Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/dgLCcBn7-I1Qw6uYU88-tcjl5N8.roa
File: dgLCcBn7-I1Qw6uYU88-tcjl5N8.roa (raw, json)
Hash identifier: sr0uR/bjkEWgO2GdmXKzk8+KkPDY/+0xesVBckvCXIY=
Subject key identifier: 76:02:C2:70:19:FB:F8:8D:50:C3:AB:98:53:CF:3E:B5:C8:E5:E4:DF
Certificate issuer: /CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Certificate serial: 018CC3489C5251ED27024800997120FAA183
Authority key identifier: 02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/dgLCcBn7-I1Qw6uYU88-tcjl5N8.roa
Signing time: Mon 01 Jan 2024 04:29:24 +0000
ROA not before: Mon 01 Jan 2024 04:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4785
IP address blocks: 45.12.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9c:52:51:ed:27:02:48:00:99:71:20:fa:a1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Validity
Not Before: Jan 1 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7602c27019fbf88d50c3ab9853cf3eb5c8e5e4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e2:b5:14:fb:32:2d:90:1a:44:8c:b3:15:a4:
a8:71:24:29:81:8e:c6:86:2e:26:a8:55:4f:84:87:
23:03:43:25:32:34:14:36:23:94:52:49:90:83:ae:
ef:b2:09:26:14:79:71:4b:ad:c3:2a:3a:68:ba:9b:
a5:b5:a5:b3:7b:ef:e0:9c:b5:ce:20:ca:36:00:bb:
48:d1:86:b4:18:79:b1:d4:1b:b4:8a:89:ab:67:86:
a3:1b:58:73:44:f5:61:ca:0f:81:b9:7f:da:24:44:
87:a9:4e:59:34:6d:f4:b2:5b:23:c8:18:3f:05:86:
4d:98:99:dc:56:e4:54:a1:fa:f0:db:52:87:31:dd:
cc:ee:76:40:97:c2:8a:29:7a:2c:fd:60:64:d6:fd:
71:bc:5a:c7:90:83:4d:e4:e5:ea:d4:1b:44:bd:c2:
cd:95:1c:64:5b:65:f4:cf:e2:28:27:31:6a:51:cb:
bc:0a:93:34:da:05:ee:8a:22:c1:3d:54:70:9b:d0:
b8:84:41:60:30:77:46:59:8f:7b:35:64:ef:f4:de:
f3:7b:2c:d6:df:72:8d:88:c0:46:40:57:6b:11:cf:
e1:dc:65:15:68:96:53:ef:35:85:4f:d8:0d:28:65:
cb:7e:01:a6:11:16:e0:50:51:93:c0:94:39:3d:9b:
f7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:02:C2:70:19:FB:F8:8D:50:C3:AB:98:53:CF:3E:B5:C8:E5:E4:DF
X509v3 Authority Key Identifier:
keyid:02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/dgLCcBn7-I1Qw6uYU88-tcjl5N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/AhKgfOeTpfBBYCe_SquL0c6vD84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.89.0/24
Signature Algorithm: sha256WithRSAEncryption
75:57:08:29:74:77:26:01:31:b0:bd:db:38:28:f6:f3:e2:61:
2e:86:8b:2e:bb:a1:90:3b:36:e9:31:59:04:31:9b:1b:12:27:
05:64:c5:27:9f:d1:65:38:be:43:63:c4:6e:a8:63:6c:a4:8a:
33:6e:87:ab:ef:05:65:87:43:15:5d:83:20:d1:80:56:68:48:
83:1a:25:5d:fa:71:49:66:c5:bc:08:55:46:71:ed:78:68:7d:
28:ea:25:ea:a9:c6:e4:81:d1:8b:7a:eb:73:ec:9d:94:95:cb:
9f:61:3b:b6:99:2f:e6:75:b5:53:5d:83:e1:5b:df:a5:14:f5:
89:3f:a0:d4:e5:fb:d3:2c:cd:d9:e1:9b:b6:25:cc:89:37:7f:
6a:60:af:09:99:a9:a6:a2:8a:2f:83:d1:fd:e9:43:65:0e:c6:
05:08:35:d0:3a:ab:87:80:20:f4:8c:37:1b:4f:8e:1c:b6:e8:
88:c6:1a:16:df:fb:d4:28:8c:a8:d2:e2:12:f1:fd:54:04:e1:
0d:bd:62:bb:a1:99:46:87:3c:9c:ab:3f:34:69:8e:38:e2:86:
58:7e:c1:4b:78:94:c6:72:64:05:b7:b1:a8:e2:38:12:e6:12:
94:8e:8a:fc:a5:0d:39:fc:4c:5e:0c:63:45:e0:78:ba:d5:b5:
bf:05:53:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSJxSUe0nAkgAmXEg+qGDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyMTJhMDdjZTc5M2E1ZjA0MTYwMjdiZjRhYWI4YmQxY2Vh
ZjBmY2UwHhcNMjQwMTAxMDQyOTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjAyYzI3MDE5ZmJmODhkNTBjM2FiOTg1M2NmM2ViNWM4ZTVlNGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuK1FPsyLZAaRIyzFaSocSQpgY7G
hi4mqFVPhIcjA0MlMjQUNiOUUkmQg67vsgkmFHlxS63DKjpoupultaWze+/gnLXO
IMo2ALtI0Ya0GHmx1Bu0iomrZ4ajG1hzRPVhyg+BuX/aJESHqU5ZNG30slsjyBg/
BYZNmJncVuRUofrw21KHMd3M7nZAl8KKKXos/WBk1v1xvFrHkINN5OXq1BtEvcLN
lRxkW2X0z+IoJzFqUcu8CpM02gXuiiLBPVRwm9C4hEFgMHdGWY97NWTv9N7zeyzW
33KNiMBGQFdrEc/h3GUVaJZT7zWFT9gNKGXLfgGmERbgUFGTwJQ5PZv3OQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHYCwnAZ+/iNUMOrmFPPPrXI5eTfMB8GA1UdIwQY
MBaAFAISoHznk6XwQWAnv0qri9HOrw/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWhLZ2ZPZVRwZkJCWUNlX1NxdUwwYzZ2RDg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9lNzc1ZWItN2Q4YS00ODM1LTk0NTYt
YmQ3YmY5NDlkOWMyLzEvZGdMQ2NCbjctSTFRdzZ1WVU4OC10Y2psNU44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9lNzc1ZWItN2Q4YS00ODM1LTk0NTYtYmQ3YmY5NDlkOWMy
LzEvQWhLZ2ZPZVRwZkJCWUNlX1NxdUwwYzZ2RDg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQxZMA0G
CSqGSIb3DQEBCwUAA4IBAQB1VwgpdHcmATGwvds4KPbz4mEuhosuu6GQOzbpMVkE
MZsbEicFZMUnn9FlOL5DY8RuqGNspIozboer7wVlh0MVXYMg0YBWaEiDGiVd+nFJ
ZsW8CFVGce14aH0o6iXqqcbkgdGLeutz7J2UlcufYTu2mS/mdbVTXYPhW9+lFPWJ
P6DU5fvTLM3Z4Zu2JcyJN39qYK8Jmammooovg9H96UNlDsYFCDXQOquHgCD0jDcb
T44ctuiIxhoW3/vUKIyo0uIS8f1UBOENvWK7oZlGhzycqz80aY444oZYfsFLeJTG
cmQFt7Go4jgS5hKUjor8pQ05/ExeDGNF4Hi61bW/BVMM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:16 2024 by rpki-client on console-ams.rpki-client.org