Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dvbWlIR_nyOoTtNcYB_wCKbM8x8.roa
File: dvbWlIR_nyOoTtNcYB_wCKbM8x8.roa (raw, json)
Hash identifier: vqMhD9X26YxNwUr/WhYc7U9uIGwJ0S9qj2YKPJvFuT0=
Subject key identifier: 76:F6:D6:94:84:7F:9F:23:A8:4E:D3:5C:60:1F:F0:08:A6:CC:F3:1F
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 019424B30C63DDB8E3B2F731368725C200C7
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dvbWlIR_nyOoTtNcYB_wCKbM8x8.roa
Signing time: Thu 02 Jan 2025 01:48:21 +0000
ROA not before: Thu 02 Jan 2025 01:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42040
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:0c:63:dd:b8:e3:b2:f7:31:36:87:25:c2:00:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 2 01:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76f6d694847f9f23a84ed35c601ff008a6ccf31f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:6c:89:6f:6e:56:27:ab:7a:6e:f2:28:b4:
09:bc:83:7a:6f:aa:9a:73:1c:83:a0:cd:ec:eb:ff:
6d:54:74:03:b3:12:7e:44:5f:2f:f4:bc:49:20:d2:
b8:dc:48:07:5e:e7:19:ef:c8:57:e1:10:aa:aa:df:
10:93:11:92:f7:28:d8:67:60:d7:2a:c5:6d:a3:0f:
42:81:55:42:18:b4:4f:d9:89:00:82:d8:ea:9a:7c:
9b:ac:a1:e1:0c:66:c8:c6:32:53:14:26:eb:66:c1:
e1:18:5e:2b:dc:56:aa:d4:a5:39:aa:b1:2f:b1:2b:
f4:27:62:52:5e:e5:19:d9:eb:08:1f:31:0b:73:02:
4e:58:45:fa:8d:62:ed:b1:f4:10:93:df:f9:a7:13:
a6:40:a9:a5:c4:56:ad:c6:0f:64:92:c2:0e:89:64:
f5:8f:a3:e1:99:bf:74:b9:f9:b5:f0:8f:59:33:c1:
b6:00:09:98:fe:7c:d0:20:c3:c5:f7:db:bd:16:1a:
15:6d:b9:72:dc:bd:c8:b9:1a:ac:de:14:e3:99:b7:
d3:98:03:e3:04:29:fe:d2:e2:f9:80:bf:d8:1a:da:
b4:f8:7e:18:53:7e:11:49:83:dd:3a:81:50:c0:79:
75:17:b1:2c:c3:54:94:d2:bb:de:24:ee:13:d9:5b:
3e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F6:D6:94:84:7F:9F:23:A8:4E:D3:5C:60:1F:F0:08:A6:CC:F3:1F
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/dvbWlIR_nyOoTtNcYB_wCKbM8x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:b2:37:f3:3d:1b:ed:81:72:0a:a2:c1:e4:7f:e4:6c:c9:3d:
31:b0:bf:eb:f6:9f:76:f8:ce:2f:11:92:f7:21:77:d1:a1:f8:
15:03:bb:1a:d1:6a:07:28:84:3f:9c:86:8d:11:d3:b4:14:44:
4f:50:d5:1a:ee:89:ac:49:a6:73:f5:b9:36:f0:f8:9f:5b:b2:
cc:b8:dd:f9:37:96:cf:ec:02:66:06:e1:44:b8:9a:1c:1b:8d:
8a:1f:30:b3:1e:7f:20:e9:93:db:4b:14:cd:7c:92:84:4c:da:
3a:11:44:59:ae:5d:aa:5a:f7:3f:55:a6:5a:11:67:85:0b:2d:
59:4c:d4:ca:c1:d7:a8:e8:17:6b:08:fa:7f:93:81:e9:ac:3b:
87:a1:43:04:e9:37:83:46:79:b2:9e:20:09:0c:0d:42:e9:f0:
67:43:84:66:d2:4d:c0:af:36:cd:1a:1e:01:87:42:c3:0f:97:
cc:10:42:1a:42:ab:a9:83:66:8f:0e:a0:c3:97:17:3f:c2:8f:
5a:2b:79:8b:8d:bb:c0:f2:63:61:ce:cf:03:a1:1f:10:bd:2b:
5e:0f:a1:ef:65:4c:53:e4:f1:93:db:5c:a5:ec:e1:4b:d0:d4:
b9:9a:a9:7b:0e:38:c7:54:84:03:3f:a8:ab:97:a5:b7:55:8e:
6b:91:44:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:57:01 2025 by rpki-client