Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YqhkqbCaCGJayn0D2r9qHK_lBJs.roa
File: YqhkqbCaCGJayn0D2r9qHK_lBJs.roa (raw, json)
Hash identifier: yuO+1bq25HLmigeqNjNNq2Wva1UsZsd5b6XcGcyWLYU=
Subject key identifier: 62:A8:64:A9:B0:9A:08:62:5A:CA:7D:03:DA:BF:6A:1C:AF:E5:04:9B
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 045B3A66
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YqhkqbCaCGJayn0D2r9qHK_lBJs.roa
Signing time: Wed 27 Apr 2022 03:05:05 +0000
ROA not before: Wed 27 Apr 2022 03:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 45.152.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73087590 (0x45b3a66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Apr 27 03:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62a864a9b09a08625aca7d03dabf6a1cafe5049b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ac:14:0d:ae:55:02:ee:42:45:7e:2f:e9:45:
3e:89:15:8f:a2:7b:f6:89:73:98:4d:27:e0:63:7a:
9e:1d:d5:ce:fe:de:10:f5:c3:dc:81:a9:56:81:5d:
b8:a3:5a:0a:ee:bb:36:95:28:a7:b2:8b:a0:20:d8:
26:35:83:36:41:00:f7:a4:46:fb:ca:4e:63:21:f8:
f7:be:76:1e:98:0f:0e:e7:27:86:bd:26:cc:73:ef:
55:a5:d2:ac:92:49:8b:25:17:9e:40:23:da:06:3e:
e7:b5:1c:c4:81:95:5c:e7:70:c8:ad:33:33:99:00:
c1:50:1c:98:e0:42:3f:69:1a:3c:ac:92:5a:aa:c1:
87:92:29:0e:35:0b:5f:99:cf:cb:99:5a:05:eb:f8:
f4:69:c8:cb:4e:5b:56:aa:8e:19:da:a9:6e:0b:d1:
41:a0:0c:18:9f:3d:6b:5a:8a:c5:2a:37:c4:28:83:
c0:cc:da:27:9c:5f:5c:40:6d:51:b0:a8:64:7a:fa:
f4:0c:0f:af:4d:52:e8:07:96:03:04:7a:2b:33:21:
e2:7d:77:2a:8c:cf:32:17:44:8c:25:83:f9:dd:7a:
f6:dd:95:ef:83:e6:35:42:47:2a:c8:25:05:1b:16:
5b:67:58:bc:4c:f4:b7:6b:b1:4e:1e:55:96:6c:31:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A8:64:A9:B0:9A:08:62:5A:CA:7D:03:DA:BF:6A:1C:AF:E5:04:9B
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/YqhkqbCaCGJayn0D2r9qHK_lBJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.242.0/23
Signature Algorithm: sha256WithRSAEncryption
19:7e:cc:1f:22:cd:49:bd:3b:55:33:e4:33:bd:18:e4:82:ae:
98:c3:cb:16:01:3c:40:18:96:4e:14:73:04:41:ca:44:9b:f0:
89:7c:c7:b5:e1:bf:6c:35:4f:e2:f8:7b:e8:29:d0:88:96:ca:
0f:ed:d0:3b:bf:a2:88:d1:0b:5a:8c:0a:e6:c3:86:f2:50:1e:
b7:7d:51:9f:a2:ce:70:fd:88:f5:02:51:74:ad:75:d8:fe:e2:
35:38:76:5b:4a:7f:4d:b6:63:aa:05:19:fa:e8:b4:71:d4:dd:
0f:0b:48:ba:3e:39:01:86:ab:80:55:2f:67:5c:b9:75:94:8c:
ac:50:52:61:ac:2a:44:fc:14:4b:78:a2:da:9e:32:59:44:86:
7d:1a:4b:d2:f7:4d:89:8a:c0:21:2d:a8:2b:aa:1c:aa:9e:35:
0f:ad:e0:8b:0c:48:5e:14:82:a9:80:ba:ec:cb:41:e5:2a:9f:
99:cc:29:70:c6:66:a8:3d:23:e9:8c:de:b0:07:fa:ef:82:78:
f8:82:9a:29:c1:2e:d2:e1:e7:c1:2e:b5:8f:0f:b3:d1:36:f8:
8d:ba:ea:7b:79:85:de:b8:54:ea:9d:75:96:ca:4f:62:ff:9e:
fc:e0:6e:15:f1:ac:62:db:f4:88:fb:6d:c4:4a:66:7a:4d:4e:
d7:70:3a:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBFs6ZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MmVkNGEyZmIxODBkZjVmOTlkNGJmOGM3N2NjOWEwNmVmMjYwNThjMB4XDTIyMDQy
NzAzMDUwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjJhODY0YTliMDlh
MDg2MjVhY2E3ZDAzZGFiZjZhMWNhZmU1MDQ5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKasFA2uVQLuQkV+L+lFPokVj6J79olzmE0n4GN6nh3Vzv7e
EPXD3IGpVoFduKNaCu67NpUop7KLoCDYJjWDNkEA96RG+8pOYyH49752HpgPDucn
hr0mzHPvVaXSrJJJiyUXnkAj2gY+57UcxIGVXOdwyK0zM5kAwVAcmOBCP2kaPKyS
WqrBh5IpDjULX5nPy5laBev49GnIy05bVqqOGdqpbgvRQaAMGJ89a1qKxSo3xCiD
wMzaJ5xfXEBtUbCoZHr69AwPr01S6AeWAwR6KzMh4n13KozPMhdEjCWD+d169t2V
74PmNUJHKsglBRsWW2dYvEz0t2uxTh5VlmwxUi0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRiqGSpsJoIYlrKfQPav2ocr+UEmzAfBgNVHSMEGDAWgBSC7UovsYDfX5nU
v4x3zJoG7yYFjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d1MUtMN0dBMzEtWjFMLU1kOHlhQnU4bUJZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvMDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8x
L1lxaGtxYkNhQ0dKYXluMEQycjlxSEtfbEJKcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
MDMwMWJjLWM3ZmUtNDZlOS1iN2EwLTQ1MjZmNjI2M2JjZS8xL2d1MUtMN0dBMzEt
WjFMLU1kOHlhQnU4bUJZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2Y8jANBgkqhkiG9w0BAQsFAAOC
AQEAGX7MHyLNSb07VTPkM70Y5IKumMPLFgE8QBiWThRzBEHKRJvwiXzHteG/bDVP
4vh76CnQiJbKD+3QO7+iiNELWowK5sOG8lAet31Rn6LOcP2I9QJRdK112P7iNTh2
W0p/TbZjqgUZ+ui0cdTdDwtIuj45AYargFUvZ1y5dZSMrFBSYawqRPwUS3ii2p4y
WUSGfRpL0vdNiYrAIS2oK6ocqp41D63giwxIXhSCqYC67MtB5SqfmcwpcMZmqD0j
6YzesAf674J4+IKaKcEu0uHnwS61jw+z0Tb4jbrqe3mF3rhU6p11lspPYv+e/OBu
FfGsYtv0iPttxEpmek1O13A6vg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org