Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d4c940-edb8-49d0-a775-848750e68646/1/AJOnGQefJaPn4MzKmFb5NCtfGcU.roa
File: AJOnGQefJaPn4MzKmFb5NCtfGcU.roa (raw, json)
Hash identifier: H5beH3qQMtz11qNLQ9AHy5btGMxlEwdsVzQmnGHD5io=
Subject key identifier: 00:93:A7:19:07:9F:25:A3:E7:E0:CC:CA:98:56:F9:34:2B:5F:19:C5
Certificate issuer: /CN=d3c14142fc885708d0cf28d580cd2c16dbc14a25
Certificate serial: 8534A8
Authority key identifier: D3:C1:41:42:FC:88:57:08:D0:CF:28:D5:80:CD:2C:16:DB:C1:4A:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08FBQvyIVwjQzyjVgM0sFtvBSiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d4c940-edb8-49d0-a775-848750e68646/1/AJOnGQefJaPn4MzKmFb5NCtfGcU.roa
Signing time: Sat 01 Jan 2022 01:57:52 +0000
ROA not before: Sat 01 Jan 2022 01:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 45.90.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8729768 (0x8534a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3c14142fc885708d0cf28d580cd2c16dbc14a25
Validity
Not Before: Jan 1 01:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0093a719079f25a3e7e0ccca9856f9342b5f19c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:ed:8e:64:3c:9f:43:24:a0:25:17:c8:ef:
2e:27:f5:8a:90:c3:af:f5:61:e8:06:63:02:63:80:
39:50:99:35:67:3f:9c:53:b1:4c:62:59:99:bd:c9:
8c:68:4a:43:74:c7:78:29:46:86:aa:78:66:b9:c4:
b1:aa:b2:0e:61:1f:27:37:82:0a:2a:70:b2:8e:cf:
ac:5c:4c:20:63:1b:d8:5c:48:bf:9d:40:dd:cf:10:
e9:5c:7f:08:0d:ea:89:ae:36:48:19:d1:f5:30:1f:
5f:8f:83:c7:a5:e0:4b:e1:16:75:82:c5:a9:09:09:
97:8f:e9:84:45:6f:27:98:f9:ff:90:87:73:cf:4e:
00:25:5a:2b:12:34:03:50:03:f2:79:97:54:90:b6:
e8:35:7b:1f:5f:44:fc:d7:89:a2:1f:03:15:a3:fe:
4d:a4:ad:bd:50:bc:37:ab:9e:c6:c5:2f:71:6c:84:
9d:dc:ba:a5:d4:6f:4a:14:2b:40:8c:18:48:86:e3:
64:b9:c8:b4:bd:c7:e8:78:11:61:66:40:8f:4a:e0:
a0:5c:41:81:75:4e:3b:2b:8b:b1:78:75:f9:cc:65:
3d:d9:30:20:92:41:a0:ca:bf:14:69:04:33:b5:5d:
bd:4b:8f:b2:14:34:c8:e7:c5:c4:64:fd:9a:8d:17:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:93:A7:19:07:9F:25:A3:E7:E0:CC:CA:98:56:F9:34:2B:5F:19:C5
X509v3 Authority Key Identifier:
keyid:D3:C1:41:42:FC:88:57:08:D0:CF:28:D5:80:CD:2C:16:DB:C1:4A:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08FBQvyIVwjQzyjVgM0sFtvBSiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4c940-edb8-49d0-a775-848750e68646/1/AJOnGQefJaPn4MzKmFb5NCtfGcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4c940-edb8-49d0-a775-848750e68646/1/08FBQvyIVwjQzyjVgM0sFtvBSiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.52.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:91:09:8f:ef:ae:75:54:39:4a:1e:b4:83:92:08:0b:a8:86:
