Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/NfpZJo9L7Qj_EcUYgzlN9CCRZLo.roa
File: NfpZJo9L7Qj_EcUYgzlN9CCRZLo.roa (raw, json)
Hash identifier: RXK/XSb7Qp6zEI6S9qfE79X+i2CIfT8vN15gIMsQeCI=
Subject key identifier: 35:FA:59:26:8F:4B:ED:08:FF:11:C5:18:83:39:4D:F4:20:91:64:BA
Certificate issuer: /CN=4843a5350d2914f2390bb73d6ac057b358153870
Certificate serial: 018571F9FBEF7B0BBD201A3C9D6919B2246C
Authority key identifier: 48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/NfpZJo9L7Qj_EcUYgzlN9CCRZLo.roa
Signing time: Mon 02 Jan 2023 10:14:46 +0000
ROA not before: Mon 02 Jan 2023 10:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50903
IP address blocks: 45.159.68.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:fb:ef:7b:0b:bd:20:1a:3c:9d:69:19:b2:24:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4843a5350d2914f2390bb73d6ac057b358153870
Validity
Not Before: Jan 2 10:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35fa59268f4bed08ff11c51883394df4209164ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:77:c5:0f:6d:64:37:cd:60:91:75:6e:47:ed:
62:3c:9e:a6:3c:9d:0c:72:cb:34:92:e6:dc:b1:07:
2f:aa:f8:da:c4:94:86:ae:f7:25:64:99:a3:89:95:
dd:6f:1b:7b:c1:fc:34:65:84:b6:80:0d:4a:88:b0:
c8:97:5b:be:ac:88:eb:db:f5:52:43:71:f1:95:c5:
5d:79:b8:7f:91:cd:f4:d5:f9:94:a2:6a:a0:f3:e7:
9d:68:2c:00:13:dd:c0:38:30:0e:d9:46:e6:22:87:
62:70:a2:00:57:a7:93:ca:88:2f:9b:96:9b:25:fa:
58:dc:ca:9d:19:71:22:69:33:98:38:77:19:ca:cb:
97:f8:12:cc:15:a0:a3:92:b1:3b:eb:b1:72:d7:d7:
bb:5f:e7:66:56:22:1b:c8:92:e3:49:57:e6:d0:61:
72:2c:d4:4f:b5:b3:13:94:32:d4:a6:64:54:18:bf:
9c:58:94:3e:78:f3:18:52:9f:fc:0e:3f:1d:f8:18:
04:ce:5b:44:2b:6c:fe:96:c9:d0:72:b6:6b:b7:21:
4a:88:df:11:bd:27:df:ea:54:b6:f5:06:a0:3e:0b:
09:89:07:99:e2:5b:ef:ea:65:10:2b:d2:33:94:16:
df:ea:bf:b6:a5:f8:bc:4e:51:32:12:1b:d5:93:10:
00:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FA:59:26:8F:4B:ED:08:FF:11:C5:18:83:39:4D:F4:20:91:64:BA
X509v3 Authority Key Identifier:
keyid:48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/NfpZJo9L7Qj_EcUYgzlN9CCRZLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/SEOlNQ0pFPI5C7c9asBXs1gVOHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.68.0/22
Signature Algorithm: sha256WithRSAEncryption
31:6d:8a:e7:81:b9:1d:03:e5:2b:33:e2:2b:50:2f:61:b9:0a:
da:05:d8:75:1d:26:34:70:f5:01:a0:84:20:35:80:bc:66:97:
