Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/1229e4-940b-4628-b41f-80f14c671d6e/1/cENPH5t_yr-mUNY3QLpM6QQ9H-k.roa
File: cENPH5t_yr-mUNY3QLpM6QQ9H-k.roa (raw, json)
Hash identifier: hmV4dgX853MHcN5ALkmx35XQtwQkZ+YuHiL3v/XmIpU=
Subject key identifier: 70:43:4F:1F:9B:7F:CA:BF:A6:50:D6:37:40:BA:4C:E9:04:3D:1F:E9
Certificate issuer: /CN=525c79479aeb01d1a60257dc07904b9f5b9a6791
Certificate serial: A356E4
Authority key identifier: 52:5C:79:47:9A:EB:01:D1:A6:02:57:DC:07:90:4B:9F:5B:9A:67:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ulx5R5rrAdGmAlfcB5BLn1uaZ5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/1229e4-940b-4628-b41f-80f14c671d6e/1/cENPH5t_yr-mUNY3QLpM6QQ9H-k.roa
Signing time: Sat 01 Jan 2022 00:55:17 +0000
ROA not before: Sat 01 Jan 2022 00:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208414
IP address blocks: 45.138.104.0/22 maxlen: 22
45.138.105.0/24 maxlen: 24
45.138.107.0/24 maxlen: 24
45.138.106.0/24 maxlen: 24
2a0e:acc0::/48 maxlen: 48
2a0e:acc0:ac01::/48 maxlen: 48
2a0e:acc0::/29 maxlen: 29
2a0e:acc0:ac02::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10704612 (0xa356e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525c79479aeb01d1a60257dc07904b9f5b9a6791
Validity
Not Before: Jan 1 00:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70434f1f9b7fcabfa650d63740ba4ce9043d1fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:5a:ba:07:83:07:0a:fe:07:52:09:63:df:
8a:80:e3:dc:72:c3:b1:70:58:f5:a8:de:4e:52:90:
cd:fb:5f:f4:0d:6c:6f:c6:88:04:4c:20:be:eb:36:
e4:63:4d:60:03:8a:4c:46:6d:12:13:11:c4:70:64:
e1:a4:6d:f6:34:c8:10:09:1f:c0:0e:e7:a7:49:0a:
59:6c:49:80:eb:fa:66:16:c8:6d:0f:14:ad:ed:36:
21:30:76:48:0b:4d:d7:cc:6f:58:96:91:9f:d5:ef:
a9:0c:01:bb:43:a5:57:34:ca:3a:bb:cb:04:62:75:
bc:a7:c9:28:99:83:90:04:18:42:04:18:21:0f:ab:
b7:0e:b9:96:9e:8a:ce:cd:6b:95:3d:d2:ee:4d:cf:
24:34:51:da:56:c0:16:40:f2:aa:55:82:3c:bb:2c:
86:4a:66:d9:93:4b:c0:51:41:18:9a:82:2b:4b:fe:
f9:c2:fc:20:3d:27:dc:a1:fa:51:52:62:1f:69:0a:
1d:b0:27:ac:0e:c9:93:1e:14:90:5a:53:42:e0:55:
30:37:66:18:63:88:2f:e2:53:83:1c:f5:29:f6:10:
f3:b3:91:8a:f9:3a:39:bd:ee:80:61:e9:d6:31:92:
f7:48:9c:65:a8:5c:b6:1d:5d:d6:28:e1:b8:00:97:
48:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:43:4F:1F:9B:7F:CA:BF:A6:50:D6:37:40:BA:4C:E9:04:3D:1F:E9
X509v3 Authority Key Identifier:
keyid:52:5C:79:47:9A:EB:01:D1:A6:02:57:DC:07:90:4B:9F:5B:9A:67:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ulx5R5rrAdGmAlfcB5BLn1uaZ5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/1229e4-940b-4628-b41f-80f14c671d6e/1/cENPH5t_yr-mUNY3QLpM6QQ9H-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/1229e4-940b-4628-b41f-80f14c671d6e/1/Ulx5R5rrAdGmAlfcB5BLn1uaZ5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.104.0/22
