Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/g55b--8xGOqoYXLjLnaTyHnX4ok.roa
File: g55b--8xGOqoYXLjLnaTyHnX4ok.roa (raw, json)
Hash identifier: t4ttlEmgTzHuBKLqIKA24lhz9Va1EpEHdAWptFncJVU=
Subject key identifier: 83:9E:5B:FB:EF:31:18:EA:A8:61:72:E3:2E:76:93:C8:79:D7:E2:89
Certificate issuer: /CN=522a22bccd3de8265afd55f9830ffc01c83af726
Certificate serial: 019420685A71FF72EC4317AEA17B3EF44562
Authority key identifier: 52:2A:22:BC:CD:3D:E8:26:5A:FD:55:F9:83:0F:FC:01:C8:3A:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UioivM096CZa_VX5gw_8Acg69yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/g55b--8xGOqoYXLjLnaTyHnX4ok.roa
Signing time: Wed 01 Jan 2025 05:48:17 +0000
ROA not before: Wed 01 Jan 2025 05:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208770
IP address blocks: 45.136.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:5a:71:ff:72:ec:43:17:ae:a1:7b:3e:f4:45:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522a22bccd3de8265afd55f9830ffc01c83af726
Validity
Not Before: Jan 1 05:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=839e5bfbef3118eaa86172e32e7693c879d7e289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:48:aa:26:a3:8a:ff:c9:b1:ad:01:99:ff:
d7:d6:a0:98:a4:c1:ea:11:94:08:42:8b:e8:b2:d6:
87:0b:f2:68:e4:60:34:04:e6:d2:17:6a:f4:21:a1:
20:4f:7b:9e:9b:11:ca:66:38:2e:0f:5d:1a:03:56:
00:a8:f0:cf:7c:d4:64:e9:56:4b:d7:cb:bd:a4:74:
ef:01:95:6c:08:cf:47:0f:24:c0:df:db:c8:03:a4:
7c:c3:c0:71:a5:c8:6a:fc:bd:b7:81:84:b8:d1:37:
f0:6b:24:d7:fe:6e:3b:e1:1f:21:27:ea:3d:43:80:
d2:76:5b:30:37:aa:25:0c:03:61:e9:91:e2:13:87:
f1:aa:4c:ed:d1:c2:a3:ac:cd:3a:c5:62:be:53:78:
a1:f6:37:a7:22:d6:15:99:9d:3a:17:bb:fb:1d:28:
c9:88:db:2a:3b:a6:ff:0e:7b:b7:df:52:ec:69:28:
d6:2e:0d:f4:7c:9a:7f:c4:d0:f7:af:19:79:6a:c5:
26:fe:03:dc:6e:52:8f:07:5b:b0:8b:02:82:b2:dd:
42:3d:54:72:4f:79:b7:d2:fc:e7:3e:33:69:86:03:
a4:f7:8b:64:8f:8a:fe:b3:f6:f8:6a:3b:aa:16:47:
40:bd:66:e3:a0:c5:88:70:85:d7:21:6a:40:a3:c7:
54:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9E:5B:FB:EF:31:18:EA:A8:61:72:E3:2E:76:93:C8:79:D7:E2:89
X509v3 Authority Key Identifier:
keyid:52:2A:22:BC:CD:3D:E8:26:5A:FD:55:F9:83:0F:FC:01:C8:3A:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UioivM096CZa_VX5gw_8Acg69yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/g55b--8xGOqoYXLjLnaTyHnX4ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1e4760-c546-4bec-a635-ff3723e78bd3/1/UioivM096CZa_VX5gw_8Acg69yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.44.0/22
