Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/5cY3Kx8b4j0KVaTDpMJ_p3MHXDQ.roa
File: 5cY3Kx8b4j0KVaTDpMJ_p3MHXDQ.roa (raw, json)
Hash identifier: 4/U5L2WjP5zopAp031RJ3xCbWwHur60QbESkZzzy6YQ=
Subject key identifier: E5:C6:37:2B:1F:1B:E2:3D:0A:55:A4:C3:A4:C2:7F:A7:73:07:5C:34
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 019421445A4743FB975A720176CA2EBC0AA5
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/5cY3Kx8b4j0KVaTDpMJ_p3MHXDQ.roa
Signing time: Wed 01 Jan 2025 09:48:35 +0000
ROA not before: Wed 01 Jan 2025 09:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 45.90.48.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:5a:47:43:fb:97:5a:72:01:76:ca:2e:bc:0a:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: Jan 1 09:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5c6372b1f1be23d0a55a4c3a4c27fa773075c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f5:8c:81:b6:11:63:e4:b0:f1:a9:56:9e:cc:
4e:b6:4a:f7:e6:0f:17:2c:4c:96:1c:96:b7:ba:86:
35:8b:64:96:e0:41:c7:fa:32:9f:53:31:35:21:03:
71:05:39:ee:56:bb:9e:41:1b:52:9c:c5:a0:7c:c4:
aa:76:f0:c4:11:0b:5f:d0:bb:51:e5:af:30:f6:17:
e4:b7:ee:2a:cf:23:23:dc:19:4d:73:b6:b6:3f:45:
66:0e:b8:60:3e:5c:7c:73:04:6e:d9:25:28:12:a2:
bc:42:32:40:1f:83:9a:b9:03:3d:cb:04:e0:ae:29:
71:77:ad:20:5d:80:2b:52:b2:3b:32:78:aa:1a:38:
8a:2c:e2:3d:28:b1:0a:88:1e:01:c4:25:2c:3a:7d:
a8:1a:0b:43:46:ad:26:1f:4f:79:a7:ea:f3:e0:e9:
b3:83:1c:a6:2e:d5:14:fd:17:5d:f3:4e:93:a4:aa:
11:13:d2:16:26:7d:d7:d3:44:12:43:cc:82:2a:fe:
c4:6e:77:66:0d:71:09:0c:db:1f:a3:e0:bf:f4:fb:
ca:34:fa:57:da:c4:b4:d1:2e:f0:5c:a6:80:6f:de:
91:95:6f:4a:de:df:2d:d4:cb:2b:7c:df:b1:62:82:
46:b0:de:ac:1b:79:38:02:01:83:50:1b:61:cb:5f:
e7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C6:37:2B:1F:1B:E2:3D:0A:55:A4:C3:A4:C2:7F:A7:73:07:5C:34
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/5cY3Kx8b4j0KVaTDpMJ_p3MHXDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.48.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:24:c1:5d:44:ce:b5:bd:25:79:1b:32:06:83:98:62:92:cd:
20:e2:10:98:b6:ad:77:3a:4b:31:1f:52:ab:30:86:d5:2f:d4:
18:66:66:61:ed:79:9d:04:26:9a:8c:6c:b7:2c:e0:a7:15:43:
51:46:a5:9d:a1:2c:6b:d4:1d:dc:0c:3a:5f:88:f1:9c:24:c5:
54:a7:d2:0d:67:4d:07:92:a9:96:07:0f:ea:2a:d6:da:b1:be:
cd:16:cd:74:f0:e8:d2:75:a6:56:db:a3:e1:5f:9e:f0:37:24:
60:91:98:88:00:1f:f8:2b:1c:bf:0b:67:ab:95:89:ec:62:3a:
eb:9b:a7:ec:2c:c5:c2:0d:dc:80:e9:6a:2a:91:25:98:65:ed:
23:b2:9d:ac:f0:e7:b6:21:99:c0:f5:b6:23:97:e0:a2:d1:87:
c9:91:2b:69:af:49:32:79:13:28:93:98:2f:c0:77:9a:0f:17:
ee:f1:bf:a3:8d:1d:1a:6a:9a:6b:02:44:56:56:19:fb:be:6b:
ea:a8:5f:2b:48:84:8b:2d:95:22:ae:f2:c7:9d:b4:6d:ee:ef:
33:6d:b4:8d:cd:9a:93:2a:91:d6:5b:9b:50:8b:71:6e:96:d9:
d1:75:ad:a0:91:a8:4e:f3:fe:8b:8d:18:b8:df:2f:3c:e2:cc:
9d:d5:b2:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRFpHQ/uXWnIBdsouvAqlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3MDQ4M2QzZDYyZjE5YzA4MzU3NDZkY2I3MjFjODgzMmMz
Yjc5MjYwHhcNMjUwMTAxMDk0ODM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWM2MzcyYjFmMWJlMjNkMGE1NWE0YzNhNGMyN2ZhNzczMDc1YzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7/WMgbYRY+Sw8alWnsxOtkr35g8X
LEyWHJa3uoY1i2SW4EHH+jKfUzE1IQNxBTnuVrueQRtSnMWgfMSqdvDEEQtf0LtR
5a8w9hfkt+4qzyMj3BlNc7a2P0VmDrhgPlx8cwRu2SUoEqK8QjJAH4OauQM9ywTg
rilxd60gXYArUrI7MniqGjiKLOI9KLEKiB4BxCUsOn2oGgtDRq0mH095p+rz4Omz
gxymLtUU/Rdd806TpKoRE9IWJn3X00QSQ8yCKv7EbndmDXEJDNsfo+C/9PvKNPpX
2sS00S7wXKaAb96RlW9K3t8t1MsrfN+xYoJGsN6sG3k4AgGDUBthy1/nHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOXGNysfG+I9ClWkw6TCf6dzB1w0MB8GA1UdIwQY
MBaAFAcEg9PWLxnAg1dG3LchyIMsO3kmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQndTRDA5WXZHY0NEVjBiY3R5SElneXc3ZVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS82NDUxYzEtMmJjZC00NDYzLWE3MDAt
ZDQ0MmM0ZjllOWJkLzEvNWNZM0t4OGI0ajBLVmFURHBNSl9wM01IWERRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS82NDUxYzEtMmJjZC00NDYzLWE3MDAtZDQ0MmM0ZjllOWJk
LzEvQndTRDA5WXZHY0NEVjBiY3R5SElneXc3ZVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVowMA0G
CSqGSIb3DQEBCwUAA4IBAQArJMFdRM61vSV5GzIGg5hiks0g4hCYtq13OksxH1Kr
MIbVL9QYZmZh7XmdBCaajGy3LOCnFUNRRqWdoSxr1B3cDDpfiPGcJMVUp9INZ00H
kqmWBw/qKtbasb7NFs108OjSdaZW26PhX57wNyRgkZiIAB/4Kxy/C2erlYnsYjrr
m6fsLMXCDdyA6WoqkSWYZe0jsp2s8Oe2IZnA9bYjl+Ci0YfJkStpr0kyeRMok5gv
wHeaDxfu8b+jjR0aapprAkRWVhn7vmvqqF8rSISLLZUirvLHnbRt7u8zbbSNzZqT
KpHWW5tQi3FultnRda2gkahO8/6LjRi43y884syd1bLn
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:26 2025 by rpki-client