Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/E4whuYUVfLBi9mgIkQQzPyZVX9s.roa
File: E4whuYUVfLBi9mgIkQQzPyZVX9s.roa (raw, json)
Hash identifier: OJUoQ3Y6+LAMOinyPonqHvR/Ir4YclCHH5HMeJJaTzk=
Subject key identifier: 13:8C:21:B9:85:15:7C:B0:62:F6:68:08:91:04:33:3F:26:55:5F:DB
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 018CC801F3B8B82527322D96D570A00AB671
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/E4whuYUVfLBi9mgIkQQzPyZVX9s.roa
Signing time: Tue 02 Jan 2024 02:30:20 +0000
ROA not before: Tue 02 Jan 2024 02:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42881
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:f3:b8:b8:25:27:32:2d:96:d5:70:a0:0a:b6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 2 02:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=138c21b985157cb062f668089104333f26555fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:41:f3:5b:a7:72:33:26:9f:f6:96:2e:84:8a:
bc:ee:42:22:fe:9f:e6:a1:41:3d:25:14:77:93:d2:
1c:0b:a7:7f:13:65:c5:18:5c:08:f2:0d:23:18:a2:
d6:fb:c7:08:31:ca:80:e8:79:ad:b3:e2:f7:eb:17:
16:8d:1e:eb:31:ab:8a:0a:e8:8d:eb:0a:54:47:fe:
a0:7a:42:4a:04:3a:03:df:34:98:50:a6:e8:f2:86:
a3:48:84:e7:e8:20:41:c0:13:ca:23:e1:89:9a:b2:
6c:3b:21:56:eb:98:ab:74:05:c2:5c:42:f0:d6:9a:
1e:08:a5:40:d7:8b:48:5d:1e:cb:02:99:8a:9b:cf:
e4:08:56:52:8a:c7:92:1c:f9:a8:36:87:c9:4e:46:
2a:f4:53:b3:fc:f7:6a:69:86:4e:16:e0:95:67:29:
eb:c8:bd:72:20:91:5b:c6:a4:2b:3d:f0:de:f6:b0:
e3:51:9d:2f:99:a0:cc:e2:17:f1:fe:03:2e:71:ef:
03:f5:4c:82:24:fe:ea:f1:27:6c:00:4b:d5:81:a7:
11:0b:29:76:ec:89:e1:6d:e9:be:26:7e:a8:f9:68:
19:24:a6:bf:15:18:a7:93:d5:f1:e4:66:df:2a:07:
1a:aa:71:23:e0:a2:6d:1b:c5:91:13:42:05:0c:2f:
34:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8C:21:B9:85:15:7C:B0:62:F6:68:08:91:04:33:3F:26:55:5F:DB
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/E4whuYUVfLBi9mgIkQQzPyZVX9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:17:9d:63:2e:c8:0e:e7:c8:8d:ac:41:65:7d:b9:b9:be:7b:
d5:18:04:bc:86:36:0d:48:d6:d4:27:14:5d:dd:a8:fd:c6:2e:
62:b0:96:27:b8:93:6c:7f:84:ad:d9:d7:c3:d0:c6:26:51:b7:
ee:ac:92:0b:1a:e0:dd:26:46:ba:77:e3:35:9e:3c:88:5f:98:
9b:6a:5d:0b:b0:84:a6:ce:4a:48:d2:c2:09:85:92:56:f2:d5:
e4:0f:e1:1b:ea:a1:2b:98:4c:df:a7:73:58:be:10:8a:7a:cf:
28:76:ec:d6:66:8e:fa:53:ae:cf:92:e5:0b:72:fb:32:4e:da:
f3:3a:c5:ae:5a:3f:89:ee:19:ba:2b:66:9e:95:19:49:fc:f0:
5f:1a:a2:56:23:0b:c7:35:2b:04:c4:64:f2:7e:eb:79:8e:c9:
60:b6:ea:b6:c5:65:84:8f:97:99:29:c6:ec:a7:84:4f:ea:b6:
e7:70:81:27:d9:ca:4c:19:aa:fd:5a:bc:9e:0d:3d:95:5b:68:
72:8d:f4:1a:a1:44:c9:1b:b9:f4:26:a0:65:5a:e3:4e:48:46:
fe:b0:6e:74:07:e3:b9:c9:75:d7:54:50:60:4c:18:0a:3e:21:
6c:fe:1c:8d:f8:1d:82:42:d8:6b:9d:e8:02:8f:9c:28:82:d9:
ad:d4:ff:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAfO4uCUnMi2W1XCgCrZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYmEyNjE4YWI0YjYwNDJlZTI1YzQ2NzllMDc3NWU0MzA2
ZDcxYzYwHhcNMjQwMTAyMDIzMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzhjMjFiOTg1MTU3Y2IwNjJmNjY4MDg5MTA0MzMzZjI2NTU1ZmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEHzW6dyMyaf9pYuhIq87kIi/p/m
oUE9JRR3k9IcC6d/E2XFGFwI8g0jGKLW+8cIMcqA6Hmts+L36xcWjR7rMauKCuiN
6wpUR/6gekJKBDoD3zSYUKbo8oajSITn6CBBwBPKI+GJmrJsOyFW65irdAXCXELw
1poeCKVA14tIXR7LApmKm8/kCFZSiseSHPmoNofJTkYq9FOz/PdqaYZOFuCVZynr
yL1yIJFbxqQrPfDe9rDjUZ0vmaDM4hfx/gMuce8D9UyCJP7q8SdsAEvVgacRCyl2
7Inhbem+Jn6o+WgZJKa/FRink9Xx5GbfKgcaqnEj4KJtG8WRE0IFDC80dQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOMIbmFFXywYvZoCJEEMz8mVV/bMB8GA1UdIwQY
MBaAFNK6JhirS2BC7iXEZ54HdeQwbXHGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHJvbUdLdExZRUx1SmNSbm5nZDE1REJ0Y2NZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9hNjc5OTYtNTRmMS00ZjFlLWE3NjAt
OGUwZDUyOTNhYWM4LzEvRTR3aHVZVVZmTEJpOW1nSWtRUXpQeVpWWDlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9hNjc5OTYtNTRmMS00ZjFlLWE3NjAtOGUwZDUyOTNhYWM4
LzEvMHJvbUdLdExZRUx1SmNSbm5nZDE1REJ0Y2NZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZGwMA0G
CSqGSIb3DQEBCwUAA4IBAQBMF51jLsgO58iNrEFlfbm5vnvVGAS8hjYNSNbUJxRd
3aj9xi5isJYnuJNsf4St2dfD0MYmUbfurJILGuDdJka6d+M1njyIX5ibal0LsISm
zkpI0sIJhZJW8tXkD+Eb6qErmEzfp3NYvhCKes8oduzWZo76U67PkuULcvsyTtrz
OsWuWj+J7hm6K2aelRlJ/PBfGqJWIwvHNSsExGTyfut5jslgtuq2xWWEj5eZKcbs
p4RP6rbncIEn2cpMGar9WryeDT2VW2hyjfQaoUTJG7n0JqBlWuNOSEb+sG50B+O5
yXXXVFBgTBgKPiFs/hyN+B2CQthrnegCj5wogtmt1P8+
-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:33 2024 by rpki-client on console-ams.rpki-client.org