Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/NpArszRBJQAOe1pmT7zLFSCsvyM.roa
File: NpArszRBJQAOe1pmT7zLFSCsvyM.roa (raw, json)
Hash identifier: LoM44nutIeB19IHkUaFqhppSv0Rlr4SbATLzErc1PhQ=
Subject key identifier: 36:90:2B:B3:34:41:25:00:0E:7B:5A:66:4F:BC:CB:15:20:AC:BF:23
Certificate issuer: /CN=d24f497d157847005336b777361b1d20905c5213
Certificate serial: 085D1FED
Authority key identifier: D2:4F:49:7D:15:78:47:00:53:36:B7:77:36:1B:1D:20:90:5C:52:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0k9JfRV4RwBTNrd3NhsdIJBcUhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/NpArszRBJQAOe1pmT7zLFSCsvyM.roa
Signing time: Sun 27 Feb 2022 20:08:03 +0000
ROA not before: Sun 27 Feb 2022 20:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213342
IP address blocks: 45.136.223.0/24 maxlen: 24
2a0e:9b42::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140320749 (0x85d1fed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24f497d157847005336b777361b1d20905c5213
Validity
Not Before: Feb 27 20:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36902bb3344125000e7b5a664fbccb1520acbf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:92:89:25:1d:fb:da:ee:35:bc:54:3a:b5:24:
c9:9c:3f:b9:54:dc:98:96:49:3c:e2:7b:c9:6e:db:
4c:93:5f:b7:fa:87:74:d9:5c:4b:5a:96:52:fc:0b:
8a:c3:72:c4:bd:e9:9b:4c:80:ac:38:1e:78:47:c1:
b5:b3:2d:51:21:50:40:32:02:5d:cf:78:f1:c4:09:
6d:6f:c1:d4:d3:40:4c:08:53:90:c9:bd:5a:c5:a8:
bc:73:58:26:c5:c4:3e:7d:7e:f6:c0:ff:b0:f9:7d:
0e:1b:85:4e:b5:ba:a6:84:46:26:d1:0a:3d:45:b2:
07:24:41:fb:e7:cc:27:8f:3e:29:6f:69:80:87:a8:
e7:ad:eb:0a:56:c5:27:32:d9:7d:ad:91:00:83:02:
6d:75:b6:a9:2f:c5:f2:6c:60:cc:9d:29:19:bd:2a:
c8:c7:33:e6:ca:4f:ff:e7:7d:b2:7c:29:81:4f:6f:
ca:ae:59:1f:61:bd:71:cd:9d:a9:3a:e1:53:5d:ee:
d7:eb:89:82:63:68:ec:9a:0a:69:92:4c:d1:fe:5a:
ce:86:9d:ea:3d:48:21:4a:87:f5:69:6a:b8:b2:31:
e4:83:7e:fb:6f:e4:21:b1:8f:49:6b:f0:cb:92:79:
ec:d4:67:b3:56:b6:c5:ed:cf:8f:58:b3:af:08:6c:
4f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:90:2B:B3:34:41:25:00:0E:7B:5A:66:4F:BC:CB:15:20:AC:BF:23
X509v3 Authority Key Identifier:
keyid:D2:4F:49:7D:15:78:47:00:53:36:B7:77:36:1B:1D:20:90:5C:52:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0k9JfRV4RwBTNrd3NhsdIJBcUhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/NpArszRBJQAOe1pmT7zLFSCsvyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cf3ca3-1cd7-4312-ba73-83c8596229fa/1/0k9JfRV4RwBTNrd3NhsdIJBcUhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.223.0/24
IPv6:
2a0e:9b42::/32
