Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/Hjc1YDq2jUQ0TCBDicG4sia815w.roa
File: Hjc1YDq2jUQ0TCBDicG4sia815w.roa (raw, json)
Hash identifier: m27eIMImMbRB79FkkMVj27vDBFJTBkFkR2D8bW2mJBI=
Subject key identifier: 1E:37:35:60:3A:B6:8D:44:34:4C:20:43:89:C1:B8:B2:26:BC:D7:9C
Certificate issuer: /CN=12608e7181a303df044911ab4f2d51c2887ef278
Certificate serial: 0187284E4394D2EBB2882C317DBEE1CB8C02
Authority key identifier: 12:60:8E:71:81:A3:03:DF:04:49:11:AB:4F:2D:51:C2:88:7E:F2:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmCOcYGjA98ESRGrTy1Rwoh-8ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/Hjc1YDq2jUQ0TCBDicG4sia815w.roa
Signing time: Tue 28 Mar 2023 13:00:30 +0000
ROA not before: Tue 28 Mar 2023 13:00:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40065
IP address blocks: 45.149.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:4e:43:94:d2:eb:b2:88:2c:31:7d:be:e1:cb:8c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12608e7181a303df044911ab4f2d51c2887ef278
Validity
Not Before: Mar 28 13:00:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e3735603ab68d44344c204389c1b8b226bcd79c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:91:02:f9:59:79:01:89:a6:2b:27:7f:cc:db:
46:65:12:0a:e2:4f:a4:f9:3e:38:f4:ff:52:81:a2:
0a:03:55:8f:0e:03:a6:98:fd:19:cd:11:f2:db:fa:
2d:a2:a5:1f:4d:6c:3d:40:66:63:3f:6f:09:27:98:
32:1d:44:ed:20:74:64:de:63:36:9f:2f:fb:7f:92:
82:58:8b:95:d8:c6:27:73:b2:b2:29:7a:73:a6:c1:
e1:0b:c9:2b:da:3c:b4:2b:80:3f:c8:0a:27:4b:37:
9c:bc:b3:9a:4f:1f:08:75:0d:84:fa:31:c0:5b:5f:
8b:cd:bd:15:4a:f2:7c:b7:18:c4:1b:3d:3a:66:5b:
19:4a:e9:83:21:1a:96:fd:3f:1a:18:fb:61:a6:99:
6b:5f:d9:92:fb:7b:0a:97:f6:89:fe:3d:4f:bf:8b:
59:45:a2:67:c7:b6:a0:d7:e7:fd:95:0d:93:8d:4f:
a2:33:32:f7:4f:cc:98:b2:e2:e3:c1:ca:88:3d:ca:
14:e4:46:15:4c:89:d7:19:1f:98:63:e2:4f:89:07:
e6:47:62:27:4d:99:f1:cc:87:38:e4:21:1d:9b:8c:
0a:7a:91:dd:d1:bc:52:d9:7d:4c:6e:0d:6a:8f:73:
ed:3a:fe:23:c5:51:bc:39:47:7d:c6:60:fd:bb:9a:
ae:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:37:35:60:3A:B6:8D:44:34:4C:20:43:89:C1:B8:B2:26:BC:D7:9C
X509v3 Authority Key Identifier:
keyid:12:60:8E:71:81:A3:03:DF:04:49:11:AB:4F:2D:51:C2:88:7E:F2:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmCOcYGjA98ESRGrTy1Rwoh-8ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/Hjc1YDq2jUQ0TCBDicG4sia815w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/EmCOcYGjA98ESRGrTy1Rwoh-8ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.16.0/22
Signature Algorithm: sha256WithRSAEncryption
