Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a2df45-f4b7-4ec6-8612-4ab036cac2db/1/s5XCuhOvzQ398edn98jP-jCADSw.roa
File: s5XCuhOvzQ398edn98jP-jCADSw.roa (raw, json)
Hash identifier: GRnDhRvzzfl0FcHTYhl9PSVfBMERg8bx6eh6XhaTlQ0=
Subject key identifier: B3:95:C2:BA:13:AF:CD:0D:FD:F1:E7:67:F7:C8:CF:FA:30:80:0D:2C
Certificate issuer: /CN=b01ffbf22e37c7ae42c03f6e63f32172399cfe07
Certificate serial: 01856F6FF4616C67FAE46E55246254ED37DC
Authority key identifier: B0:1F:FB:F2:2E:37:C7:AE:42:C0:3F:6E:63:F3:21:72:39:9C:FE:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sB_78i43x65CwD9uY_Mhcjmc_gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a2df45-f4b7-4ec6-8612-4ab036cac2db/1/s5XCuhOvzQ398edn98jP-jCADSw.roa
Signing time: Sun 01 Jan 2023 22:24:46 +0000
ROA not before: Sun 01 Jan 2023 22:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 45.92.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f4:61:6c:67:fa:e4:6e:55:24:62:54:ed:37:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01ffbf22e37c7ae42c03f6e63f32172399cfe07
Validity
Not Before: Jan 1 22:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b395c2ba13afcd0dfdf1e767f7c8cffa30800d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:dc:38:2c:9f:f3:19:3b:76:51:69:20:4e:9c:
a8:a2:43:1e:48:c5:bd:bc:6f:d2:c9:47:f7:43:71:
a6:21:6e:66:f8:11:16:dc:9b:17:29:9d:cd:b1:d9:
3c:87:64:9c:c0:3d:38:4e:a4:43:c3:b3:79:81:0f:
7e:87:9b:40:91:41:57:83:ce:36:93:34:db:60:d9:
57:d2:38:7f:ed:d9:42:6a:8b:de:53:92:a3:43:65:
fe:df:ed:7b:6f:bc:78:f3:44:37:65:e7:d3:06:fe:
ba:2a:46:43:2a:86:ec:7d:aa:0b:7b:58:a1:d4:0e:
a1:02:ba:2d:9f:e1:1f:25:6d:1f:11:cd:47:d7:8c:
b6:e6:ea:f9:01:49:3b:60:89:90:eb:c4:53:98:78:
11:35:e0:d2:32:f9:bf:0a:15:a5:80:75:ac:98:a1:
c7:97:a3:9e:4e:11:f6:7c:6a:34:f3:ef:90:ca:02:
a0:54:ab:91:17:4a:7a:28:2a:a8:51:72:98:cd:3f:
f8:eb:19:dd:90:73:af:33:95:d8:d6:96:ec:80:dc:
c5:6f:97:f2:ab:3e:65:f9:75:21:2e:ce:64:4f:9b:
38:e3:c9:c1:a6:11:56:90:2f:1b:ec:26:f2:57:0e:
5c:98:d7:ce:17:96:6a:48:45:3a:27:a4:34:83:4b:
03:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:95:C2:BA:13:AF:CD:0D:FD:F1:E7:67:F7:C8:CF:FA:30:80:0D:2C
X509v3 Authority Key Identifier:
keyid:B0:1F:FB:F2:2E:37:C7:AE:42:C0:3F:6E:63:F3:21:72:39:9C:FE:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sB_78i43x65CwD9uY_Mhcjmc_gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a2df45-f4b7-4ec6-8612-4ab036cac2db/1/s5XCuhOvzQ398edn98jP-jCADSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a2df45-f4b7-4ec6-8612-4ab036cac2db/1/sB_78i43x65CwD9uY_Mhcjmc_gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.76.0/24
