma17MqnNukUOJZ5aYGqi01Oo.roa (raw, json)
Hash identifier: 6mxc1NSxXjY4Fgjs7UNtsGDPcc5Hx4ruueD50Hi7CHQ=
Subject key identifier: 3A:4F:4C:6B:5E:CC:AA:73:6E:91:43:89:67:96:98:1A:A8:B4:D4:EA
Certificate issuer: /CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Certificate serial: 019423D7272521BB4F611F5DE722FCBB473B
Authority key identifier: 57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/Ok9Ma17MqnNukUOJZ5aYGqi01Oo.roa
Signing time: Wed 01 Jan 2025 21:48:10 +0000
ROA not before: Wed 01 Jan 2025 21:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44735
IP address blocks: 185.45.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:27:25:21:bb:4f:61:1f:5d:e7:22:fc:bb:47:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Validity
Not Before: Jan 1 21:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a4f4c6b5eccaa736e9143896796981aa8b4d4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e1:cf:6a:54:63:c5:f2:c4:a5:0f:02:58:1d:
7b:70:b4:08:c8:ab:e2:15:d8:f7:b9:7b:bb:eb:ae:
cb:a8:8a:ee:71:22:cb:69:17:26:0c:3d:16:9a:7f:
ab:39:7b:80:17:a1:4f:2b:b5:57:2a:13:31:6b:aa:
94:a8:c8:02:9a:6c:17:9c:99:f7:3d:87:ed:0f:f0:
ea:b4:56:40:43:b8:f1:5e:a7:8f:e7:a6:6b:b2:f6:
f8:1c:7c:16:2a:16:03:f0:7c:d4:3d:c1:09:9b:c0:
24:4b:16:70:d0:bd:9a:3f:9c:08:1e:16:01:ff:89:
8b:ac:44:59:45:11:d4:5e:3e:25:69:7b:a2:71:15:
34:cd:d5:1c:91:bc:63:99:b8:be:fc:7f:d1:28:bc:
06:cb:d5:e1:58:20:24:16:35:e3:19:8f:01:c6:8f:
dc:0c:8c:66:b9:c8:53:e6:c5:a2:16:2e:9e:e0:89:
57:fb:d0:1d:f2:6e:8a:65:ca:75:b8:90:70:51:47:
65:6b:90:44:9b:aa:44:b4:44:21:e0:f4:e6:6e:f2:
bb:a2:c4:12:89:a1:0e:cb:fc:90:53:87:eb:df:f3:
c4:dd:a4:5d:dd:7a:3d:5c:a7:43:e4:37:60:63:cd:
75:9e:48:cb:39:14:b6:60:7f:6a:72:94:d1:6a:ed:
dd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4F:4C:6B:5E:CC:AA:73:6E:91:43:89:67:96:98:1A:A8:B4:D4:EA
X509v3 Authority Key Identifier:
keyid:57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/Ok9Ma17MqnNukUOJZ5aYGqi01Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/V5G7EVC-rF6gxyTznSzn_M_BVGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.76.0/24
Signature Algorithm: sha256WithRSAEncryption
26:87:28:88:3e:b9:99:70:ac:14:99:da:6f:2f:da:2a:4d:c8:
7e:89:7d:38:c9:60:96:a4:f6:d2:7f:66:05:c3:12:62:27:ef:
7b:e6:b3:62:2c:fb:62:5b:e4:1a:4d:ac:18:3b:f1:09:de:c3:
03:24:03:87:e1:61:d5:95:f9:67:9c:ec:8f:38:69:ca:c1:61:
ea:20:1b:48:02:a7:de:6a:da:ac:29:4f:e2:32:21:b6:df:1d:
e3:1b:cd:a6:33:7e:8e:f3:06:cb:8b:2c:ba:c5:80:a9:c1:f9:
01:57:c8:c2:08:fc:77:f7:7b:af:19:67:3c:20:4b:dd:13:05:
47:20:00:7e:31:36:dc:d2:77:36:9f:7f:38:f9:b6:0d:85:92:
c3:34:d0:0a:4d:d2:38:8c:14:e0:32:2b:52:eb:9c:03:1b:08:
6e:97:a5:f2:b5:d2:13:df:71:27:b7:fa:48:35:a6:a2:f1:cc:
44:39:04:e6:01:32:c6:73:fa:47:d5:4c:34:fc:7f:5c:70:f4:
07:01:47:6d:fe:07:be:0a:53:24:81:a2:58:15:69:3c:11:96:
41:c7:f4:6a:fc:e9:5c:9d:76:98:64:93:e2:7e:9d:8f:b9:df:
3c:1b:49:ab:b9:3d:7b:f2:53:31:57:b5:67:35:d8:3a:ea:62:
0a:66:e6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:33:11 2025 by rpki-client