Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kE1ZXfILaVfwjhdF-WgnmXKnQyU.roa
File: kE1ZXfILaVfwjhdF-WgnmXKnQyU.roa (raw, json)
Hash identifier: kVKELeA73rwWV3VeMv5u/hNAjS6SWp4GRCTQagVFUhk=
Subject key identifier: 90:4D:59:5D:F2:0B:69:57:F0:8E:17:45:F9:68:27:99:72:A7:43:25
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06E1D2DE
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kE1ZXfILaVfwjhdF-WgnmXKnQyU.roa
Signing time: Mon 11 Apr 2022 13:13:55 +0000
ROA not before: Mon 11 Apr 2022 13:13:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 45.151.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115462878 (0x6e1d2de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Apr 11 13:13:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=904d595df20b6957f08e1745f968279972a74325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:45:8e:6c:50:9d:be:02:30:f8:8c:08:f9:d2:
d3:a5:2d:87:37:38:80:9a:ec:ec:87:4b:a8:00:21:
af:c2:54:7c:e7:32:5f:36:b5:65:bf:31:b9:39:ea:
c9:9c:4c:04:17:95:ac:e2:56:a0:e3:77:5f:25:8c:
10:44:89:51:00:af:8f:cc:83:22:a1:d4:43:9e:47:
c7:c4:f2:66:6b:64:47:64:07:03:4a:04:a6:02:f9:
37:65:72:57:63:cb:9b:01:dd:46:96:eb:43:c5:50:
98:a7:d4:f8:94:7c:6f:cf:8a:56:d4:71:73:b6:a8:
9c:27:05:c9:1a:03:f1:56:a1:7a:03:ea:7b:14:13:
68:ef:93:9a:c1:b3:7c:6d:b1:b9:75:bf:d6:0b:7e:
ef:0d:00:51:c7:d6:eb:c5:e3:e8:3a:76:65:c9:91:
e4:1a:f0:9d:86:8a:96:f7:df:e8:e6:df:8f:89:cb:
9d:75:2b:a4:6a:99:e2:34:11:18:f1:a2:a4:be:03:
a8:e5:49:37:2c:37:b6:3b:f1:1a:e4:3c:3e:f3:9e:
09:e2:42:fe:db:cf:94:c1:e9:ff:9a:3c:eb:07:37:
2e:47:0d:bf:5c:6f:e0:96:75:89:26:dc:84:6a:4d:
98:c8:da:b7:f3:ae:39:b8:9b:53:98:27:99:62:b6:
a6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4D:59:5D:F2:0B:69:57:F0:8E:17:45:F9:68:27:99:72:A7:43:25
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kE1ZXfILaVfwjhdF-WgnmXKnQyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.97.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:cb:8a:8c:61:8d:b4:34:7d:2e:99:29:a7:56:94:7d:9f:93:
03:8d:62:e2:5b:13:d3:a4:3c:2f:de:34:46:a8:1f:a1:29:5b:
4f:a9:3a:f7:d2:c7:6c:dd:29:17:b6:c8:db:ae:18:1b:bd:24:
85:58:20:8c:08:63:9f:16:02:91:df:79:ab:f1:ff:10:e6:56:
f9:a7:b9:4d:94:f2:aa:ed:58:41:f3:df:8e:b9:42:7a:7f:5d:
aa:bb:09:8f:79:e0:ff:c2:87:4c:4f:4f:f4:ba:25:d0:ed:4c:
36:f3:67:8c:8a:40:57:eb:3c:96:cf:65:13:27:45:cc:93:9b:
41:9b:1f:f8:db:d7:4e:b2:0c:00:bf:3c:09:53:0a:bd:ee:f0:
10:8e:4a:30:94:86:97:68:33:c7:88:74:44:ab:e3:94:62:43:
ee:6f:95:34:48:50:23:3e:ab:93:39:99:d4:e8:87:f9:7c:b3:
ac:1f:f2:c6:14:50:9f:a9:bd:bd:40:20:e0:55:92:96:c5:82:
e2:41:57:fc:ea:10:98:93:b8:e4:db:2f:5c:03:4f:95:6b:c8:
66:67:99:c9:fd:86:2d:93:0a:d0:c6:de:2c:d5:0e:98:ec:7c:
19:dd:d5:89:d9:0e:ec:81:d5:aa:40:77:6c:58:7b:45:d4:fc:
e0:cc:b6:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBuHS3jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OWFjMGFjYmZkYjdhMjc0ZWYzNmMxNmY1ODYwYWRhMmEyNDcwNjk3MB4XDTIyMDQx
MTEzMTM1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTA0ZDU5NWRmMjBi
Njk1N2YwOGUxNzQ1Zjk2ODI3OTk3MmE3NDMyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJFjmxQnb4CMPiMCPnS06Uthzc4gJrs7IdLqAAhr8JUfOcy
Xza1Zb8xuTnqyZxMBBeVrOJWoON3XyWMEESJUQCvj8yDIqHUQ55Hx8TyZmtkR2QH
A0oEpgL5N2VyV2PLmwHdRpbrQ8VQmKfU+JR8b8+KVtRxc7aonCcFyRoD8VahegPq
exQTaO+TmsGzfG2xuXW/1gt+7w0AUcfW68Xj6Dp2ZcmR5BrwnYaKlvff6Obfj4nL
nXUrpGqZ4jQRGPGipL4DqOVJNyw3tjvxGuQ8PvOeCeJC/tvPlMHp/5o86wc3LkcN
v1xv4JZ1iSbchGpNmMjat/OuObibU5gnmWK2puUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQTVld8gtpV/COF0X5aCeZcqdDJTAfBgNVHSMEGDAWgBSJrArL/beidO82
wW9YYK2iokcGlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lhd0t5XzIzb25Udk5zRnZXR0N0b3FKSEJwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvOTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8x
L2tFMVpYZklMYVZmd2poZEYtV2dubVhLblF5VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
OTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8xL2lhd0t5XzIzb25U
dk5zRnZXR0N0b3FKSEJwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2XYTANBgkqhkiG9w0BAQsFAAOC
AQEALsuKjGGNtDR9Lpkpp1aUfZ+TA41i4lsT06Q8L940RqgfoSlbT6k699LHbN0p
F7bI264YG70khVggjAhjnxYCkd95q/H/EOZW+ae5TZTyqu1YQfPfjrlCen9dqrsJ
j3ng/8KHTE9P9Lol0O1MNvNnjIpAV+s8ls9lEydFzJObQZsf+NvXTrIMAL88CVMK
ve7wEI5KMJSGl2gzx4h0RKvjlGJD7m+VNEhQIz6rkzmZ1OiH+XyzrB/yxhRQn6m9
vUAg4FWSlsWC4kFX/OoQmJO45NsvXANPlWvIZmeZyf2GLZMK0MbeLNUOmOx8Gd3V
idkO7IHVqkB3bFh7RdT84My2Pw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:24 2025 by rpki-client