Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/55936f-b503-4bf4-a1a7-9843159a9b84/1/J2L2bHku52bGynY7mp72CKuyWdc.roa
File: J2L2bHku52bGynY7mp72CKuyWdc.roa (raw, json)
Hash identifier: jqOgg3I7mvxZoFYKPO7CmEUOUf0oh95V45Jyta2DqlE=
Subject key identifier: 27:62:F6:6C:79:2E:E7:66:C6:CA:76:3B:9A:9E:F6:08:AB:B2:59:D7
Certificate issuer: /CN=3fdbc9160e92d967a91b42c4192c8a810f246d59
Certificate serial: 0477B45B
Authority key identifier: 3F:DB:C9:16:0E:92:D9:67:A9:1B:42:C4:19:2C:8A:81:0F:24:6D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9vJFg6S2WepG0LEGSyKgQ8kbVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/55936f-b503-4bf4-a1a7-9843159a9b84/1/J2L2bHku52bGynY7mp72CKuyWdc.roa
Signing time: Sat 01 Jan 2022 03:52:16 +0000
ROA not before: Sat 01 Jan 2022 03:52:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48518
IP address blocks: 45.129.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74953819 (0x477b45b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fdbc9160e92d967a91b42c4192c8a810f246d59
Validity
Not Before: Jan 1 03:52:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2762f66c792ee766c6ca763b9a9ef608abb259d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3e:3f:8e:0f:64:01:ce:71:55:d9:34:2c:ee:
5e:29:fa:65:db:27:54:87:e8:d0:9e:47:c9:b5:00:
78:8c:51:f4:82:fd:49:78:81:8d:da:4d:26:b9:ed:
65:9b:22:ac:b3:fe:fb:6a:33:10:51:cd:98:ee:f0:
3f:f8:c8:22:b4:e9:05:31:13:4b:0a:8a:2c:4c:65:
7c:01:52:6f:a6:41:cd:f0:e6:55:46:01:cf:a5:28:
3c:e5:76:ed:6d:8c:7a:03:ee:01:ff:e9:71:aa:28:
8f:57:2f:f8:34:0d:ba:c3:93:e7:a2:56:db:d0:ea:
29:9d:6b:30:c6:f7:4c:e0:37:5e:14:58:5f:49:b9:
b5:af:26:47:1f:95:73:d8:a7:bd:85:08:95:59:83:
bd:42:21:f8:fe:f7:6a:77:f4:5c:c4:69:d3:c2:d1:
c2:61:80:16:66:1d:ea:22:54:91:03:fb:fd:c3:81:
d3:2c:4c:e4:f7:ea:67:d3:e8:4d:5a:62:f1:17:75:
80:43:c0:a7:4e:57:0a:46:ea:17:03:27:e4:4a:f2:
c6:79:50:48:5b:f6:41:f0:87:cb:e9:9d:b9:68:56:
b0:df:b6:fa:90:c2:ef:02:b6:30:e9:71:e1:39:26:
72:ad:e7:64:db:6c:4c:5f:81:2c:a1:f0:9b:d1:e1:
10:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:62:F6:6C:79:2E:E7:66:C6:CA:76:3B:9A:9E:F6:08:AB:B2:59:D7
X509v3 Authority Key Identifier:
keyid:3F:DB:C9:16:0E:92:D9:67:A9:1B:42:C4:19:2C:8A:81:0F:24:6D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9vJFg6S2WepG0LEGSyKgQ8kbVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/55936f-b503-4bf4-a1a7-9843159a9b84/1/J2L2bHku52bGynY7mp72CKuyWdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/55936f-b503-4bf4-a1a7-9843159a9b84/1/P9vJFg6S2WepG0LEGSyKgQ8kbVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.108.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:42:cb:2c:65:15:1a:4c:0e:df:30:96:57:66:58:65:d4:fe:
