Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/36d245-ed0e-4c55-b6ba-bcee5b1be0cb/1/y37GC6QE0fZRCxfPHDLuBCnaHFU.roa
File: y37GC6QE0fZRCxfPHDLuBCnaHFU.roa (raw, json)
Hash identifier: /hhQC8qE7rTwRvAPGiqyc0KQgVforEh7w6+kyxsNOps=
Subject key identifier: CB:7E:C6:0B:A4:04:D1:F6:51:0B:17:CF:1C:32:EE:04:29:DA:1C:55
Certificate issuer: /CN=188a460189ee14abceda75997194ccbfe3c58b6b
Certificate serial: 04891FD6
Authority key identifier: 18:8A:46:01:89:EE:14:AB:CE:DA:75:99:71:94:CC:BF:E3:C5:8B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIpGAYnuFKvO2nWZcZTMv-PFi2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/36d245-ed0e-4c55-b6ba-bcee5b1be0cb/1/y37GC6QE0fZRCxfPHDLuBCnaHFU.roa
Signing time: Sat 01 Jan 2022 00:59:09 +0000
ROA not before: Sat 01 Jan 2022 00:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5524
IP address blocks: 45.11.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76095446 (0x4891fd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=188a460189ee14abceda75997194ccbfe3c58b6b
Validity
Not Before: Jan 1 00:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb7ec60ba404d1f6510b17cf1c32ee0429da1c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d4:70:50:55:6e:aa:1f:63:5c:b2:7d:14:16:
01:08:19:dc:12:95:57:57:e3:58:98:85:60:2f:7a:
3e:be:c0:95:f0:9c:0c:bd:bd:bf:7d:2b:bc:79:56:
e8:73:59:91:04:b9:f9:12:2d:4f:f1:ce:32:be:59:
16:96:38:3d:f3:4f:a8:ba:20:a4:04:6a:76:af:98:
1c:c7:7c:b1:92:fc:22:13:4a:c6:74:4e:e0:1f:7b:
52:36:79:79:8f:f7:e9:a0:82:c0:f9:0b:26:f5:c3:
2c:bd:54:ca:16:d7:56:fe:05:84:65:f1:93:d5:20:
58:f5:bf:89:b2:dd:37:e1:dd:75:e9:fa:ec:94:51:
e0:0c:33:50:64:6f:34:7a:81:18:00:27:3a:f9:40:
2d:90:09:1c:b6:5c:14:39:d9:11:bd:cf:c1:09:09:
6e:f4:ab:62:24:b8:e1:2e:bc:fe:a9:67:52:51:4d:
b5:de:de:0b:cd:14:9d:f9:85:3b:5f:96:67:9a:b8:
19:e3:7b:87:59:07:ec:70:b7:08:ae:12:c4:af:40:
e3:ea:f3:30:eb:9e:e5:ce:67:09:74:55:be:9e:c7:
0f:22:0f:07:08:80:86:e0:a7:4e:56:90:a9:58:20:
48:ea:99:e5:01:f6:b9:9a:43:98:8f:2a:9d:82:ba:
fc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:7E:C6:0B:A4:04:D1:F6:51:0B:17:CF:1C:32:EE:04:29:DA:1C:55
X509v3 Authority Key Identifier:
keyid:18:8A:46:01:89:EE:14:AB:CE:DA:75:99:71:94:CC:BF:E3:C5:8B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIpGAYnuFKvO2nWZcZTMv-PFi2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/36d245-ed0e-4c55-b6ba-bcee5b1be0cb/1/y37GC6QE0fZRCxfPHDLuBCnaHFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/36d245-ed0e-4c55-b6ba-bcee5b1be0cb/1/GIpGAYnuFKvO2nWZcZTMv-PFi2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.12.0/22