05:f7:1a:36:72:ec:d9:c0:56:dc:d9:4b:ee:ad:2b:54:79:73:
07:9e:5e:b6:cd:8d:76:19:dc:4a:8c:8f:7c:11:bf:46:c9:44:
fb:b2:1e:e3:c7:65:3d:06:6c:4d:b7:cb:b1:d3:81:0e:6c:94:
51:b0:0f:49:b7:ad:77:b1:4a:01:1f:38:7b:14:1a:f1:12:78:
e0:77:54:dd:0b:28:e1:3e:af:87:01:13:7f:20:92:09:98:48:
6d:29:6d:d6:71:1c:e5:99:4d:06:60:0d:aa:2f:38:4d:a5:ea:
ca:3c:54:ec:21:89:16:e5:e0:4b:28:87:6f:dc:a7:29:8a:c7:
d6:3c:c6:a4:6d:54:21:fb:a3:ef:2c:08:b9:83:22:2f:1f:71:
12:4b:d3:44:d8:cd:95:c1:2b:4a:13:fb:53:63:5c:23:a0:bb:
40:44:6b:8c:43:aa:7c:39:0e:b5:75:2d:71:df:0d:2f:0d:0e:
8d:82:52:b6:f1:d0:a8:90:97:b2:ef:74:63:3a:4c:b4:fa:14:
44:7a:d3:57:44:6d:d3:69:d7:cc:f8:b7:64:fb:e5:80:1a:a5:
57:87:c0:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx+fvvewu9IBo8nWkZsiRsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4NDNhNTM1MGQyOTE0ZjIzOTBiYjczZDZhYzA1N2IzNTgx
NTM4NzAwHhcNMjMwMTAyMTAxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWZhNTkyNjhmNGJlZDA4ZmYxMWM1MTg4MzM5NGRmNDIwOTE2NGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnfFD21kN81gkXVuR+1iPJ6mPJ0M
css0kubcsQcvqvjaxJSGrvclZJmjiZXdbxt7wfw0ZYS2gA1KiLDIl1u+rIjr2/VS
Q3HxlcVdebh/kc301fmUomqg8+edaCwAE93AODAO2UbmIodicKIAV6eTyogvm5ab
JfpY3MqdGXEiaTOYOHcZysuX+BLMFaCjkrE767Fy19e7X+dmViIbyJLjSVfm0GFy
LNRPtbMTlDLUpmRUGL+cWJQ+ePMYUp/8Dj8d+BgEzltEK2z+lsnQcrZrtyFKiN8R
vSff6lS29QagPgsJiQeZ4lvv6mUQK9IzlBbf6r+2pfi8TlEyEhvVkxAAmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDX6WSaPS+0I/xHFGIM5TfQgkWS6MB8GA1UdIwQY
MBaAFEhDpTUNKRTyOQu3PWrAV7NYFThwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0VPbE5RMHBGUEk1QzdjOWFzQlhzMWdWT0hBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy85N2ViYWItNDgzOC00MDlmLTkzNjMt
Yzk2MDBmNWYzZmRkLzEvTmZwWkpvOUw3UWpfRWNVWWd6bE45Q0NSWkxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy85N2ViYWItNDgzOC00MDlmLTkzNjMtYzk2MDBmNWYzZmRk
LzEvU0VPbE5RMHBGUEk1QzdjOWFzQlhzMWdWT0hBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ9EMA0G
CSqGSIb3DQEBCwUAA4IBAQAxbYrngbkdA+UrM+IrUC9huQraBdh1HSY0cPUBoIQg
NYC8ZpcF9xo2cuzZwFbc2UvurStUeXMHnl62zY12GdxKjI98Eb9GyUT7sh7jx2U9
BmxNt8ux04EObJRRsA9Jt613sUoBHzh7FBrxEnjgd1TdCyjhPq+HARN/IJIJmEht
KW3WcRzlmU0GYA2qLzhNperKPFTsIYkW5eBLKIdv3KcpisfWPMakbVQh+6PvLAi5
gyIvH3ESS9NE2M2VwStKE/tTY1wjoLtARGuMQ6p8OQ61dS1x3w0vDQ6NglK28dCo
kJey73RjOky0+hREetNXRG3TadfM+Ldk++WAGqVXh8CR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:42 2024 by rpki-client on console-fra.rpki-client.org