Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/hbXHAC8o1faNMTsrZh3lgTVSLks.roa
File: hbXHAC8o1faNMTsrZh3lgTVSLks.roa (raw, json)
Hash identifier: GSAUf5/GoVSdZs6+cA7mycnWSHNRDUBwxblTqRmh434=
Subject key identifier: 85:B5:C7:00:2F:28:D5:F6:8D:31:3B:2B:66:1D:E5:81:35:52:2E:4B
Certificate issuer: /CN=a1a01f76a42be8717befdce1676215988a4dfc73
Certificate serial: 018573BAC0DF1451DC3A3A3282188641C5DF
Authority key identifier: A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/hbXHAC8o1faNMTsrZh3lgTVSLks.roa
Signing time: Mon 02 Jan 2023 18:24:56 +0000
ROA not before: Mon 02 Jan 2023 18:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137427
IP address blocks: 45.142.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:c0:df:14:51:dc:3a:3a:32:82:18:86:41:c5:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a01f76a42be8717befdce1676215988a4dfc73
Validity
Not Before: Jan 2 18:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85b5c7002f28d5f68d313b2b661de58135522e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:8e:7c:f3:f6:28:a5:07:fd:b8:ff:96:f1:
84:a9:af:ff:e5:16:a2:8b:b9:68:94:1a:4e:c3:f2:
70:6d:9e:2b:65:dc:17:a3:e3:e0:dd:c6:27:08:fe:
f5:09:4c:5e:e7:f3:3c:5a:a1:48:2b:32:1a:d4:de:
66:db:33:0f:5e:4e:c0:cb:ba:bd:42:79:ca:9b:ed:
df:30:93:05:8d:d7:75:42:e3:76:af:74:08:45:f9:
d9:b0:90:dc:bd:3b:47:d3:21:b3:d7:41:0b:2f:78:
8d:90:01:35:44:8a:9f:b7:64:23:0d:a0:52:81:60:
4d:da:02:cb:b7:9b:f6:36:e5:a6:20:dc:0e:29:c5:
cc:8d:25:f3:bf:b0:db:72:e8:76:75:64:fd:fb:bc:
fa:6c:f5:35:99:2c:fb:ae:9c:3c:34:1a:d6:a2:2c:
8b:2c:40:d8:2c:40:72:52:01:d6:a8:83:a8:17:e2:
62:bc:68:85:9e:a5:38:0f:2f:80:f2:97:17:46:e6:
15:a5:a3:0a:80:48:89:20:3a:a4:74:50:38:d3:e9:
f6:ba:6c:1e:cb:0c:d8:45:22:73:9a:72:ba:49:3f:
7b:94:18:84:ab:1b:ad:6f:a3:f9:82:f0:a7:5f:67:
12:e5:54:0f:2a:38:01:0b:89:e5:fe:51:e4:8c:03:
ce:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B5:C7:00:2F:28:D5:F6:8D:31:3B:2B:66:1D:E5:81:35:52:2E:4B
X509v3 Authority Key Identifier:
keyid:A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/hbXHAC8o1faNMTsrZh3lgTVSLks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/oaAfdqQr6HF779zhZ2IVmIpN_HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f7:7b:b1:d0:19:61:f8:09:49:19:3c:dc:7b:54:f4:be:e6:
ff:b2:d5:ca:db:58:1e:85:c6:0f:ca:cb:06:0e:19:e5:93:ec:
55:76:a0:36:e4:7c:f8:6e:5a:ed:e3:92:84:9e:fe:bc:1c:ed:
7e:51:16:bf:fe:80:69:08:61:37:0d:50:d1:43:f4:fa:b2:08:
b7:0f:df:41:40:c4:80:29:78:f9:1d:cb:43:38:53:61:ac:77:
19:b8:23:13:95:cf:cc:2a:52:0b:80:86:02:9b:fe:af:dc:52:
86:7b:d2:d3:1b:6d:f0:90:87:70:b1:65:d2:1f:c6:5e:5d:38:
c3:ba:06:60:4d:a1:cc:3f:d6:00:83:79:cd:05:f1:63:92:51:
12:69:82:e8:6a:2f:19:28:53:8c:94:80:ca:a8:1a:c8:5d:86:
58:5b:32:1e:f8:7f:dd:2a:2c:01:1a:c7:3b:61:47:72:68:af:
05:68:64:ab:6a:dd:b4:fa:5b:f1:32:1b:8a:65:f0:dc:dc:d9:
0e:69:00:52:94:2f:d3:d1:31:4c:41:90:31:f7:8c:98:b5:3f:
72:77:8d:53:3c:a0:ea:9c:2a:08:6e:e6:0e:69:b5:01:44:76:
d4:d3:1a:e6:2a:85:38:70:b5:4f:88:ca:ab:86:5a:52:47:80:
58:43:2e:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzusDfFFHcOjoyghiGQcXfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYTAxZjc2YTQyYmU4NzE3YmVmZGNlMTY3NjIxNTk4OGE0
ZGZjNzMwHhcNMjMwMTAyMTgyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWI1YzcwMDJmMjhkNWY2OGQzMTNiMmI2NjFkZTU4MTM1NTIyZTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnaOfPP2KKUH/bj/lvGEqa//5Rai
i7lolBpOw/JwbZ4rZdwXo+Pg3cYnCP71CUxe5/M8WqFIKzIa1N5m2zMPXk7Ay7q9
QnnKm+3fMJMFjdd1QuN2r3QIRfnZsJDcvTtH0yGz10ELL3iNkAE1RIqft2QjDaBS
gWBN2gLLt5v2NuWmINwOKcXMjSXzv7Dbcuh2dWT9+7z6bPU1mSz7rpw8NBrWoiyL
LEDYLEByUgHWqIOoF+JivGiFnqU4Dy+A8pcXRuYVpaMKgEiJIDqkdFA40+n2umwe
ywzYRSJzmnK6ST97lBiEqxutb6P5gvCnX2cS5VQPKjgBC4nl/lHkjAPO2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIW1xwAvKNX2jTE7K2Yd5YE1Ui5LMB8GA1UdIwQY
MBaAFKGgH3akK+hxe+/c4WdiFZiKTfxzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2FBZmRxUXI2SEY3Nzl6aFoySVZtSXBOX0hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9lZGE1NGEtNzcyYy00OWRiLWEwMTIt
NjEwMGNkMTVlMjYwLzEvaGJYSEFDOG8xZmFOTVRzclpoM2xnVFZTTGtzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9lZGE1NGEtNzcyYy00OWRiLWEwMTItNjEwMGNkMTVlMjYw
LzEvb2FBZmRxUXI2SEY3Nzl6aFoySVZtSXBOX0hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY6ZMA0G
CSqGSIb3DQEBCwUAA4IBAQB+93ux0Blh+AlJGTzce1T0vub/stXK21gehcYPyssG
Dhnlk+xVdqA25Hz4blrt45KEnv68HO1+URa//oBpCGE3DVDRQ/T6sgi3D99BQMSA
KXj5HctDOFNhrHcZuCMTlc/MKlILgIYCm/6v3FKGe9LTG23wkIdwsWXSH8ZeXTjD
ugZgTaHMP9YAg3nNBfFjklESaYLoai8ZKFOMlIDKqBrIXYZYWzIe+H/dKiwBGsc7
YUdyaK8FaGSrat20+lvxMhuKZfDc3NkOaQBSlC/T0TFMQZAx94yYtT9yd41TPKDq
nCoIbuYOabUBRHbU0xrmKoU4cLVPiMqrhlpSR4BYQy4M
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:38 2024 by rpki-client on console-fra.rpki-client.org