Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/tXB0VkONyJEu-wEcvbP2DUsmw1Q.roa
File: tXB0VkONyJEu-wEcvbP2DUsmw1Q.roa (raw, json)
Hash identifier: AP9SJ+NAltDEfARpQOJg6lp0r9/dFxfxrJaRe75bIJg=
Subject key identifier: B5:70:74:56:43:8D:C8:91:2E:FB:01:1C:BD:B3:F6:0D:4B:26:C3:54
Certificate issuer: /CN=424e8bd525b199edc1b7392da20225f74896da9d
Certificate serial: B265E7
Authority key identifier: 42:4E:8B:D5:25:B1:99:ED:C1:B7:39:2D:A2:02:25:F7:48:96:DA:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk6L1SWxme3BtzktogIl90iW2p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/tXB0VkONyJEu-wEcvbP2DUsmw1Q.roa
Signing time: Sat 01 Jan 2022 00:58:51 +0000
ROA not before: Sat 01 Jan 2022 00:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.9.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11691495 (0xb265e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424e8bd525b199edc1b7392da20225f74896da9d
Validity
Not Before: Jan 1 00:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5707456438dc8912efb011cbdb3f60d4b26c354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ed:0e:06:74:27:ae:81:5f:fd:d9:57:32:07:
81:34:5d:e6:5d:32:34:2f:fc:e4:e9:84:20:04:d8:
cc:6d:c6:a0:a2:1c:b8:0f:42:4f:ca:e7:aa:9a:2c:
13:df:2f:60:b6:93:c4:95:31:06:b1:dd:7c:2e:42:
58:73:23:24:bc:ef:7b:ee:c0:c2:d0:6e:aa:03:d6:
f1:23:58:13:3d:49:45:70:67:77:65:37:27:35:2c:
ac:82:c5:5e:73:f4:6a:c1:7b:d9:e0:86:db:af:a3:
49:81:e9:59:9a:a2:e6:83:29:0f:b8:15:c0:96:6d:
77:d6:d3:32:c0:68:7f:ae:54:c9:e3:96:60:a3:df:
66:7c:7e:b7:08:50:76:83:4a:d0:7d:b4:40:bb:ca:
61:ed:bc:93:a0:2b:fa:7a:7e:c4:af:b5:a9:e9:bb:
62:c8:85:2d:d7:09:bf:3a:4f:b8:94:bb:ed:ea:b6:
dc:6a:b3:1e:98:1f:12:bf:b8:6a:00:02:fb:97:47:
22:43:96:48:24:a8:79:9e:3c:16:fe:03:37:80:8d:
f3:c3:22:30:88:7b:c1:10:21:7f:7e:37:1b:1a:9b:
a0:00:66:6d:e5:fe:71:4d:30:24:e1:63:35:7d:3c:
a9:ff:dc:80:d1:07:1d:89:9d:00:c4:70:bc:ff:34:
54:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:70:74:56:43:8D:C8:91:2E:FB:01:1C:BD:B3:F6:0D:4B:26:C3:54
X509v3 Authority Key Identifier:
keyid:42:4E:8B:D5:25:B1:99:ED:C1:B7:39:2D:A2:02:25:F7:48:96:DA:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk6L1SWxme3BtzktogIl90iW2p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/tXB0VkONyJEu-wEcvbP2DUsmw1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/Qk6L1SWxme3BtzktogIl90iW2p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:54:37:70:12:d4:0b:da:33:d1:0f:4b:75:ae:34:01:3a:46:
