Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/o-JBVzdYOv2EVpVEntQmqb1xaNc.roa
File: o-JBVzdYOv2EVpVEntQmqb1xaNc.roa (raw, json)
Hash identifier: HpwMhCcmQ91SRCkllmAdKx6JaC6Ct76LPjMxK5iKn2A=
Subject key identifier: A3:E2:41:57:37:58:3A:FD:84:56:95:44:9E:D4:26:A9:BD:71:68:D7
Certificate issuer: /CN=6d5d7c4d54e4cd5cdda878c7bb7c61964a30244f
Certificate serial: 0406E436
Authority key identifier: 6D:5D:7C:4D:54:E4:CD:5C:DD:A8:78:C7:BB:7C:61:96:4A:30:24:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bV18TVTkzVzdqHjHu3xhlkowJE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/o-JBVzdYOv2EVpVEntQmqb1xaNc.roa
Signing time: Thu 20 Jan 2022 12:00:56 +0000
ROA not before: Thu 20 Jan 2022 12:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 45.66.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67560502 (0x406e436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d5d7c4d54e4cd5cdda878c7bb7c61964a30244f
Validity
Not Before: Jan 20 12:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3e2415737583afd845695449ed426a9bd7168d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:18:bd:13:9b:63:02:1d:5f:f6:0b:aa:9f:
c9:d6:a9:38:7b:52:ce:24:7e:c0:df:6d:64:99:8e:
8a:f3:29:00:c7:86:8d:2d:2e:7e:de:e1:29:78:f0:
89:fb:80:1f:f8:29:bc:9e:bc:67:b3:fe:5d:59:68:
3b:bb:72:89:5a:2c:77:62:c9:0a:6d:18:b9:79:2b:
67:20:37:51:a2:58:a6:f9:8f:cc:62:e1:16:59:27:
23:4f:57:9c:b4:f8:2d:f0:f9:59:cb:8a:f5:ea:12:
f3:3e:50:0c:72:74:6a:19:ec:2f:f8:42:28:a4:89:
52:a6:b1:4b:3c:20:a3:7b:eb:82:cd:6c:44:56:0b:
fb:08:09:4a:06:37:6d:73:89:20:40:80:18:97:da:
5d:bd:97:ed:d5:9a:85:a9:48:09:16:6a:50:4a:f9:
b2:80:a2:00:ff:17:21:71:94:ac:db:71:e6:7b:c7:
0c:7e:a1:47:a5:6b:3d:d5:d2:1b:aa:c2:54:9d:00:
97:11:5d:0b:22:cc:54:34:51:30:53:d4:ea:30:25:
38:38:0e:fc:70:bb:b6:a8:90:96:c0:ba:d8:ae:8f:
d9:79:b0:65:13:f2:2a:11:4c:a0:93:8f:dd:13:cd:
19:0d:69:e7:b5:c7:bc:54:cc:e4:cb:a9:88:1f:05:
eb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E2:41:57:37:58:3A:FD:84:56:95:44:9E:D4:26:A9:BD:71:68:D7
X509v3 Authority Key Identifier:
keyid:6D:5D:7C:4D:54:E4:CD:5C:DD:A8:78:C7:BB:7C:61:96:4A:30:24:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bV18TVTkzVzdqHjHu3xhlkowJE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/o-JBVzdYOv2EVpVEntQmqb1xaNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/bV18TVTkzVzdqHjHu3xhlkowJE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/22
Signature Algorithm: sha256WithRSAEncryption
