Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/rlvR4lgAAPe6NxanZUVpezIwE3A.roa
File: rlvR4lgAAPe6NxanZUVpezIwE3A.roa (raw, json)
Hash identifier: z8dG8w6G/0kvxVmZ+4RC/Z1OH/kukWiL1TxfJ/ZMp5Y=
Subject key identifier: AE:5B:D1:E2:58:00:00:F7:BA:37:16:A7:65:45:69:7B:32:30:13:70
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 019422FB6033821A37EB222F7D28B56587B4
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/rlvR4lgAAPe6NxanZUVpezIwE3A.roa
Signing time: Wed 01 Jan 2025 17:48:07 +0000
ROA not before: Wed 01 Jan 2025 17:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47720
IP address blocks: 45.140.144.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:60:33:82:1a:37:eb:22:2f:7d:28:b5:65:87:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 17:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ae5bd1e2580000f7ba3716a76545697b32301370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fe:ae:71:a3:2c:7d:c4:ed:a8:3d:a3:a1:4f:
8c:c1:20:22:e7:b6:11:05:38:71:92:16:6f:8d:3b:
d6:9e:a7:8b:aa:c8:c2:db:0b:25:98:c5:9e:c2:9a:
e4:93:2b:f2:25:99:9f:a9:8f:de:e2:6a:41:d1:d3:
cc:7b:a9:f6:d9:c9:6d:4b:5e:d4:7b:0a:6e:f7:80:
6b:dc:54:1f:34:17:ba:90:8f:9c:52:f6:24:40:c4:
5a:73:3a:fa:7e:87:77:4c:28:0d:e9:81:f1:88:3d:
3c:2c:92:32:90:21:25:65:59:6d:17:c2:e1:45:91:
85:c3:eb:d7:b0:13:72:be:a6:df:8c:ae:05:50:0e:
41:71:16:97:b4:e8:5e:22:bf:76:7b:b4:89:18:5a:
74:eb:45:f9:7f:95:8b:16:8c:70:1f:b2:ca:2e:bb:
c9:75:f3:9d:5a:e5:f4:44:a2:35:0a:4d:3f:48:04:
09:97:5a:48:98:89:d1:d8:45:27:2c:00:4c:d9:d6:
03:08:60:c9:e4:b7:3c:15:d7:d0:fc:fc:8d:62:be:
f9:fc:dc:c3:15:66:f4:81:93:cd:23:ba:cf:55:1c:
f2:0c:ba:cc:a2:b0:d9:36:a1:6b:9b:f5:1b:ff:30:
d3:d6:d5:65:20:08:03:91:49:dc:7f:e1:71:af:99:
9b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:5B:D1:E2:58:00:00:F7:BA:37:16:A7:65:45:69:7B:32:30:13:70
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/rlvR4lgAAPe6NxanZUVpezIwE3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.144.0/24
Signature Algorithm: sha256WithRSAEncryption
49:36:46:b2:96:39:10:53:03:71:46:ac:60:42:11:a9:c1:44:
64:b8:a7:b7:d4:d4:67:c4:c3:a9:ab:bf:c7:b9:02:e6:9f:f3:
36:b2:69:0f:d6:de:43:b3:45:a8:3d:d4:57:6d:3e:53:38:de:
f2:93:38:66:ec:5c:07:3f:78:38:a6:68:8f:27:94:42:16:89:
4d:c0:e9:bb:e5:3d:b8:9e:e1:2e:02:3d:ef:4f:5c:94:29:1b:
9f:f3:b8:81:53:f0:23:99:18:f8:59:a5:30:e9:ee:a0:c3:6d:
e9:4f:a0:f3:b7:8a:12:79:0a:e8:23:3e:ac:42:42:42:43:76:
2d:6b:b4:fd:ad:fc:96:06:75:46:ab:fb:ff:69:ff:d4:19:1e:
91:ca:2d:2a:53:7f:e2:ce:48:b6:6d:43:13:50:e0:45:9d:9a:
46:98:5b:73:f0:72:65:24:d9:82:30:7d:a7:d3:a0:c6:b7:b8:
01:a3:30:d9:3d:56:8a:e2:e3:87:97:10:06:52:35:91:25:43:
71:1f:41:4a:39:98:63:f5:a6:03:a8:f5:ce:8e:47:2d:3f:be:
d0:aa:5a:17:ec:f7:96:22:7f:ab:ee:08:7a:d4:bf:ff:ef:06:
a8:93:c5:2f:c4:fb:d7:8d:ff:1b:e6:4b:26:30:5e:8b:11:60:
53:67:6f:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+2Azgho36yIvfSi1ZYe0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjUwMTAxMTc0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTViZDFlMjU4MDAwMGY3YmEzNzE2YTc2NTQ1Njk3YjMyMzAxMzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwv6ucaMsfcTtqD2joU+MwSAi57YR
BThxkhZvjTvWnqeLqsjC2wslmMWewprkkyvyJZmfqY/e4mpB0dPMe6n22cltS17U
ewpu94Br3FQfNBe6kI+cUvYkQMRaczr6fod3TCgN6YHxiD08LJIykCElZVltF8Lh
RZGFw+vXsBNyvqbfjK4FUA5BcRaXtOheIr92e7SJGFp060X5f5WLFoxwH7LKLrvJ
dfOdWuX0RKI1Ck0/SAQJl1pImInR2EUnLABM2dYDCGDJ5Lc8FdfQ/PyNYr75/NzD
FWb0gZPNI7rPVRzyDLrMorDZNqFrm/Ub/zDT1tVlIAgDkUncf+Fxr5mbWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK5b0eJYAAD3ujcWp2VFaXsyMBNwMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvcmx2UjRsZ0FBUGU2TnhhblpVVnBlekl3RTNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYyQMA0G
CSqGSIb3DQEBCwUAA4IBAQBJNkayljkQUwNxRqxgQhGpwURkuKe31NRnxMOpq7/H
uQLmn/M2smkP1t5Ds0WoPdRXbT5TON7ykzhm7FwHP3g4pmiPJ5RCFolNwOm75T24
nuEuAj3vT1yUKRuf87iBU/AjmRj4WaUw6e6gw23pT6Dzt4oSeQroIz6sQkJCQ3Yt
a7T9rfyWBnVGq/v/af/UGR6Ryi0qU3/izki2bUMTUOBFnZpGmFtz8HJlJNmCMH2n
06DGt7gBozDZPVaK4uOHlxAGUjWRJUNxH0FKOZhj9aYDqPXOjkctP77QqloX7PeW
In+r7gh61L//7waok8UvxPvXjf8b5ksmMF6LEWBTZ2+3
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:05 2025 by rpki-client