Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa
File: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (raw, json)
Hash identifier: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=
Subject key identifier: A3:94:F4:93:FE:38:4D:29:08:81:4C:7F:15:FE:14:F8:71:51:66:A5
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 019541358ABB2604C58C2F8EF266979C4F29
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa
Signing time: Wed 26 Feb 2025 07:43:02 +0000
ROA not before: Wed 26 Feb 2025 07:43:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213694
IP address blocks: 45.66.250.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:35:8a:bb:26:04:c5:8c:2f:8e:f2:66:97:9c:4f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Feb 26 07:43:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a394f493fe384d2908814c7f15fe14f8715166a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:8c:6c:61:64:29:14:37:b7:16:1f:9f:43:
4c:13:1c:69:1a:45:d6:7d:51:8c:3f:ae:26:de:68:
8d:26:97:bf:09:1e:d8:b1:66:15:77:79:82:03:7f:
36:0c:0c:44:d2:ea:b7:11:09:f2:c2:b7:f9:16:8f:
59:83:a5:4e:4d:d9:5f:16:88:88:cd:93:54:4e:50:
d6:1f:16:be:ff:8f:e3:3a:2d:67:f3:7e:cd:47:fa:
d9:03:f2:ac:07:a6:27:e5:26:95:fd:36:bd:1a:5c:
87:49:bf:fe:c3:0a:18:1f:c9:01:bb:53:19:01:ec:
62:f7:75:11:07:cf:f2:b9:a9:22:6e:9f:91:67:db:
1f:ae:b7:ba:68:6e:70:b5:31:ef:81:0f:25:e2:1c:
cd:67:6b:35:64:79:0b:95:5f:2e:87:28:28:25:f6:
2b:f8:db:0a:e2:09:0e:8b:57:7f:c9:f4:1f:6b:20:
3c:bd:0b:30:13:f2:cc:51:46:59:e8:f3:68:e7:a5:
10:44:74:10:e6:70:0c:9f:cd:0e:49:b5:68:af:d4:
d7:b4:89:37:92:a7:d5:5c:00:b8:71:70:09:98:36:
34:58:40:90:9c:3e:29:ad:4f:51:31:60:5c:24:5c:
f8:c4:f0:fb:d4:67:1c:69:af:e1:60:ef:6b:c2:c0:
0f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:94:F4:93:FE:38:4D:29:08:81:4C:7F:15:FE:14:F8:71:51:66:A5
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.250.0/23
Signature Algorithm: sha256WithRSAEncryption
37:c1:74:36:ef:98:30:1e:91:ba:8f:60:6f:a9:dd:3a:e5:65:
23:de:42:5e:af:e8:6e:8b:c0:a7:7b:65:32:af:db:20:1a:93:
e5:8c:88:3f:fd:83:57:e3:48:7b:78:4d:a4:89:8a:89:09:e8:
7d:1a:6e:26:3d:5d:cf:8c:cb:59:cf:b2:b3:32:42:78:bf:06:
87:23:f2:11:ff:79:f3:8a:30:45:6a:ca:f6:30:00:55:fe:6e:
51:40:18:3a:74:69:5e:18:ee:19:fb:45:30:c4:f8:c9:d6:76:
57:38:bd:00:8a:ae:dc:0e:b9:0b:a3:87:1b:18:50:e5:cf:c5:
62:b8:60:e7:07:91:44:7f:b7:e0:20:80:8f:32:72:1d:e0:14:
9e:a6:8c:b3:b3:5d:17:c7:f0:bd:44:4d:ff:ab:83:a5:db:ba:
af:b2:18:9a:dd:a7:e4:11:6d:f3:8c:5e:22:ae:b9:20:18:09:
aa:84:1f:6a:c9:dd:48:37:2b:11:e4:cd:87:7b:cb:73:36:3d:
ad:5d:ac:cb:cd:b6:a3:df:59:28:0a:44:87:0b:db:0b:eb:56:
f4:27:8d:44:88:a4:c4:7d:66:c7:29:3e:51:a6:8c:71:3b:a5:
cb:3e:e9:68:6c:08:02:6c:8d:a7:90:cf:9c:97:14:a2:27:e8:
75:b5:0d:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVBNYq7JgTFjC+O8maXnE8pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3
MjRmNzUwHhcNMjUwMjI2MDc0MzAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzk0ZjQ5M2ZlMzg0ZDI5MDg4MTRjN2YxNWZlMTRmODcxNTE2NmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvE2MbGFkKRQ3txYfn0NMExxpGkXW
fVGMP64m3miNJpe/CR7YsWYVd3mCA382DAxE0uq3EQnywrf5Fo9Zg6VOTdlfFoiI
zZNUTlDWHxa+/4/jOi1n837NR/rZA/KsB6Yn5SaV/Ta9GlyHSb/+wwoYH8kBu1MZ
Aexi93URB8/yuakibp+RZ9sfrre6aG5wtTHvgQ8l4hzNZ2s1ZHkLlV8uhygoJfYr
+NsK4gkOi1d/yfQfayA8vQswE/LMUUZZ6PNo56UQRHQQ5nAMn80OSbVor9TXtIk3
kqfVXAC4cXAJmDY0WECQnD4prU9RMWBcJFz4xPD71Gccaa/hYO9rwsAPGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKOU9JP+OE0pCIFMfxX+FPhxUWalMB8GA1UdIwQY
MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt
MzZkZTY1NzIzMmJlLzEvbzVUMGtfNDRUU2tJZ1V4X0ZmNFUtSEZSWnFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl
LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLUL6MA0G
CSqGSIb3DQEBCwUAA4IBAQA3wXQ275gwHpG6j2Bvqd065WUj3kJer+hui8Cne2Uy
r9sgGpPljIg//YNX40h7eE2kiYqJCeh9Gm4mPV3PjMtZz7KzMkJ4vwaHI/IR/3nz
ijBFasr2MABV/m5RQBg6dGleGO4Z+0UwxPjJ1nZXOL0Aiq7cDrkLo4cbGFDlz8Vi
uGDnB5FEf7fgIICPMnId4BSepoyzs10Xx/C9RE3/q4Ol27qvshia3afkEW3zjF4i
rrkgGAmqhB9qyd1INysR5M2He8tzNj2tXazLzbaj31koCkSHC9sL61b0J41EiKTE
fWbHKT5RpoxxO6XLPulobAgCbI2nkM+clxSiJ+h1tQ0f
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:58:26 2025 by rpki-client