Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/CyWSPNzCZY4YcACPEFFThQL4o60.roa
File: CyWSPNzCZY4YcACPEFFThQL4o60.roa (raw, json)
Hash identifier: GtJwD2mr32khUH/PD2A+wK1xplH5PrMLhK4Z9GKtokk=
Subject key identifier: 0B:25:92:3C:DC:C2:65:8E:18:70:00:8F:10:51:53:85:02:F8:A3:AD
Certificate issuer: /CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Certificate serial: 01856E141D1C45FB626E05A688DA1E045B75
Authority key identifier: 6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/CyWSPNzCZY4YcACPEFFThQL4o60.roa
Signing time: Sun 01 Jan 2023 16:04:49 +0000
ROA not before: Sun 01 Jan 2023 16:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9335
IP address blocks: 45.136.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:1d:1c:45:fb:62:6e:05:a6:88:da:1e:04:5b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Validity
Not Before: Jan 1 16:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b25923cdcc2658e1870008f1051538502f8a3ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:35:70:5b:a4:de:0b:ed:92:2e:a1:7b:2c:
8e:a5:ef:e8:79:e7:cc:5e:87:5a:96:fa:63:ed:8f:
5b:d4:92:0a:da:2b:1b:8e:97:e7:a5:c7:ab:dc:50:
71:b4:8e:f2:53:f7:af:2e:3c:6c:dc:82:b7:f0:49:
b1:a2:0b:f9:71:f5:60:0c:a7:59:8a:89:90:20:b2:
64:89:a2:d1:a4:c9:08:c1:7f:33:87:e7:19:ce:ef:
9f:76:c3:f3:08:20:45:c8:8a:22:e3:b3:31:84:cf:
d8:85:ef:8f:4c:67:fb:17:ef:11:35:25:d0:90:26:
aa:be:e3:31:3a:d3:02:90:de:6a:ff:16:ce:7d:89:
b3:06:10:dd:7c:7a:94:66:92:55:15:0b:8e:7c:e2:
a7:54:5c:eb:b9:55:f4:06:5d:77:de:e8:eb:8e:58:
3d:73:71:ca:44:b9:dc:4e:e3:0a:e0:5a:4f:30:fb:
65:65:a0:cc:76:00:67:65:ab:de:74:54:72:07:79:
fe:73:31:25:8f:05:30:ff:3a:44:ad:49:1a:d2:3a:
d0:19:2b:6f:7f:08:d3:fe:c3:60:d4:75:d1:be:c5:
97:fc:24:1a:89:51:14:ac:69:bf:0d:9f:fb:24:36:
16:7e:51:cf:c4:25:f6:26:81:cb:6b:8d:bb:8b:66:
ee:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:25:92:3C:DC:C2:65:8E:18:70:00:8F:10:51:53:85:02:F8:A3:AD
X509v3 Authority Key Identifier:
keyid:6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/CyWSPNzCZY4YcACPEFFThQL4o60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/a-9TZCzYEc37WEf7GtPtKzYAIz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.236.0/22
Signature Algorithm: sha256WithRSAEncryption
31:a4:a1:fc:4b:45:83:ac:0c:25:ff:59:2f:cb:a7:e1:76:89:
2e:64:d8:3d:4c:a5:55:63:f9:67:d6:fd:b6:64:aa:1f:d8:a7:
68:89:28:0a:ee:a7:de:2b:6b:34:c2:07:ba:22:ca:7b:97:41:
54:76:ac:0b:4d:20:ab:2f:a4:00:74:8a:92:48:3c:6c:46:2c:
9d:91:34:65:3a:8c:37:7e:c4:a0:98:f4:8f:2c:0f:40:5d:6c:
69:c6:a2:61:34:a2:d8:28:94:3f:e8:5a:5f:a8:6a:b3:47:95:
d4:13:37:3c:41:c6:9f:04:4b:d8:6b:1e:d1:c5:4b:93:35:36:
67:58:f0:e6:8b:8a:09:60:9b:a3:e8:f7:eb:9b:93:5c:3f:a5:
42:10:b2:5a:63:79:15:76:85:af:52:65:3c:d8:90:2b:f6:1a:
85:d8:88:37:84:01:b2:f8:5e:93:3f:a3:9d:4e:18:70:92:88:
d4:57:68:0c:0c:a4:cd:97:6c:88:44:d5:07:8d:bb:7b:75:2a:
ac:1b:01:f8:10:01:38:b0:30:aa:6a:ba:ed:27:d1:ee:a7:0a:
93:40:75:ad:af:7f:3c:6e:2f:fe:d6:3c:92:2f:e4:45:7d:a0:
d7:49:68:d5:06:b4:5d:41:1b:36:9d:bb:23:fe:3d:b5:c3:df:
68:fe:dd:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuFB0cRftibgWmiNoeBFt1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZWY1MzY0MmNkODExY2RmYjU4NDdmYjFhZDNlZDJiMzYw
MDIzM2YwHhcNMjMwMTAxMTYwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjI1OTIzY2RjYzI2NThlMTg3MDAwOGYxMDUxNTM4NTAyZjhhM2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/U1cFuk3gvtki6heyyOpe/oeefM
Xodalvpj7Y9b1JIK2isbjpfnpcer3FBxtI7yU/evLjxs3IK38Emxogv5cfVgDKdZ
iomQILJkiaLRpMkIwX8zh+cZzu+fdsPzCCBFyIoi47MxhM/Yhe+PTGf7F+8RNSXQ
kCaqvuMxOtMCkN5q/xbOfYmzBhDdfHqUZpJVFQuOfOKnVFzruVX0Bl133ujrjlg9
c3HKRLncTuMK4FpPMPtlZaDMdgBnZavedFRyB3n+czEljwUw/zpErUka0jrQGStv
fwjT/sNg1HXRvsWX/CQaiVEUrGm/DZ/7JDYWflHPxCX2JoHLa427i2buawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAslkjzcwmWOGHAAjxBRU4UC+KOtMB8GA1UdIwQY
MBaAFGvvU2Qs2BHN+1hH+xrT7Ss2ACM/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYS05VFpDellFYzM3V0VmN0d0UHRLellBSXo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84MmQxYmMtZTkyYi00YjA4LTgzYmQt
ZmFhYzI2M2Y4ZTY3LzEvQ3lXU1BOekNaWTRZY0FDUEVGRlRoUUw0bzYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS84MmQxYmMtZTkyYi00YjA4LTgzYmQtZmFhYzI2M2Y4ZTY3
LzEvYS05VFpDellFYzM3V0VmN0d0UHRLellBSXo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYjsMA0G
CSqGSIb3DQEBCwUAA4IBAQAxpKH8S0WDrAwl/1kvy6fhdokuZNg9TKVVY/ln1v22
ZKof2KdoiSgK7qfeK2s0wge6Isp7l0FUdqwLTSCrL6QAdIqSSDxsRiydkTRlOow3
fsSgmPSPLA9AXWxpxqJhNKLYKJQ/6FpfqGqzR5XUEzc8QcafBEvYax7RxUuTNTZn
WPDmi4oJYJuj6Pfrm5NcP6VCELJaY3kVdoWvUmU82JAr9hqF2Ig3hAGy+F6TP6Od
ThhwkojUV2gMDKTNl2yIRNUHjbt7dSqsGwH4EAE4sDCqarrtJ9HupwqTQHWtr388
bi/+1jySL+RFfaDXSWjVBrRdQRs2nbsj/j21w99o/t0q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org