Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/sHlo8fnO4I-8jBmPHg_blbkOIBk.roa
File: sHlo8fnO4I-8jBmPHg_blbkOIBk.roa (raw, json)
Hash identifier: xf1+c5Y69KZz1tTw8cUJNftIwahuWgY4x6vKXczDsvI=
Subject key identifier: B0:79:68:F1:F9:CE:E0:8F:BC:8C:19:8F:1E:0F:DB:95:B9:0E:20:19
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 019424B26A690525BD87550DA97B800AC592
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/sHlo8fnO4I-8jBmPHg_blbkOIBk.roa
Signing time: Thu 02 Jan 2025 01:47:39 +0000
ROA not before: Thu 02 Jan 2025 01:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199724
IP address blocks: 45.10.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:6a:69:05:25:bd:87:55:0d:a9:7b:80:0a:c5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Jan 2 01:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b07968f1f9cee08fbc8c198f1e0fdb95b90e2019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9c:f1:df:de:b3:63:37:84:5f:2b:93:a9:19:
4d:c4:65:4d:56:e9:77:cc:06:ab:11:9c:f0:4e:ec:
62:f0:b2:85:b4:e3:66:1a:57:b0:66:27:e1:31:7d:
79:da:24:9e:46:95:60:0d:13:de:7b:d7:00:f7:ee:
2b:70:20:e2:8d:7d:e6:03:42:eb:bf:0d:bb:2e:c0:
08:04:93:e4:fd:0f:51:7a:c8:9c:6c:90:f6:a0:e7:
eb:b8:02:5f:c1:ca:f9:79:ba:55:2d:1b:20:1e:63:
07:ef:e2:d5:70:30:3a:21:08:1e:f8:d2:76:73:ef:
f8:b6:9a:b9:4a:90:19:04:40:7a:b8:6f:0f:83:98:
a2:1d:22:67:e1:ca:fb:7c:3e:22:ed:a7:13:82:e5:
c3:02:8d:69:a5:54:99:0e:86:22:7d:cc:49:df:05:
fb:77:75:39:a6:c2:71:a9:f8:48:2f:da:4c:c1:c3:
44:2b:4b:95:a8:55:0f:88:be:87:e2:ca:b1:be:28:
dc:55:11:b3:d8:00:c3:a1:3f:18:bc:b3:aa:fe:79:
f8:89:2d:95:8c:ea:ec:6b:84:13:62:dd:55:2e:4d:
12:52:a3:b3:7e:d8:83:ac:fa:db:ed:a4:1a:cf:05:
0a:d6:6a:06:5a:17:82:7e:4f:f1:f9:e1:6c:86:bb:
c2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:79:68:F1:F9:CE:E0:8F:BC:8C:19:8F:1E:0F:DB:95:B9:0E:20:19
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/sHlo8fnO4I-8jBmPHg_blbkOIBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.56.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cb:60:5b:0b:9b:89:29:35:e4:b8:97:f6:7a:c6:d3:1c:ed:
a1:17:2c:40:ef:dd:7b:a4:22:67:d2:f3:e1:16:29:c0:39:92:
c2:dd:6d:bb:88:9e:32:42:74:ec:ea:07:a8:a8:95:da:47:68:
26:65:5e:01:4f:62:4d:72:df:42:6a:69:9f:cf:f9:08:dd:f7:
2a:5e:29:3f:53:ad:b4:e9:e1:90:14:74:fd:94:d4:0d:77:66:
f7:c1:56:c5:25:c0:3e:f4:04:b9:9d:3e:7b:09:15:25:a0:f1:
0e:6b:06:3c:8c:4b:58:05:a1:74:7d:4c:d8:94:25:93:20:2e:
22:6e:69:25:cd:ae:f9:cc:a2:b7:a9:25:fb:4e:ad:29:d9:68:
f6:c4:a6:c1:6b:48:7f:7b:1e:13:dc:a6:df:97:13:73:f1:28:
a4:f2:9f:05:35:99:06:08:0f:97:ae:c2:da:2e:8f:ca:dc:b8:
0b:7d:58:97:3d:75:d7:4c:d1:2d:ac:79:2b:3f:2c:1d:f9:8e:
58:88:07:97:b4:f3:bd:fc:91:01:2f:f8:ba:ac:9e:0a:f5:96:
6e:39:7d:da:e5:11:1e:ec:0f:12:df:ce:56:85:56:06:7e:21:
7a:d2:bb:87:3d:27:fe:3a:66:53:16:14:9d:b6:d4:c8:dd:c2:
1c:aa:ed:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQksmppBSW9h1UNqXuACsWSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNTU5Y2U4ODlhZTQyNDExMjFmZTBhMTY1M2U0Yjk1NWYz
ZWRmNGIwHhcNMjUwMTAyMDE0NzM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDc5NjhmMWY5Y2VlMDhmYmM4YzE5OGYxZTBmZGI5NWI5MGUyMDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15zx396zYzeEXyuTqRlNxGVNVul3
zAarEZzwTuxi8LKFtONmGlewZifhMX152iSeRpVgDRPee9cA9+4rcCDijX3mA0Lr
vw27LsAIBJPk/Q9ResicbJD2oOfruAJfwcr5ebpVLRsgHmMH7+LVcDA6IQge+NJ2
c+/4tpq5SpAZBEB6uG8Pg5iiHSJn4cr7fD4i7acTguXDAo1ppVSZDoYifcxJ3wX7
d3U5psJxqfhIL9pMwcNEK0uVqFUPiL6H4sqxvijcVRGz2ADDoT8YvLOq/nn4iS2V
jOrsa4QTYt1VLk0SUqOzftiDrPrb7aQazwUK1moGWheCfk/x+eFshrvC/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLB5aPH5zuCPvIwZjx4P25W5DiAZMB8GA1UdIwQY
MBaAFOBVnOiJrkJBEh/goWU+S5VfPt9LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYt
OTQ0OTk1N2ZkNWE1LzEvc0hsbzhmbk80SS04akJtUEhnX2JsYmtPSUJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYtOTQ0OTk1N2ZkNWE1
LzEvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQo4MA0G
CSqGSIb3DQEBCwUAA4IBAQBmy2BbC5uJKTXkuJf2esbTHO2hFyxA7917pCJn0vPh
FinAOZLC3W27iJ4yQnTs6geoqJXaR2gmZV4BT2JNct9Cammfz/kI3fcqXik/U620
6eGQFHT9lNQNd2b3wVbFJcA+9AS5nT57CRUloPEOawY8jEtYBaF0fUzYlCWTIC4i
bmklza75zKK3qSX7Tq0p2Wj2xKbBa0h/ex4T3KbflxNz8Sik8p8FNZkGCA+XrsLa
Lo/K3LgLfViXPXXXTNEtrHkrPywd+Y5YiAeXtPO9/JEBL/i6rJ4K9ZZuOX3a5REe
7A8S385WhVYGfiF60ruHPSf+OmZTFhSdttTI3cIcqu0L
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:15 2025 by rpki-client