23:99:a2:a7:13:83:92:83:e7:b5:cd:48:9b:67:60:54:c8:d4:
8f:8f:6f:ea:91:0d:e2:c3:d1:aa:29:08:07:47:18:a0:94:7e:
b4:48:b6:af:1a:06:c7:bf:b1:7b:61:54:63:11:6a:14:4f:73:
fb:8d:1d:81:1d:b0:01:2d:77:85:ad:43:29:4c:c3:76:f7:d0:
5a:57:41:2a:3e:aa:48:75:a0:74:9d:90:98:3c:8c:22:ac:b7:
42:7e:fc:95:0c:81:c8:b4:b0:98:82:51:e1:4b:df:c9:f4:3f:
24:6c:12:cc:6f:ca:2a:e5:47:e0:cb:9f:9c:83:9e:9d:91:a5:
24:41:52:f1:b2:d1:40:62:62:f5:78:46:f9:ef:4f:e3:4e:42:
5b:b2:2b:aa:7f:74:33:9e:42:32:77:ad:8d:cf:a6:5e:1b:d5:
76:5e:94:f0:05:65:9b:b8:64:4e:1a:71:31:49:8a:36:1b:61:
5b:fd:be:7c:78:63:d6:46:2c:54:6f:9d:5c:1d:b6:30:e2:77:
6d:d1:da:5d:14:c1:fe:a7:08:33:2c:c6:a3:6c:4a:c3:0f:da:
61:01:23:4e:45:c4:6c:e3:a1:09:74:73:cf:87:b9:9f:43:ae:
01:d7:46:48:14:f9:bf:65:45:64:60:a9:76:94:04:73:f4:ee:
d1:c2:55:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcoTkOU0uuyiCwxfb7hy4wCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyNjA4ZTcxODFhMzAzZGYwNDQ5MTFhYjRmMmQ1MWMyODg3
ZWYyNzgwHhcNMjMwMzI4MTMwMDMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTM3MzU2MDNhYjY4ZDQ0MzQ0YzIwNDM4OWMxYjhiMjI2YmNkNzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpEC+Vl5AYmmKyd/zNtGZRIK4k+k
+T449P9SgaIKA1WPDgOmmP0ZzRHy2/otoqUfTWw9QGZjP28JJ5gyHUTtIHRk3mM2
ny/7f5KCWIuV2MYnc7KyKXpzpsHhC8kr2jy0K4A/yAonSzecvLOaTx8IdQ2E+jHA
W1+Lzb0VSvJ8txjEGz06ZlsZSumDIRqW/T8aGPthpplrX9mS+3sKl/aJ/j1Pv4tZ
RaJnx7ag1+f9lQ2TjU+iMzL3T8yYsuLjwcqIPcoU5EYVTInXGR+YY+JPiQfmR2In
TZnxzIc45CEdm4wKepHd0bxS2X1Mbg1qj3PtOv4jxVG8OUd9xmD9u5qu0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB43NWA6to1ENEwgQ4nBuLImvNecMB8GA1UdIwQY
MBaAFBJgjnGBowPfBEkRq08tUcKIfvJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRW1DT2NZR2pBOThFU1JHclR5MVJ3b2gtOG5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS80YTIyYmItMjg2Mi00MjFjLWIwNzEt
ZGE5OTI1MWIxMzI4LzEvSGpjMVlEcTJqVVEwVENCRGljRzRzaWE4MTV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS80YTIyYmItMjg2Mi00MjFjLWIwNzEtZGE5OTI1MWIxMzI4
LzEvRW1DT2NZR2pBOThFU1JHclR5MVJ3b2gtOG5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZUQMA0G
CSqGSIb3DQEBCwUAA4IBAQAjmaKnE4OSg+e1zUibZ2BUyNSPj2/qkQ3iw9GqKQgH
RxiglH60SLavGgbHv7F7YVRjEWoUT3P7jR2BHbABLXeFrUMpTMN299BaV0EqPqpI
daB0nZCYPIwirLdCfvyVDIHItLCYglHhS9/J9D8kbBLMb8oq5Ufgy5+cg56dkaUk
QVLxstFAYmL1eEb570/jTkJbsiuqf3QznkIyd62Nz6ZeG9V2XpTwBWWbuGROGnEx
SYo2G2Fb/b58eGPWRixUb51cHbYw4ndt0dpdFMH+pwgzLMajbErDD9phASNORcRs
46EJdHPPh7mfQ64B10ZIFPm/ZUVkYKl2lARz9O7RwlVw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:00 2024 by rpki-client on console-fra.rpki-client.org