Signature Algorithm: sha256WithRSAEncryption
12:36:49:78:86:59:85:89:db:3e:a7:13:a3:29:dc:44:18:23:
16:db:ed:c4:fc:0a:24:05:76:c9:da:5f:d5:cc:d1:d4:8a:93:
e7:a2:8f:86:78:84:b5:b8:99:dd:cc:a3:e8:38:26:a5:b0:87:
1c:3c:c8:ea:b4:ae:61:bb:61:35:af:99:d4:1a:60:23:74:d9:
2e:5e:60:d6:db:ac:3d:a2:5a:3c:c7:51:88:6e:4c:a6:c7:1b:
69:3c:99:1b:b9:b1:66:52:f2:c5:48:3e:c8:b9:43:91:64:d9:
be:e4:83:c5:bd:ba:48:6c:9d:c4:07:d9:33:24:b8:10:69:37:
71:77:c9:8d:e2:d3:d0:8c:4a:16:db:af:01:5c:e0:7c:48:cb:
4e:7d:46:aa:e0:9a:c8:3d:c3:a2:e0:8d:1a:05:62:6d:50:1b:
a8:e7:08:33:a0:ea:dd:35:3b:ad:d3:1f:a2:1c:04:3e:3a:a0:
7f:0f:f1:11:01:ea:fd:ac:71:00:48:34:39:be:da:00:e3:bb:
52:4e:b3:d2:3a:b4:6c:38:a7:58:a8:cd:6c:61:6f:ba:9b:c4:
81:5e:97:83:24:6d:f4:3d:f6:3d:d1:a1:c4:35:b5:a3:98:ce:
2e:59:02:5d:58:53:b3:8a:70:e1:5e:29:71:25:59:a9:07:a9:
4b:80:8c:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgaFpx/3LsQxeuoXs+9EViMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMmEyMmJjY2QzZGU4MjY1YWZkNTVmOTgzMGZmYzAxYzgz
YWY3MjYwHhcNMjUwMTAxMDU0ODE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzllNWJmYmVmMzExOGVhYTg2MTcyZTMyZTc2OTNjODc5ZDdlMjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8tIqiajiv/Jsa0Bmf/X1qCYpMHq
EZQIQovostaHC/Jo5GA0BObSF2r0IaEgT3uemxHKZjguD10aA1YAqPDPfNRk6VZL
18u9pHTvAZVsCM9HDyTA39vIA6R8w8Bxpchq/L23gYS40TfwayTX/m474R8hJ+o9
Q4DSdlswN6olDANh6ZHiE4fxqkzt0cKjrM06xWK+U3ih9jenItYVmZ06F7v7HSjJ
iNsqO6b/Dnu331LsaSjWLg30fJp/xND3rxl5asUm/gPcblKPB1uwiwKCst1CPVRy
T3m30vznPjNphgOk94tkj4r+s/b4ajuqFkdAvWbjoMWIcIXXIWpAo8dUkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIOeW/vvMRjqqGFy4y52k8h51+KJMB8GA1UdIwQY
MBaAFFIqIrzNPegmWv1V+YMP/AHIOvcmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWlvaXZNMDk2Q1phX1ZYNWd3XzhBY2c2OXlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8xZTQ3NjAtYzU0Ni00YmVjLWE2MzUt
ZmYzNzIzZTc4YmQzLzEvZzU1Yi0tOHhHT3FvWVhMakxuYVR5SG5YNG9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8xZTQ3NjAtYzU0Ni00YmVjLWE2MzUtZmYzNzIzZTc4YmQz
LzEvVWlvaXZNMDk2Q1phX1ZYNWd3XzhBY2c2OXlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYgsMA0G
CSqGSIb3DQEBCwUAA4IBAQASNkl4hlmFids+pxOjKdxEGCMW2+3E/AokBXbJ2l/V
zNHUipPnoo+GeIS1uJndzKPoOCalsIccPMjqtK5hu2E1r5nUGmAjdNkuXmDW26w9
olo8x1GIbkymxxtpPJkbubFmUvLFSD7IuUORZNm+5IPFvbpIbJ3EB9kzJLgQaTdx
d8mN4tPQjEoW268BXOB8SMtOfUaq4JrIPcOi4I0aBWJtUBuo5wgzoOrdNTut0x+i
HAQ+OqB/D/ERAer9rHEASDQ5vtoA47tSTrPSOrRsOKdYqM1sYW+6m8SBXpeDJG30
PfY90aHENbWjmM4uWQJdWFOzinDhXilxJVmpB6lLgIyt
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:11:46 2025 by rpki-client