Signature Algorithm: sha256WithRSAEncryption
57:73:9e:ff:db:27:f6:02:5a:12:4f:d8:c2:41:a6:1c:ee:c7:
d7:64:77:e2:6c:8a:06:14:28:90:60:32:9b:e1:4c:b6:82:e4:
3d:d0:4c:94:07:c3:ba:d3:bb:0d:c5:5b:10:dc:06:ac:6b:58:
96:79:f9:f7:91:b7:a6:c5:ff:50:91:89:94:20:d2:c6:0b:eb:
1e:d2:f6:5a:25:26:10:62:b5:a0:07:2e:49:9f:0a:90:df:28:
80:78:54:9c:75:d0:67:6d:ba:a6:78:09:d1:6f:86:64:5f:3b:
9a:8e:97:b1:4a:97:49:ff:2a:4b:1a:a5:f0:50:f0:dc:d8:77:
8e:78:a8:cb:31:00:75:30:af:50:88:c7:e9:ef:fa:32:48:7a:
04:eb:b8:21:fc:ac:92:04:ac:e4:12:0e:77:9e:be:1d:2a:0b:
f5:11:e1:6e:c7:53:4d:ea:0d:57:88:1a:2c:d5:2f:d3:fa:02:
d0:4e:81:12:43:18:a2:54:8a:5a:c3:ce:65:e7:11:11:0e:07:
52:72:e8:17:18:d6:c4:97:2e:12:66:57:61:0f:f7:7e:3b:00:
15:56:7e:c9:fe:1e:4a:c2:74:dc:77:3f:62:1c:f2:09:a0:40:
96:09:42:73:20:2b:8d:51:c4:f3:f1:20:31:90:24:28:99:37:
c6:60:27:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvb/RhbGf65G5VJGJU7TfcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMWZmYmYyMmUzN2M3YWU0MmMwM2Y2ZTYzZjMyMTcyMzk5
Y2ZlMDcwHhcNMjMwMTAxMjIyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzk1YzJiYTEzYWZjZDBkZmRmMWU3NjdmN2M4Y2ZmYTMwODAwZDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdw4LJ/zGTt2UWkgTpyookMeSMW9
vG/SyUf3Q3GmIW5m+BEW3JsXKZ3Nsdk8h2ScwD04TqRDw7N5gQ9+h5tAkUFXg842
kzTbYNlX0jh/7dlCaoveU5KjQ2X+3+17b7x480Q3ZefTBv66KkZDKobsfaoLe1ih
1A6hArotn+EfJW0fEc1H14y25ur5AUk7YImQ68RTmHgRNeDSMvm/ChWlgHWsmKHH
l6OeThH2fGo08++QygKgVKuRF0p6KCqoUXKYzT/46xndkHOvM5XY1pbsgNzFb5fy
qz5l+XUhLs5kT5s448nBphFWkC8b7CbyVw5cmNfOF5ZqSEU6J6Q0g0sDywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLOVwroTr80N/fHnZ/fIz/owgA0sMB8GA1UdIwQY
MBaAFLAf+/IuN8euQsA/bmPzIXI5nP4HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0JfNzhpNDN4NjVDd0Q5dVlfTWhjam1jX2djLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9hMmRmNDUtZjRiNy00ZWM2LTg2MTIt
NGFiMDM2Y2FjMmRiLzEvczVYQ3VoT3Z6UTM5OGVkbjk4alAtakNBRFN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9hMmRmNDUtZjRiNy00ZWM2LTg2MTItNGFiMDM2Y2FjMmRi
LzEvc0JfNzhpNDN4NjVDd0Q5dVlfTWhjam1jX2djLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVxMMA0G
CSqGSIb3DQEBCwUAA4IBAQBXc57/2yf2AloST9jCQaYc7sfXZHfibIoGFCiQYDKb
4Uy2guQ90EyUB8O607sNxVsQ3Aasa1iWefn3kbemxf9QkYmUINLGC+se0vZaJSYQ
YrWgBy5JnwqQ3yiAeFScddBnbbqmeAnRb4ZkXzuajpexSpdJ/ypLGqXwUPDc2HeO
eKjLMQB1MK9QiMfp7/oySHoE67gh/KySBKzkEg53nr4dKgv1EeFux1NN6g1XiBos
1S/T+gLQToESQxiiVIpaw85l5xERDgdScugXGNbEly4SZldhD/d+OwAVVn7J/h5K
wnTcdz9iHPIJoECWCUJzICuNUcTz8SAxkCQomTfGYCfD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:30 2024 by rpki-client on console-fra.rpki-client.org