b2:5b:6d:8a:56:b9:0d:9a:19:c8:1d:08:43:96:e9:ce:9d:8b:
9f:10:ef:04:17:4b:c2:3e:21:18:e9:11:0b:c6:70:d2:81:11:
18:bd:c1:2d:3f:c6:df:e4:3a:05:b4:88:7e:ef:33:f4:cb:36:
d1:3f:da:72:2e:6d:5b:51:03:6d:f5:ce:ac:4c:4c:af:8b:3c:
da:f7:ca:2e:1f:c0:70:16:87:cb:42:de:dd:4c:70:2a:8b:a2:
7c:13:6b:f6:78:1f:8b:2f:7d:28:9a:ff:d0:24:59:5c:b7:de:
65:20:4c:d9:3a:17:0b:bb:06:55:7b:17:5c:c1:3e:75:09:f4:
a5:05:f7:9a:93:dd:e0:24:06:fc:9a:23:48:b7:1b:3c:ec:06:
c3:0f:c7:b1:d9:c3:1d:d8:51:5d:39:fa:2e:d2:ba:55:32:4a:
bb:44:47:fd:82:ec:5a:97:9a:11:9f:74:52:75:15:b1:05:76:
7c:5b:62:b6:1d:72:d3:ae:21:a6:23:0e:62:75:40:c7:d9:3a:
1e:0a:0b:6a:96:c1:80:c1:5e:f0:36:b3:e4:b2:b8:b0:28:00:
ff:95:a0:50:e2:14:77:5a:81:c0:41:0e:ff:df:eb:c7:ae:dc:
be:63:85:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAIU0qDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2MxNDE0MmZjODg1NzA4ZDBjZjI4ZDU4MGNkMmMxNmRiYzE0YTI1MB4XDTIyMDEw
MTAxNTc1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDA5M2E3MTkwNzlm
MjVhM2U3ZTBjY2NhOTg1NmY5MzQyYjVmMTljNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMOJ7Y5kPJ9DJKAlF8jvLif1ipDDr/Vh6AZjAmOAOVCZNWc/
nFOxTGJZmb3JjGhKQ3THeClGhqp4ZrnEsaqyDmEfJzeCCipwso7PrFxMIGMb2FxI
v51A3c8Q6Vx/CA3qia42SBnR9TAfX4+Dx6XgS+EWdYLFqQkJl4/phEVvJ5j5/5CH
c89OACVaKxI0A1AD8nmXVJC26DV7H19E/NeJoh8DFaP+TaStvVC8N6uexsUvcWyE
ndy6pdRvShQrQIwYSIbjZLnItL3H6HgRYWZAj0rgoFxBgXVOOyuLsXh1+cxlPdkw
IJJBoMq/FGkEM7VdvUuPshQ0yOfFxGT9mo0Xhn8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQAk6cZB58lo+fgzMqYVvk0K18ZxTAfBgNVHSMEGDAWgBTTwUFC/IhXCNDP
KNWAzSwW28FKJTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA4RkJRdnlJVndqUXp5alZnTTBzRnR2QlNpVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGEvZDRjOTQwLWVkYjgtNDlkMC1hNzc1LTg0ODc1MGU2ODY0Ni8x
L0FKT25HUWVmSmFQbjRNekttRmI1TkN0ZkdjVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEv
ZDRjOTQwLWVkYjgtNDlkMC1hNzc1LTg0ODc1MGU2ODY0Ni8xLzA4RkJRdnlJVndq
UXp5alZnTTBzRnR2QlNpVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1aNDANBgkqhkiG9w0BAQsFAAOC
AQEAsJEJj++udVQ5Sh60g5IIC6iGslttila5DZoZyB0IQ5bpzp2LnxDvBBdLwj4h
GOkRC8Zw0oERGL3BLT/G3+Q6BbSIfu8z9Ms20T/aci5tW1EDbfXOrExMr4s82vfK
Lh/AcBaHy0Le3UxwKouifBNr9ngfiy99KJr/0CRZXLfeZSBM2ToXC7sGVXsXXME+
dQn0pQX3mpPd4CQG/JojSLcbPOwGww/HsdnDHdhRXTn6LtK6VTJKu0RH/YLsWpea
EZ90UnUVsQV2fFtith1y064hpiMOYnVAx9k6HgoLapbBgMFe8Daz5LK4sCgA/5Wg
UOIUd1qBwEEO/9/rx67cvmOFaw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:21 2023 by rpki-client on console-ams.rpki-client.org