Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/bNsBsr1IHLF1-3ad3h95KjpuWA4.roa
File: bNsBsr1IHLF1-3ad3h95KjpuWA4.roa (raw, json)
Hash identifier: GlBlPCMkjrW1QGY3fo8g2pCcaj8f+wBH45pQpEhJwP4=
Subject key identifier: 6C:DB:01:B2:BD:48:1C:B1:75:FB:76:9D:DE:1F:79:2A:3A:6E:58:0E
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 075C781D
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/bNsBsr1IHLF1-3ad3h95KjpuWA4.roa
Signing time: Sat 01 Jan 2022 04:57:17 +0000
ROA not before: Sat 01 Jan 2022 04:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 45.158.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123500573 (0x75c781d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cdb01b2bd481cb175fb769dde1f792a3a6e580e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:79:0c:10:42:12:c5:b6:b5:a8:c3:db:c4:24:
10:49:53:d1:b2:7a:7b:17:ca:33:de:59:f4:6e:54:
76:18:c2:a7:e6:54:e4:cc:bd:c6:f2:27:0f:da:ab:
59:34:a2:b2:cc:82:23:bc:c0:9f:73:d2:b7:fd:9a:
97:3a:89:35:f3:63:7d:66:0c:ce:31:0a:16:3b:a8:
c5:1f:e2:2a:8d:31:6b:6c:98:50:d5:ad:c4:17:5e:
b8:27:6e:68:8e:a7:3e:c6:78:57:c1:f2:fd:0d:1b:
02:30:c3:8e:55:5d:46:d1:c9:64:b2:77:62:b6:0e:
ef:90:d1:e6:22:43:38:92:26:ed:12:00:b0:2f:f2:
2d:76:80:de:54:a5:3a:9b:73:d1:51:fa:32:2a:7a:
47:bc:5e:69:84:e0:f9:41:ce:75:6b:c8:b1:1a:27:
c6:39:ac:5e:69:65:f4:d4:fc:b9:f4:28:25:09:fe:
ad:e5:47:8e:e1:d7:e1:cc:3d:a6:c8:a9:24:f3:f3:
a4:d1:80:63:12:76:82:56:3d:77:e5:df:99:ce:67:
fe:24:d8:9f:74:c4:6c:35:bc:d1:6a:9a:9c:0c:dc:
26:96:61:8b:1f:c1:6d:58:19:ab:ee:f9:ac:6f:84:
22:92:4b:8b:99:7b:70:1c:8d:e2:33:6f:21:a8:53:
2b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DB:01:B2:BD:48:1C:B1:75:FB:76:9D:DE:1F:79:2A:3A:6E:58:0E
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/bNsBsr1IHLF1-3ad3h95KjpuWA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.14.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:84:3d:50:c6:06:db:6a:86:d1:07:99:0c:2b:c9:78:30:fe:
b2:d8:90:2e:49:a5:5e:8d:6a:1e:61:b6:84:71:81:8c:01:0a:
35:df:8b:0f:a2:fa:ca:65:a5:7b:67:a6:7b:21:27:3e:8d:8b:
d5:aa:52:3d:61:e4:a5:4c:c5:9e:78:e4:fa:ab:ed:c3:20:a9:
87:27:1f:88:06:7b:d7:da:6c:7f:f0:d6:40:26:ac:81:5e:50:
b7:df:c4:30:76:6d:f3:f5:80:98:65:35:db:72:f7:69:8f:59:
13:23:39:b9:a2:ba:82:8c:b2:6c:10:18:2d:83:a3:cf:9f:6d:
bf:a4:be:b3:3e:45:24:62:46:17:dc:63:2e:95:25:9d:c5:01:
a8:5c:76:72:b0:c9:cc:fd:dd:c9:5d:37:b4:0f:5f:7d:c0:41:
7b:0f:94:c3:c3:ad:7f:bc:99:c7:68:bd:38:7c:85:15:a5:c3:
8f:3f:ad:00:1c:87:a7:a1:cb:42:c3:dc:94:82:e9:14:81:5b:
19:67:20:26:14:e0:f9:86:b2:c7:64:21:28:28:de:f0:54:17:
09:27:ec:64:36:60:d6:73:95:11:50:03:72:e5:f5:6f:0f:93:
68:c9:d6:52:c8:e3:02:91:e8:b5:bb:f9:48:f8:6d:df:2e:81:
ff:f1:1e:81
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB1x4HTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YTBiMDVmNDBhNjkxNjM5NDc4MjMwMmQxYjU2NjA3MzcyNTdhNDhiMB4XDTIyMDEw
MTA0NTcxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNkYjAxYjJiZDQ4
MWNiMTc1ZmI3NjlkZGUxZjc5MmEzYTZlNTgwZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALx5DBBCEsW2tajD28QkEElT0bJ6exfKM95Z9G5UdhjCp+ZU
5My9xvInD9qrWTSissyCI7zAn3PSt/2alzqJNfNjfWYMzjEKFjuoxR/iKo0xa2yY
UNWtxBdeuCduaI6nPsZ4V8Hy/Q0bAjDDjlVdRtHJZLJ3YrYO75DR5iJDOJIm7RIA
sC/yLXaA3lSlOptz0VH6Mip6R7xeaYTg+UHOdWvIsRonxjmsXmll9NT8ufQoJQn+
reVHjuHX4cw9psipJPPzpNGAYxJ2glY9d+Xfmc5n/iTYn3TEbDW80WqanAzcJpZh
ix/BbVgZq+75rG+EIpJLi5l7cByN4jNvIahTK5UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRs2wGyvUgcsXX7dp3eH3kqOm5YDjAfBgNVHSMEGDAWgBQ6CwX0CmkWOUeC
MC0bVmBzclekizAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09nc0Y5QXBwRmpsSGdqQXRHMVpnYzNKWHBJcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvNzU4M2NiLWQzMWUtNGUwMy1iMTRiLWIyMGUyOGY1MTg4Zi8x
L2JOc0JzcjFJSExGMS0zYWQzaDk1S2pwdVdBNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
NzU4M2NiLWQzMWUtNGUwMy1iMTRiLWIyMGUyOGY1MTg4Zi8xL09nc0Y5QXBwRmps
SGdqQXRHMVpnYzNKWHBJcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2eDjANBgkqhkiG9w0BAQsFAAOC
AQEAroQ9UMYG22qG0QeZDCvJeDD+stiQLkmlXo1qHmG2hHGBjAEKNd+LD6L6ymWl
e2emeyEnPo2L1apSPWHkpUzFnnjk+qvtwyCphycfiAZ719psf/DWQCasgV5Qt9/E
MHZt8/WAmGU123L3aY9ZEyM5uaK6goyybBAYLYOjz59tv6S+sz5FJGJGF9xjLpUl
ncUBqFx2crDJzP3dyV03tA9ffcBBew+Uw8Otf7yZx2i9OHyFFaXDjz+tAByHp6HL
QsPclILpFIFbGWcgJhTg+Yayx2QhKCje8FQXCSfsZDZg1nOVEVADcuX1bw+TaMnW
UsjjApHotbv5SPht3y6B//EegQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:57 2025 by rpki-client