Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/1-NlVNzHmR7ezLCixvBjlAmuMUgU.roa
File: 1-NlVNzHmR7ezLCixvBjlAmuMUgU.roa (raw, json)
Hash identifier: dhBCcVXJmsc08tALnPt7J0Ke2pw+0DSH84PNhPMZN7M=
Subject key identifier: F8:D9:55:37:31:E6:47:B7:B3:2C:28:B1:BC:18:E5:02:6B:8C:52:05
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0194266BA193FCFCCF139D08D18492CCEDDB
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/1-NlVNzHmR7ezLCixvBjlAmuMUgU.roa
Signing time: Thu 02 Jan 2025 09:49:35 +0000
ROA not before: Thu 02 Jan 2025 09:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13737
IP address blocks: 45.141.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:a1:93:fc:fc:cf:13:9d:08:d1:84:92:cc:ed:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jan 2 09:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f8d9553731e647b7b32c28b1bc18e5026b8c5205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:70:9f:fc:a0:53:e3:0c:1a:3d:95:a6:0a:4c:
28:b8:a5:72:2d:11:22:a1:3c:a7:41:4a:5c:ef:6d:
b2:99:36:3d:34:7c:3f:6f:19:31:7b:5a:05:dc:b1:
eb:b6:3a:43:ff:89:07:40:46:76:51:ca:cc:b7:11:
9c:24:ec:40:bf:b9:a6:eb:5c:a4:ca:ef:06:df:9e:
7a:49:77:24:e4:68:88:e0:6d:66:03:4f:fe:7f:d0:
90:40:4e:e0:e2:28:3e:2e:4b:02:74:88:7f:09:c1:
51:09:cc:f1:64:98:ca:82:ca:25:cb:b9:17:04:5d:
6a:e0:41:f6:67:88:45:08:fb:d5:57:63:81:d7:b0:
88:b4:8f:44:ef:bc:ba:64:d7:8d:3c:e0:4c:71:40:
1d:39:3e:d6:b2:15:a4:02:54:c6:a3:db:a4:32:f6:
09:5f:cc:40:8e:2a:0f:27:7d:48:19:9e:32:e6:21:
d0:d5:f3:9b:9b:6c:ea:b7:16:28:da:d9:81:b3:54:
bf:4c:d5:11:1d:17:b7:55:ce:35:64:db:8b:ca:f5:
ad:5b:01:87:89:7a:fb:4e:6d:0c:07:bb:87:34:04:
a9:39:ff:74:c2:4d:4b:b7:0a:9c:2c:a2:fb:4a:3f:
f9:da:09:67:b2:83:1f:ec:d2:7a:10:ea:d6:93:9c:
be:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D9:55:37:31:E6:47:B7:B3:2C:28:B1:BC:18:E5:02:6B:8C:52:05
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/1-NlVNzHmR7ezLCixvBjlAmuMUgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.13.0/24
Signature Algorithm: sha256WithRSAEncryption
96:6c:ec:b7:63:82:ed:2e:ad:be:98:4d:69:f3:7f:64:88:fa:
14:e3:fb:5b:e1:75:d5:cd:22:d5:7c:13:b2:61:e0:53:c0:c7:
2b:1d:6b:13:ef:de:fb:d5:b9:f2:93:47:3a:ce:2d:d2:63:a8:
92:6e:d1:4f:ff:b3:0a:e3:b3:71:9c:8e:f5:3c:26:8f:b4:1d:
78:7f:c6:00:17:53:3d:b0:97:aa:5a:0e:88:46:e4:ff:83:00:
71:d6:c9:76:d4:1d:f3:45:2d:9f:16:a9:3c:d1:58:b5:6d:3c:
d0:ac:57:2d:2a:4b:27:9b:c2:6a:bf:51:c8:81:f2:7f:81:72:
a5:5f:65:01:55:d1:17:8b:39:88:24:fd:48:95:4d:0d:30:b7:
90:09:1e:8e:bc:a3:67:61:ab:b6:f5:0f:7b:24:7a:62:f9:7b:
d7:26:cd:50:99:6f:0e:5e:e0:13:b3:78:2f:ba:f9:37:f5:b1:
e4:31:09:06:64:25:7e:80:70:5a:8e:af:51:97:e0:51:ac:19:
bf:08:8e:18:00:14:6f:69:ce:cf:3e:80:40:fa:b4:f8:b7:f8:
62:a7:57:99:82:68:60:fb:0b:8f:a6:de:f5:ed:ea:0a:cc:67:
f2:1f:26:2e:86:bd:05:54:12:31:80:e2:67:a8:7e:07:b6:c9:
e7:3e:fd:29
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQma6GT/PzPE50I0YSSzO3bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2
OWExZmQwHhcNMjUwMTAyMDk0OTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGQ5NTUzNzMxZTY0N2I3YjMyYzI4YjFiYzE4ZTUwMjZiOGM1MjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3HCf/KBT4wwaPZWmCkwouKVyLREi
oTynQUpc722ymTY9NHw/bxkxe1oF3LHrtjpD/4kHQEZ2UcrMtxGcJOxAv7mm61yk
yu8G3556SXck5GiI4G1mA0/+f9CQQE7g4ig+LksCdIh/CcFRCczxZJjKgsoly7kX
BF1q4EH2Z4hFCPvVV2OB17CItI9E77y6ZNeNPOBMcUAdOT7WshWkAlTGo9ukMvYJ
X8xAjioPJ31IGZ4y5iHQ1fObm2zqtxYo2tmBs1S/TNURHRe3Vc41ZNuLyvWtWwGH
iXr7Tm0MB7uHNASpOf90wk1LtwqcLKL7Sj/52glnsoMf7NJ6EOrWk5y+1QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPjZVTcx5ke3sywosbwY5QJrjFIFMB8GA1UdIwQY
MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et
OTk0ODA2ZjA4MWYwLzEvMS1ObFZOekhtUjdlekxDaXh2QmpsQW11TVVnVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMzgvM2YyNDliLWU4MzYtNDFiNC05YTNhLTk5NDgwNmYwODFm
MC8xLzRzSzROUHZKR3ZEc2F4MDBfV1FGVFNKcG9mMC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2NDTAN
BgkqhkiG9w0BAQsFAAOCAQEAlmzst2OC7S6tvphNafN/ZIj6FOP7W+F11c0i1XwT
smHgU8DHKx1rE+/e+9W58pNHOs4t0mOokm7RT/+zCuOzcZyO9Twmj7QdeH/GABdT
PbCXqloOiEbk/4MAcdbJdtQd80UtnxapPNFYtW080KxXLSpLJ5vCar9RyIHyf4Fy
pV9lAVXRF4s5iCT9SJVNDTC3kAkejryjZ2GrtvUPeyR6Yvl71ybNUJlvDl7gE7N4
L7r5N/Wx5DEJBmQlfoBwWo6vUZfgUawZvwiOGAAUb2nOzz6AQPq0+Lf4YqdXmYJo
YPsLj6be9e3qCsxn8h8mLoa9BVQSMYDiZ6h+B7bJ5z79KQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:03 2025 by rpki-client