c2:cc:90:07:dc:b0:bc:6f:75:3d:f8:48:04:be:15:68:b3:d0:
b5:88:d6:a2:ca:f7:0e:73:c4:a1:02:a6:4c:5d:25:ec:e7:63:
d6:5e:44:18:91:ee:58:40:93:e8:34:49:86:88:6b:5b:88:2a:
3b:2c:92:63:f8:46:03:9f:ef:78:4a:04:df:44:76:fe:77:9d:
63:99:00:17:b3:f3:9a:19:80:fb:4a:d2:0b:2e:00:f2:51:09:
f9:e3:de:ba:d2:0b:97:98:d2:fc:4b:80:87:51:d6:51:6e:11:
38:cc:b0:2c:ef:d2:65:8b:a3:74:75:be:17:b9:57:4a:8a:db:
30:d3:0a:90:f9:c4:05:a6:3b:db:77:7b:14:6c:f2:01:21:34:
7d:fc:e0:3b:9c:b5:e9:0c:67:64:86:cb:8b:f6:4a:e2:89:5a:
29:42:b1:98:ee:fc:b8:82:b5:48:60:20:9b:3b:f4:67:5b:e3:
e6:55:64:2f:a6:5f:0c:04:de:30:cc:5b:4d:ee:21:62:d8:df:
a7:79:b5:29:fa:bd:7e:22:14:4e:56:9a:32:52:15:55:86:a8:
66:df:9c:43:a6:d5:6d:13:cf:d4:ed:5a:c8:c5:6f:41:9d:50:
08:9d:93:c0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALJl5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MjRlOGJkNTI1YjE5OWVkYzFiNzM5MmRhMjAyMjVmNzQ4OTZkYTlkMB4XDTIyMDEw
MTAwNTg1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjU3MDc0NTY0Mzhk
Yzg5MTJlZmIwMTFjYmRiM2Y2MGQ0YjI2YzM1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/tDgZ0J66BX/3ZVzIHgTRd5l0yNC/85OmEIATYzG3GoKIc
uA9CT8rnqposE98vYLaTxJUxBrHdfC5CWHMjJLzve+7AwtBuqgPW8SNYEz1JRXBn
d2U3JzUsrILFXnP0asF72eCG26+jSYHpWZqi5oMpD7gVwJZtd9bTMsBof65UyeOW
YKPfZnx+twhQdoNK0H20QLvKYe28k6Ar+np+xK+1qem7YsiFLdcJvzpPuJS77eq2
3GqzHpgfEr+4agAC+5dHIkOWSCSoeZ48Fv4DN4CN88MiMIh7wRAhf343GxqboABm
beX+cU0wJOFjNX08qf/cgNEHHYmdAMRwvP80VJkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS1cHRWQ43IkS77ARy9s/YNSybDVDAfBgNVHSMEGDAWgBRCTovVJbGZ7cG3
OS2iAiX3SJbanTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FrNkwxU1d4bWUzQnR6a3RvZ0lsOTBpVzJwMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2UvNjdkMWQ0LWNiZDgtNDVmOS04YzQ4LWVjNjZmMjM5ZmUwYy8x
L3RYQjBWa09OeUpFdS13RWN2YlAyRFVzbXcxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Uv
NjdkMWQ0LWNiZDgtNDVmOS04YzQ4LWVjNjZmMjM5ZmUwYy8xL1FrNkwxU1d4bWUz
QnR6a3RvZ0lsOTBpVzJwMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0JnDANBgkqhkiG9w0BAQsFAAOC
AQEATlQ3cBLUC9oz0Q9Lda40ATpGwsyQB9ywvG91PfhIBL4VaLPQtYjWosr3DnPE
oQKmTF0l7Odj1l5EGJHuWECT6DRJhohrW4gqOyySY/hGA5/veEoE30R2/nedY5kA
F7PzmhmA+0rSCy4A8lEJ+ePeutILl5jS/EuAh1HWUW4ROMywLO/SZYujdHW+F7lX
SorbMNMKkPnEBaY723d7FGzyASE0ffzgO5y16QxnZIbLi/ZK4olaKUKxmO78uIK1
SGAgmzv0Z1vj5lVkL6ZfDATeMMxbTe4hYtjfp3m1Kfq9fiIUTlaaMlIVVYaoZt+c
Q6bVbRPP1O1ayMVvQZ1QCJ2TwA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:31 2024 by rpki-client on console-fra.rpki-client.org