Signature Algorithm: sha256WithRSAEncryption
01:63:a7:f4:2c:ea:53:96:ff:63:4b:22:2c:10:3b:46:e5:85:
05:4e:be:d2:2c:2d:f1:04:0e:74:df:81:ee:97:95:47:f8:35:
45:a2:02:48:52:fd:ee:5d:6e:48:d4:00:d7:0e:61:c3:b7:f0:
75:b0:98:2d:a3:ff:cf:fd:8e:47:4f:3d:55:7b:1b:9f:71:26:
b9:7a:fb:ea:0f:55:dc:72:6e:22:16:31:f3:bf:3e:25:e1:ef:
1e:2e:2d:e0:09:90:cb:14:ff:21:01:7f:3b:be:ce:b0:1c:f8:
98:ad:1c:f0:5a:ec:a8:f6:88:35:58:64:49:66:2a:9a:c4:61:
97:7c:14:3f:51:12:b1:0d:b8:ae:68:4b:a2:8d:20:fb:f1:d6:
1b:4f:b7:a4:09:21:d5:ad:46:5a:f0:cc:2b:70:fa:6b:f8:10:
c1:d7:e4:0e:29:94:8d:0d:26:19:4b:75:52:27:19:51:cd:84:
73:c5:a5:2c:fd:d5:0a:7c:0a:4b:74:9b:d2:cd:57:d2:7c:fb:
ee:6b:d8:70:61:ca:4e:45:4d:b2:67:b0:20:5f:78:9a:a2:43:
7f:81:21:8b:fb:e6:8f:c7:ba:9f:7b:9d:a5:e6:04:5b:e3:2e:
9d:1b:6d:24:85:b2:79:a0:fd:11:73:47:f7:2f:84:e0:24:44:
8c:9e:8e:7f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBIkf1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODhhNDYwMTg5ZWUxNGFiY2VkYTc1OTk3MTk0Y2NiZmUzYzU4YjZiMB4XDTIyMDEw
MTAwNTkwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I3ZWM2MGJhNDA0
ZDFmNjUxMGIxN2NmMWMzMmVlMDQyOWRhMWM1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO3UcFBVbqofY1yyfRQWAQgZ3BKVV1fjWJiFYC96Pr7AlfCc
DL29v30rvHlW6HNZkQS5+RItT/HOMr5ZFpY4PfNPqLogpARqdq+YHMd8sZL8IhNK
xnRO4B97UjZ5eY/36aCCwPkLJvXDLL1UyhbXVv4FhGXxk9UgWPW/ibLdN+Hdden6
7JRR4AwzUGRvNHqBGAAnOvlALZAJHLZcFDnZEb3PwQkJbvSrYiS44S68/qlnUlFN
td7eC80UnfmFO1+WZ5q4GeN7h1kH7HC3CK4SxK9A4+rzMOue5c5nCXRVvp7HDyIP
BwiAhuCnTlaQqVggSOqZ5QH2uZpDmI8qnYK6/OsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTLfsYLpATR9lELF88cMu4EKdocVTAfBgNVHSMEGDAWgBQYikYBie4Uq87a
dZlxlMy/48WLazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dJcEdBWW51Rkt2TzJuV1pjWlRNdi1QRmkycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMzZkMjQ1LWVkMGUtNGM1NS1iNmJhLWJjZWU1YjFiZTBjYi8x
L3kzN0dDNlFFMGZaUkN4ZlBIREx1QkNuYUhGVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MzZkMjQ1LWVkMGUtNGM1NS1iNmJhLWJjZWU1YjFiZTBjYi8xL0dJcEdBWW51Rkt2
TzJuV1pjWlRNdi1QRmkycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0LDDANBgkqhkiG9w0BAQsFAAOC
AQEAAWOn9CzqU5b/Y0siLBA7RuWFBU6+0iwt8QQOdN+B7peVR/g1RaICSFL97l1u
SNQA1w5hw7fwdbCYLaP/z/2OR089VXsbn3EmuXr76g9V3HJuIhYx878+JeHvHi4t
4AmQyxT/IQF/O77OsBz4mK0c8FrsqPaINVhkSWYqmsRhl3wUP1ESsQ24rmhLoo0g
+/HWG0+3pAkh1a1GWvDMK3D6a/gQwdfkDimUjQ0mGUt1UicZUc2Ec8WlLP3VCnwK
S3Sb0s1X0nz77mvYcGHKTkVNsmewIF94mqJDf4Ehi/vmj8e6n3udpeYEW+MunRtt
JIWyeaD9EXNH9y+E4CREjJ6Ofw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:19 2025 by rpki-client