Signature Algorithm: sha256WithRSAEncryption
a7:b0:90:4e:e0:95:9a:dc:d0:19:04:03:af:56:e6:41:d0:3c:
2e:c8:13:00:48:36:d8:1b:e0:9a:be:4e:da:87:37:8f:d5:e0:
50:42:fd:f5:3e:af:5b:c6:1b:f1:51:ba:ab:90:b8:28:04:22:
60:b2:8c:06:1e:db:50:32:a9:e0:3b:9a:33:be:93:c3:92:55:
80:bd:83:e6:24:22:49:a0:b4:c0:cc:68:3b:e2:e9:cc:d5:ce:
f8:f7:56:73:83:4f:e4:b5:6b:6c:e0:ef:5c:6e:4c:b0:a5:b8:
ab:a5:2f:12:0d:1f:97:91:2d:3e:cb:46:a0:cd:87:93:56:3c:
d5:be:16:55:26:a7:e3:04:d0:b3:ae:13:48:0a:90:3b:93:81:
53:ac:3b:3f:0f:57:8a:22:83:18:58:ea:6b:b3:34:0a:ee:8f:
51:34:79:65:e8:c6:64:39:12:72:e6:31:74:1f:3b:60:f1:89:
31:26:02:b6:fd:8d:bd:93:67:c7:7b:d7:b2:1a:67:be:da:72:
e3:9b:74:c6:b3:a5:13:f2:c7:56:4c:50:3e:05:b8:34:b6:bf:
07:4c:a9:ce:34:e3:72:3b:23:63:55:dc:6c:05:93:ae:5c:2e:
4e:50:b3:43:95:7f:0e:1f:41:77:dc:da:27:24:28:62:b7:d8:
d0:03:82:89
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECF0f7TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MjRmNDk3ZDE1Nzg0NzAwNTMzNmI3NzczNjFiMWQyMDkwNWM1MjEzMB4XDTIyMDIy
NzIwMDgwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzY5MDJiYjMzNDQx
MjUwMDBlN2I1YTY2NGZiY2NiMTUyMGFjYmYyMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKGSiSUd+9ruNbxUOrUkyZw/uVTcmJZJPOJ7yW7bTJNft/qH
dNlcS1qWUvwLisNyxL3pm0yArDgeeEfBtbMtUSFQQDICXc948cQJbW/B1NNATAhT
kMm9WsWovHNYJsXEPn1+9sD/sPl9DhuFTrW6poRGJtEKPUWyByRB++fMJ48+KW9p
gIeo563rClbFJzLZfa2RAIMCbXW2qS/F8mxgzJ0pGb0qyMcz5spP/+d9snwpgU9v
yq5ZH2G9cc2dqTrhU13u1+uJgmNo7JoKaZJM0f5azoad6j1IIUqH9WlquLIx5IN+
+2/kIbGPSWvwy5J57NRns1a2xe3Pj1izrwhsT+MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQ2kCuzNEElAA57WmZPvMsVIKy/IzAfBgNVHSMEGDAWgBTST0l9FXhHAFM2
t3c2Gx0gkFxSEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBrOUpmUlY0UndCVE5yZDNOaHNkSUpCY1VoTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvY2YzY2EzLTFjZDctNDMxMi1iYTczLTgzYzg1OTYyMjlmYS8x
L05wQXJzelJCSlFBT2UxcG1UN3pMRlNDc3Z5TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
Y2YzY2EzLTFjZDctNDMxMi1iYTczLTgzYzg1OTYyMjlmYS8xLzBrOUpmUlY0UndC
VE5yZDNOaHNkSUpCY1VoTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAC2I3zANBAIAAjAHAwUAKg6bQjAN
BgkqhkiG9w0BAQsFAAOCAQEAp7CQTuCVmtzQGQQDr1bmQdA8LsgTAEg22Bvgmr5O
2oc3j9XgUEL99T6vW8Yb8VG6q5C4KAQiYLKMBh7bUDKp4DuaM76Tw5JVgL2D5iQi
SaC0wMxoO+LpzNXO+PdWc4NP5LVrbODvXG5MsKW4q6UvEg0fl5EtPstGoM2Hk1Y8
1b4WVSan4wTQs64TSAqQO5OBU6w7Pw9XiiKDGFjqa7M0Cu6PUTR5ZejGZDkScuYx
dB87YPGJMSYCtv2NvZNnx3vXshpnvtpy45t0xrOlE/LHVkxQPgW4NLa/B0ypzjTj
cjsjY1XcbAWTrlwuTlCzQ5V/Dh9Bd9zaJyQoYrfY0AOCiQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:35 2025 by rpki-client