IPv6:
2a0e:acc0::/29
Signature Algorithm: sha256WithRSAEncryption
16:48:4e:9f:de:6e:fd:76:ce:9e:6c:cc:47:ec:fd:0f:67:c7:
f9:7e:0f:22:21:28:1c:68:b5:d1:ca:82:2a:3c:b7:c8:24:10:
12:b9:59:a0:4a:1c:67:64:17:5d:ee:04:2f:ac:48:c4:ea:83:
97:e8:c4:53:ff:bc:f8:4a:1b:3d:a1:36:08:3a:5c:1b:67:d7:
2d:a1:c3:7d:0e:52:b0:f7:9e:c5:b4:cd:a6:ec:20:7e:19:d9:
35:8d:e0:42:70:ad:8f:34:97:01:94:ac:90:e6:0f:69:6a:f0:
3c:4a:e6:81:5a:8c:84:10:7a:cd:9a:5f:c4:18:92:dd:fb:92:
60:f0:67:52:86:ab:32:87:08:64:29:23:94:eb:f0:66:b3:c3:
34:67:9b:c9:f9:e4:2d:d8:db:9a:62:f8:37:8a:c9:86:a5:ef:
26:b7:24:05:51:f4:ec:69:a0:76:d7:c3:f5:6d:5a:58:4d:98:
a2:74:04:ab:69:b8:af:9f:ac:6c:fb:29:a5:52:b2:d6:76:ac:
0c:90:de:44:fe:c2:02:ac:06:3b:b5:81:c5:3f:fd:54:dc:f1:
5b:e3:93:58:6f:c4:2d:d9:9b:64:ad:e8:d1:1d:8c:34:4a:50:
ef:df:e4:d0:16:38:46:1a:ce:73:75:a2:df:0e:e4:2b:07:e7:
63:cd:d8:3e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAKNW5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjVjNzk0NzlhZWIwMWQxYTYwMjU3ZGMwNzkwNGI5ZjViOWE2NzkxMB4XDTIyMDEw
MTAwNTUxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzA0MzRmMWY5Yjdm
Y2FiZmE2NTBkNjM3NDBiYTRjZTkwNDNkMWZlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL+tWroHgwcK/gdSCWPfioDj3HLDsXBY9ajeTlKQzftf9A1s
b8aIBEwgvus25GNNYAOKTEZtEhMRxHBk4aRt9jTIEAkfwA7np0kKWWxJgOv6ZhbI
bQ8Ure02ITB2SAtN18xvWJaRn9XvqQwBu0OlVzTKOrvLBGJ1vKfJKJmDkAQYQgQY
IQ+rtw65lp6Kzs1rlT3S7k3PJDRR2lbAFkDyqlWCPLsshkpm2ZNLwFFBGJqCK0v+
+cL8ID0n3KH6UVJiH2kKHbAnrA7Jkx4UkFpTQuBVMDdmGGOIL+JTgxz1KfYQ87OR
ivk6Ob3ugGHp1jGS90icZahcth1d1ijhuACXSNMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRwQ08fm3/Kv6ZQ1jdAukzpBD0f6TAfBgNVHSMEGDAWgBRSXHlHmusB0aYC
V9wHkEufW5pnkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VseDVSNXJyQWRHbUFsZmNCNUJMbjF1YVo1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvMTIyOWU0LTk0MGItNDYyOC1iNDFmLTgwZjE0YzY3MWQ2ZS8x
L2NFTlBINXRfeXItbVVOWTNRTHBNNlFROUgtay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
MTIyOWU0LTk0MGItNDYyOC1iNDFmLTgwZjE0YzY3MWQ2ZS8xL1VseDVSNXJyQWRH
bUFsZmNCNUJMbjF1YVo1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi2KaDANBAIAAjAHAwUDKg6swDAN
BgkqhkiG9w0BAQsFAAOCAQEAFkhOn95u/XbOnmzMR+z9D2fH+X4PIiEoHGi10cqC
Kjy3yCQQErlZoEocZ2QXXe4EL6xIxOqDl+jEU/+8+EobPaE2CDpcG2fXLaHDfQ5S
sPeexbTNpuwgfhnZNY3gQnCtjzSXAZSskOYPaWrwPErmgVqMhBB6zZpfxBiS3fuS
YPBnUoarMocIZCkjlOvwZrPDNGebyfnkLdjbmmL4N4rJhqXvJrckBVH07GmgdtfD
9W1aWE2YonQEq2m4r5+sbPsppVKy1nasDJDeRP7CAqwGO7WBxT/9VNzxW+OTWG/E
LdmbZK3o0R2MNEpQ79/k0BY4RhrOc3Wi3w7kKwfnY83YPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:59 2024 by rpki-client on console-fra.rpki-client.org