Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/UzW31k4kQsfFAgV1Z1ySuuAZuTQ.roa
File: UzW31k4kQsfFAgV1Z1ySuuAZuTQ.roa (raw, json)
Hash identifier: QLWupR4tNDcVJ6yykGHg0bJCruaKpW6SXRVOCes2ruE=
Subject key identifier: 53:35:B7:D6:4E:24:42:C7:C5:02:05:75:67:5C:92:BA:E0:19:B9:34
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 018368DDC9725D20D577B6BFB50EF9493691
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/UzW31k4kQsfFAgV1Z1ySuuAZuTQ.roa
Signing time: Fri 23 Sep 2022 05:41:48 +0000
ROA not before: Fri 23 Sep 2022 05:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41378
IP address blocks: 45.158.168.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:68:dd:c9:72:5d:20:d5:77:b6:bf:b5:0e:f9:49:36:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Sep 23 05:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5335b7d64e2442c7c5020575675c92bae019b934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f2:e3:e0:1d:b0:cd:3f:47:13:35:e7:09:ce:
49:75:e0:b4:a3:0b:af:48:f3:f9:79:f6:42:10:99:
1d:9a:56:6c:ae:b7:bf:77:4a:2c:99:1e:a3:a1:af:
68:b5:6d:33:df:96:70:54:49:93:90:8e:07:f1:8e:
06:a4:84:8f:0b:9e:58:ef:13:16:06:89:c0:03:72:
5b:de:04:13:30:89:be:cc:64:fd:be:13:2a:96:43:
70:8f:6f:04:2b:51:63:a1:49:62:98:35:a0:e2:04:
75:c9:a3:17:ef:69:17:4a:ac:36:ab:aa:22:8c:d8:
80:c5:c3:e5:fc:1b:05:31:ce:cf:e0:fc:16:e0:50:
19:c5:7c:a1:3e:2c:fb:02:1b:f1:37:56:74:2b:55:
7a:84:b9:fc:9c:41:41:49:93:2c:fa:34:30:77:94:
66:22:8c:47:2e:d2:8f:e7:74:f8:4c:b5:0d:03:ea:
07:73:29:f6:ff:27:db:43:01:e3:9f:45:cc:44:90:
b3:63:75:6f:e5:23:67:1b:99:ea:f6:14:e0:e8:b3:
8a:f8:da:ba:04:14:15:21:8a:93:30:e6:3f:0b:d1:
32:71:fb:df:19:9a:0b:d9:2b:08:02:db:00:e9:4c:
44:f6:d7:3a:4f:a1:11:bb:97:8a:59:67:39:75:0b:
a4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:35:B7:D6:4E:24:42:C7:C5:02:05:75:67:5C:92:BA:E0:19:B9:34
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/UzW31k4kQsfFAgV1Z1ySuuAZuTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.168.0/23
Signature Algorithm: sha256WithRSAEncryption
49:38:4f:5e:75:6d:5b:09:89:a5:a4:70:ef:5c:55:4f:ce:a0:
ab:4c:e4:5e:cd:7c:9b:a1:2f:8c:52:8e:c8:2f:d8:66:b2:1b:
09:45:79:29:50:7c:da:90:c1:08:10:6d:a4:18:da:d2:0f:4a:
9e:43:ab:d8:cf:d2:db:90:4b:6c:1e:74:88:ca:d8:cb:c8:b4:
54:15:7a:02:f1:3f:1b:05:d4:4f:25:66:06:14:5e:ec:f8:54:
11:cd:d7:ed:e9:5b:1a:10:11:3a:51:0e:b8:ee:9a:ba:c4:1d:
44:0a:0a:8c:49:2c:0e:89:a4:23:61:cb:e3:9d:f3:a0:bd:ac:
54:36:e1:42:3f:5b:41:dd:d5:c8:4a:6b:4e:1c:5f:c8:31:8d:
29:d3:c5:b6:09:07:ae:e9:ab:ac:5e:c8:2c:1c:f5:9d:2d:4b:
70:12:08:f5:b5:8a:74:b2:d4:7a:eb:16:b7:78:bc:2f:c1:e6:
94:2e:c8:65:37:e0:cd:ab:1f:24:60:f8:f2:26:18:ef:dc:02:
ea:ff:46:a0:cf:07:b6:5d:c0:45:2a:10:bf:4d:39:d7:2f:44:
0d:e4:88:7a:13:4c:26:1b:f7:05:d9:28:b6:c9:a5:a2:52:cd:
e6:1c:73:a7:8c:e6:c4:f0:97:fd:a7:ee:88:e8:f8:e2:4e:22:
7e:76:42:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNo3clyXSDVd7a/tQ75STaRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZWQ0YTJmYjE4MGRmNWY5OWQ0YmY4Yzc3Y2M5YTA2ZWYy
NjA1OGMwHhcNMjIwOTIzMDU0MTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzM1YjdkNjRlMjQ0MmM3YzUwMjA1NzU2NzVjOTJiYWUwMTliOTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfLj4B2wzT9HEzXnCc5JdeC0owuv
SPP5efZCEJkdmlZsrre/d0osmR6joa9otW0z35ZwVEmTkI4H8Y4GpISPC55Y7xMW
BonAA3Jb3gQTMIm+zGT9vhMqlkNwj28EK1FjoUlimDWg4gR1yaMX72kXSqw2q6oi
jNiAxcPl/BsFMc7P4PwW4FAZxXyhPiz7AhvxN1Z0K1V6hLn8nEFBSZMs+jQwd5Rm
IoxHLtKP53T4TLUNA+oHcyn2/yfbQwHjn0XMRJCzY3Vv5SNnG5nq9hTg6LOK+Nq6
BBQVIYqTMOY/C9EycfvfGZoL2SsIAtsA6UxE9tc6T6ERu5eKWWc5dQukgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFM1t9ZOJELHxQIFdWdckrrgGbk0MB8GA1UdIwQY
MBaAFILtSi+xgN9fmdS/jHfMmgbvJgWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAt
NDUyNmY2MjYzYmNlLzEvVXpXMzFrNGtRc2ZGQWdWMVoxeVN1dUFadVRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wMzAxYmMtYzdmZS00NmU5LWI3YTAtNDUyNmY2MjYzYmNl
LzEvZ3UxS0w3R0EzMS1aMUwtTWQ4eWFCdThtQll3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZ6oMA0G
CSqGSIb3DQEBCwUAA4IBAQBJOE9edW1bCYmlpHDvXFVPzqCrTORezXyboS+MUo7I
L9hmshsJRXkpUHzakMEIEG2kGNrSD0qeQ6vYz9LbkEtsHnSIytjLyLRUFXoC8T8b
BdRPJWYGFF7s+FQRzdft6VsaEBE6UQ647pq6xB1ECgqMSSwOiaQjYcvjnfOgvaxU
NuFCP1tB3dXISmtOHF/IMY0p08W2CQeu6ausXsgsHPWdLUtwEgj1tYp0stR66xa3
eLwvweaULshlN+DNqx8kYPjyJhjv3ALq/0agzwe2XcBFKhC/TTnXL0QN5Ih6E0wm
G/cF2Si2yaWiUs3mHHOnjObE8Jf9p+6I6PjiTiJ+dkIr
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org