20:00:5b:d2:d1:14:61:69:bb:68:de:44:58:62:8a:3e:0d:50:
c9:52:b4:74:77:dc:6d:ae:d7:ec:da:4b:d7:b1:81:9f:6b:5d:
18:07:6f:b4:bb:c6:99:ea:d8:b2:4a:ae:47:23:b6:16:8d:47:
a8:96:28:1c:1d:31:ca:0c:5b:f6:60:99:11:89:8c:c0:75:82:
97:2c:f2:a0:5c:05:93:7f:54:95:c9:03:74:8f:c6:a8:44:b1:
8e:b4:27:87:ef:2d:6b:2b:ae:f2:41:2f:37:eb:ec:d5:bf:ed:
53:c2:56:49:b2:fb:0b:db:0f:0c:00:e7:4c:a8:ef:72:8e:8d:
30:da:af:60:ba:61:21:b1:6b:ff:23:69:2e:1b:9f:d5:b4:00:
de:97:29:02:f4:de:bf:8a:4b:02:ba:a5:a1:2c:f5:8e:9e:d8:
54:3c:1e:f0:0e:fa:7c:a0:6d:70:3b:41:e4:22:3e:fa:4d:6c:
22:ad:0e:01:0b:18:6b:7a:4b:1b:ff:22:91:2b:7f:40:12:8b:
27:e2:d1:28:b5:31:2e:8b:e7:28:ba:9d:14:51:7e:8e:c4:c2:
4f:a9:a0:45:1f:e5:98:b5:d2:13:a6:30:4d:83:aa:bb:8c:f0:
6f:e8:11:dc:d8:dc:74:5a:05:c7:20:e5:b7:b9:05:9a:08:8a:
7b:ce:a6:b0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBAbkNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDVkN2M0ZDU0ZTRjZDVjZGRhODc4YzdiYjdjNjE5NjRhMzAyNDRmMB4XDTIyMDEy
MDEyMDA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTNlMjQxNTczNzU4
M2FmZDg0NTY5NTQ0OWVkNDI2YTliZDcxNjhkNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVlGL0Tm2MCHV/2C6qfydapOHtSziR+wN9tZJmOivMpAMeG
jS0uft7hKXjwifuAH/gpvJ68Z7P+XVloO7tyiVosd2LJCm0YuXkrZyA3UaJYpvmP
zGLhFlknI09XnLT4LfD5WcuK9eoS8z5QDHJ0ahnsL/hCKKSJUqaxSzwgo3vrgs1s
RFYL+wgJSgY3bXOJIECAGJfaXb2X7dWahalICRZqUEr5soCiAP8XIXGUrNtx5nvH
DH6hR6VrPdXSG6rCVJ0AlxFdCyLMVDRRMFPU6jAlODgO/HC7tqiQlsC62K6P2Xmw
ZRPyKhFMoJOP3RPNGQ1p57XHvFTM5MupiB8F6+UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSj4kFXN1g6/YRWlUSe1CapvXFo1zAfBgNVHSMEGDAWgBRtXXxNVOTNXN2o
eMe7fGGWSjAkTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JWMThUVlRrelZ6ZHFIakh1M3hobGtvd0pFOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDIvOWI2OWVhLTVkOWEtNDllMS1iYWIyLTUyZmZkNDA5OTk3My8x
L28tSkJWemRZT3YyRVZwVkVudFFtcWIxeGFOYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIv
OWI2OWVhLTVkOWEtNDllMS1iYWIyLTUyZmZkNDA5OTk3My8xL2JWMThUVlRrelZ6
ZHFIakh1M3hobGtvd0pFOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1C5DANBgkqhkiG9w0BAQsFAAOC
AQEAIABb0tEUYWm7aN5EWGKKPg1QyVK0dHfcba7X7NpL17GBn2tdGAdvtLvGmerY
skquRyO2Fo1HqJYoHB0xygxb9mCZEYmMwHWClyzyoFwFk39UlckDdI/GqESxjrQn
h+8tayuu8kEvN+vs1b/tU8JWSbL7C9sPDADnTKjvco6NMNqvYLphIbFr/yNpLhuf
1bQA3pcpAvTev4pLArqloSz1jp7YVDwe8A76fKBtcDtB5CI++k1sIq0OAQsYa3pL
G/8ikSt/QBKLJ+LRKLUxLovnKLqdFFF+jsTCT6mgRR/lmLXSE6YwTYOqu4zwb+gR
3NjcdFoFxyDlt7kFmgiKe86msA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:44 2025 by rpki-client