Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/b638a5-d903-4a31-9489-cb92bb3ed768/1/oWYw73o0XVlV6OpLKF4dF1YQeis.roa
File: oWYw73o0XVlV6OpLKF4dF1YQeis.roa (raw, json)
Hash identifier: 5U7LFltASNwuXUP6x/MbRpxou9KC14KfkL67az3+D4o=
Subject key identifier: A1:66:30:EF:7A:34:5D:59:55:E8:EA:4B:28:5E:1D:17:56:10:7A:2B
Certificate issuer: /CN=31533690ab184f433f1760f3feaa184c443e70f9
Certificate serial: 0194266B6703BF19964D9CF63352153EE576
Authority key identifier: 31:53:36:90:AB:18:4F:43:3F:17:60:F3:FE:AA:18:4C:44:3E:70:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MVM2kKsYT0M_F2Dz_qoYTEQ-cPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/b638a5-d903-4a31-9489-cb92bb3ed768/1/oWYw73o0XVlV6OpLKF4dF1YQeis.roa
Signing time: Thu 02 Jan 2025 09:49:20 +0000
ROA not before: Thu 02 Jan 2025 09:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208252
IP address blocks: 45.150.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:67:03:bf:19:96:4d:9c:f6:33:52:15:3e:e5:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31533690ab184f433f1760f3feaa184c443e70f9
Validity
Not Before: Jan 2 09:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a16630ef7a345d5955e8ea4b285e1d1756107a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:01:36:19:08:82:b4:79:48:bf:d4:3e:0a:b4:
7d:47:47:e0:c5:87:2c:21:ef:24:d0:94:82:f8:67:
7a:5e:6a:d2:f9:3d:0d:f8:fb:19:46:3a:2e:e4:4c:
65:2a:9b:e9:f0:f4:9a:b8:c4:64:8e:68:d3:24:35:
fa:68:86:06:cc:c8:cf:2e:76:93:c0:35:43:f1:32:
85:0f:cb:ac:a8:53:da:e8:fc:81:85:d2:40:92:c5:
b9:6b:47:4d:3f:d6:a0:3e:49:ef:9d:de:bd:8d:10:
6a:1e:9d:b5:1b:98:b2:cd:65:ae:89:63:86:f4:7b:
d6:97:16:00:55:6c:5a:e2:ef:2e:7a:72:a5:f1:d8:
60:4a:27:81:8f:74:20:df:1c:15:dc:a6:e8:ad:bd:
b1:f7:15:44:8f:ac:b5:18:ef:e5:f4:13:84:6d:72:
43:45:47:25:79:30:63:7a:b3:03:e6:dd:62:ea:5f:
2c:85:f7:e8:63:77:fb:9d:68:d9:20:e0:d9:30:60:
a0:27:59:af:d2:2f:fc:67:b3:e5:f1:81:b6:64:f0:
eb:ee:bc:dc:df:fe:81:ec:8a:ce:a0:77:aa:ba:39:
20:64:61:13:c3:05:a9:7e:83:ed:d1:1b:9d:3f:64:
98:dc:0e:02:9d:ed:04:d6:16:55:c1:67:d7:1d:96:
b7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:66:30:EF:7A:34:5D:59:55:E8:EA:4B:28:5E:1D:17:56:10:7A:2B
X509v3 Authority Key Identifier:
keyid:31:53:36:90:AB:18:4F:43:3F:17:60:F3:FE:AA:18:4C:44:3E:70:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MVM2kKsYT0M_F2Dz_qoYTEQ-cPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b638a5-d903-4a31-9489-cb92bb3ed768/1/oWYw73o0XVlV6OpLKF4dF1YQeis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b638a5-d903-4a31-9489-cb92bb3ed768/1/MVM2kKsYT0M_F2Dz_qoYTEQ-cPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
ee:27:a4:2e:c6:cd:d3:91:0f:de:5f:68:e5:8b:c5:8d:19:e0:
91:d0:72:6c:09:f6:b3:a4:86:5c:05:86:3e:49:6f:d3:94:9e:
1a:e2:06:c4:53:a8:a3:0c:57:c2:3d:a3:76:26:f6:b9:33:da:
02:6f:2b:f6:61:d7:26:69:01:e3:0e:e3:f0:0b:4b:10:b3:73:
97:7f:00:ab:e7:5b:74:65:6e:20:9b:df:f2:d6:d0:a5:6d:07:
6a:1d:e6:f5:75:19:b0:6b:5a:c9:3a:9b:53:91:7e:7e:50:8f:
cc:c8:4d:03:25:6e:db:05:90:99:b4:19:da:58:3a:68:f2:e3:
f6:2d:78:a1:74:cc:4a:21:c8:cc:fb:cb:12:74:eb:93:ad:d1:
8c:6b:50:97:52:d5:34:fc:fc:1d:c9:87:42:b3:6b:66:40:c7:
02:69:08:b7:09:8b:53:ff:69:3c:d2:14:c5:6b:6c:31:6d:5e:
1c:26:fd:1a:f2:df:67:fa:6b:5f:a1:65:fb:1c:3a:11:ac:95:
b8:1e:9c:57:4e:be:f8:46:00:f0:ea:28:8e:7c:7b:09:f0:9b:
18:0e:b8:4e:be:2a:85:a9:46:fc:e6:be:81:80:ca:cb:14:82:
d3:d0:f4:1a:aa:67:73:05:a3:4d:b5:ce:98:27:f6:dd:58:12:
32:e1:b5:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:44:04 2025 by rpki-client