c8:5a:13:d8:92:d9:14:4f:e4:20:a0:5d:6c:1c:28:5a:f1:ba:
1c:d8:7f:f8:ba:b7:fe:aa:e3:5f:25:49:4c:67:f5:ad:0b:60:
2e:44:b0:d7:a2:af:f0:32:66:7f:2e:ea:b4:77:38:ff:db:7c:
03:22:2f:2a:ce:c3:d2:b6:16:07:57:70:0b:af:ae:ed:4f:68:
d0:5e:f3:f5:70:33:c5:af:81:fa:45:3b:89:45:ac:fe:9f:cf:
01:87:01:68:db:b0:21:c0:39:36:af:79:2c:66:b4:e3:f5:4b:
16:e2:5b:32:0e:22:d4:a4:df:3a:4a:59:6a:3f:0c:e1:df:e2:
46:48:30:01:7f:b8:fe:04:cc:4f:1e:aa:1d:c6:52:4d:98:68:
7d:c4:35:a2:73:ed:c0:a1:d7:da:db:1a:14:3c:68:21:c5:6e:
cf:cd:01:44:bf:cc:e6:3e:da:cc:4d:9a:de:46:6d:aa:5e:b3:
3f:0d:41:10:90:7b:fa:dc:1d:80:00:dd:dc:21:ca:ef:34:ad:
6b:5a:35:25:44:ff:f0:df:c0:ca:87:41:e1:fc:99:42:0e:d1:
91:7d:3e:27:39:d5:42:86:41:5f:c5:f9:6e:b9:49:92:93:d1:
68:62:f6:c5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBHe0WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZmRiYzkxNjBlOTJkOTY3YTkxYjQyYzQxOTJjOGE4MTBmMjQ2ZDU5MB4XDTIyMDEw
MTAzNTIxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc2MmY2NmM3OTJl
ZTc2NmM2Y2E3NjNiOWE5ZWY2MDhhYmIyNTlkNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANM+P44PZAHOcVXZNCzuXin6ZdsnVIfo0J5HybUAeIxR9IL9
SXiBjdpNJrntZZsirLP++2ozEFHNmO7wP/jIIrTpBTETSwqKLExlfAFSb6ZBzfDm
VUYBz6UoPOV27W2MegPuAf/pcaooj1cv+DQNusOT56JW29DqKZ1rMMb3TOA3XhRY
X0m5ta8mRx+Vc9invYUIlVmDvUIh+P73anf0XMRp08LRwmGAFmYd6iJUkQP7/cOB
0yxM5PfqZ9PoTVpi8Rd1gEPAp05XCkbqFwMn5EryxnlQSFv2QfCHy+mduWhWsN+2
+pDC7wK2MOlx4Tkmcq3nZNtsTF+BLKHwm9HhEFUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnYvZseS7nZsbKdjuanvYIq7JZ1zAfBgNVHSMEGDAWgBQ/28kWDpLZZ6kb
QsQZLIqBDyRtWTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1A5dkpGZzZTMldlcEcwTEVHU3lLZ1E4a2JWay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvNTU5MzZmLWI1MDMtNGJmNC1hMWE3LTk4NDMxNTlhOWI4NC8x
L0oyTDJiSGt1NTJiR3luWTdtcDcyQ0t1eVdkYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
NTU5MzZmLWI1MDMtNGJmNC1hMWE3LTk4NDMxNTlhOWI4NC8xL1A5dkpGZzZTMldl
cEcwTEVHU3lLZ1E4a2JWay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2BbDANBgkqhkiG9w0BAQsFAAOC
AQEAOkLLLGUVGkwO3zCWV2ZYZdT+yFoT2JLZFE/kIKBdbBwoWvG6HNh/+Lq3/qrj
XyVJTGf1rQtgLkSw16Kv8DJmfy7qtHc4/9t8AyIvKs7D0rYWB1dwC6+u7U9o0F7z
9XAzxa+B+kU7iUWs/p/PAYcBaNuwIcA5Nq95LGa04/VLFuJbMg4i1KTfOkpZaj8M
4d/iRkgwAX+4/gTMTx6qHcZSTZhofcQ1onPtwKHX2tsaFDxoIcVuz80BRL/M5j7a
zE2a3kZtql6zPw1BEJB7+twdgADd3CHK7zSta1o1JUT/8N/AyodB4fyZQg7RkX0+
JznVQoZBX8X5brlJkpPRaGL2xQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:58 2024 by rpki-client on console-fra.rpki-client.org