Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d21ef7-f1ce-4077-ab74-4828dc72ea98/1/21WChaHh5k-C2S2RTMTJjlf5eOM.roa
File: 21WChaHh5k-C2S2RTMTJjlf5eOM.roa (raw, json)
Hash identifier: bhxXtulGdhm+l4RCRnI6DENr+GdeoaijE2MYcLzabh8=
Subject key identifier: DB:55:82:85:A1:E1:E6:4F:82:D9:2D:91:4C:C4:C9:8E:57:F9:78:E3
Certificate issuer: /CN=265018dba9c25a6e338ab4e91abe6897f6a45514
Certificate serial: 0182589EDFBFF2C0B2B872C8DE2EB5511481
Authority key identifier: 26:50:18:DB:A9:C2:5A:6E:33:8A:B4:E9:1A:BE:68:97:F6:A4:55:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JlAY26nCWm4zirTpGr5ol_akVRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d21ef7-f1ce-4077-ab74-4828dc72ea98/1/21WChaHh5k-C2S2RTMTJjlf5eOM.roa
Signing time: Mon 01 Aug 2022 08:56:23 +0000
ROA not before: Mon 01 Aug 2022 08:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44407
IP address blocks: 45.132.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:9e:df:bf:f2:c0:b2:b8:72:c8:de:2e:b5:51:14:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=265018dba9c25a6e338ab4e91abe6897f6a45514
Validity
Not Before: Aug 1 08:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db558285a1e1e64f82d92d914cc4c98e57f978e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:29:18:1c:44:18:66:09:55:f9:62:f6:6a:dd:
c6:3e:05:f5:19:ba:fe:da:ae:65:43:52:82:8f:6e:
8f:dd:08:64:9a:aa:24:67:cd:8b:23:df:c5:c0:48:
78:45:15:8c:bc:94:07:d8:f5:15:72:6a:5c:79:7d:
55:fb:6e:c9:d3:14:fd:e5:61:71:8c:46:21:bb:93:
08:1e:90:19:24:1a:5b:81:7b:b1:b1:fd:d6:fb:c5:
45:4e:2f:29:8d:97:6e:13:be:7f:0f:05:cf:cc:be:
a7:03:3d:c1:8a:ca:4b:2f:8a:eb:aa:91:74:d0:ce:
e7:f2:e3:b1:19:8c:72:78:e7:4c:d3:ee:17:96:36:
53:71:3f:64:e2:32:8c:7c:1e:4f:37:22:80:ad:6c:
65:c4:ba:f2:f3:b6:75:2d:43:a8:c0:5a:77:3c:ae:
f2:34:db:b6:c9:6c:e2:78:50:04:91:7e:ff:72:71:
b1:c9:99:dc:0f:11:9d:14:3b:ed:50:a6:cb:1f:ec:
0b:ef:8c:2f:a6:4b:f7:a1:e3:53:cb:27:53:a7:ed:
ae:c9:0c:a9:5f:da:a7:11:3a:5e:61:29:33:2d:4f:
c3:60:c7:3a:81:d7:01:0a:d3:f0:bf:26:b0:60:57:
14:65:13:6f:17:64:f0:60:15:cc:3f:5c:c2:d6:a4:
f0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:55:82:85:A1:E1:E6:4F:82:D9:2D:91:4C:C4:C9:8E:57:F9:78:E3
X509v3 Authority Key Identifier:
keyid:26:50:18:DB:A9:C2:5A:6E:33:8A:B4:E9:1A:BE:68:97:F6:A4:55:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JlAY26nCWm4zirTpGr5ol_akVRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d21ef7-f1ce-4077-ab74-4828dc72ea98/1/21WChaHh5k-C2S2RTMTJjlf5eOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d21ef7-f1ce-4077-ab74-4828dc72ea98/1/JlAY26nCWm4zirTpGr5ol_akVRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:94:ca:7f:66:68:58:03:cd:bb:e3:55:54:19:3f:42:a2:7e:
49:ab:09:d5:6e:b6:4b:c6:bb:18:8f:6b:f8:68:e3:8a:72:82:
eb:75:9c:54:9a:60:ca:92:14:09:a3:92:92:ca:62:d2:56:7f:
9f:9b:bf:25:39:43:70:90:73:b9:d9:0f:51:61:f7:b7:a8:f4:
d3:09:e6:bd:00:56:46:cf:97:79:d4:2d:8a:40:00:6c:ad:8f:
25:31:b3:8d:6c:55:5f:dd:88:36:06:bc:2f:2c:1a:fe:47:f4:
e3:78:90:f7:47:88:a4:2f:c3:19:ab:90:c2:ce:33:e9:35:dd:
49:d7:28:b7:1d:9d:b9:46:0e:26:38:b5:88:dc:73:be:dc:c0:
1c:8c:f8:3f:13:6b:3b:b0:4d:77:96:67:cb:43:aa:5e:d2:bb:
2a:ff:9f:57:54:a5:eb:fc:10:0d:3e:87:8e:36:c2:b3:b3:6d:
14:ad:84:8c:5d:d3:1d:92:0a:63:6f:12:a4:dc:86:68:53:01:
d4:f6:47:5f:72:de:1f:a6:b6:42:47:3d:4f:7b:0e:d9:2e:5f:
f8:28:a6:03:73:9a:96:8f:61:1d:3a:35:83:13:e2:a2:c1:57:
d6:9b:93:d8:07:47:d3:43:f5:67:e5:b3:e1:32:d6:97:d4:8e:
ff:6a:83:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJYnt+/8sCyuHLI3i61URSBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NTAxOGRiYTljMjVhNmUzMzhhYjRlOTFhYmU2ODk3ZjZh
NDU1MTQwHhcNMjIwODAxMDg1NjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjU1ODI4NWExZTFlNjRmODJkOTJkOTE0Y2M0Yzk4ZTU3Zjk3OGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlykYHEQYZglV+WL2at3GPgX1Gbr+
2q5lQ1KCj26P3QhkmqokZ82LI9/FwEh4RRWMvJQH2PUVcmpceX1V+27J0xT95WFx
jEYhu5MIHpAZJBpbgXuxsf3W+8VFTi8pjZduE75/DwXPzL6nAz3BispLL4rrqpF0
0M7n8uOxGYxyeOdM0+4XljZTcT9k4jKMfB5PNyKArWxlxLry87Z1LUOowFp3PK7y
NNu2yWzieFAEkX7/cnGxyZncDxGdFDvtUKbLH+wL74wvpkv3oeNTyydTp+2uyQyp
X9qnETpeYSkzLU/DYMc6gdcBCtPwvyawYFcUZRNvF2TwYBXMP1zC1qTwTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNtVgoWh4eZPgtktkUzEyY5X+XjjMB8GA1UdIwQY
MBaAFCZQGNupwlpuM4q06Rq+aJf2pFUUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmxBWTI2bkNXbTR6aXJUcEdyNW9sX2FrVlJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kMjFlZjctZjFjZS00MDc3LWFiNzQt
NDgyOGRjNzJlYTk4LzEvMjFXQ2hhSGg1ay1DMlMyUlRNVEpqbGY1ZU9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9kMjFlZjctZjFjZS00MDc3LWFiNzQtNDgyOGRjNzJlYTk4
LzEvSmxBWTI2bkNXbTR6aXJUcEdyNW9sX2FrVlJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYT4MA0G
CSqGSIb3DQEBCwUAA4IBAQCxlMp/ZmhYA82741VUGT9Con5JqwnVbrZLxrsYj2v4
aOOKcoLrdZxUmmDKkhQJo5KSymLSVn+fm78lOUNwkHO52Q9RYfe3qPTTCea9AFZG
z5d51C2KQABsrY8lMbONbFVf3Yg2BrwvLBr+R/TjeJD3R4ikL8MZq5DCzjPpNd1J
1yi3HZ25Rg4mOLWI3HO+3MAcjPg/E2s7sE13lmfLQ6pe0rsq/59XVKXr/BANPoeO
NsKzs20UrYSMXdMdkgpjbxKk3IZoUwHU9kdfct4fprZCRz1Pew7ZLl/4KKYDc5qW
j2EdOjWDE+KiwVfWm5PYB0fTQ/Vn5bPhMtaX1I7/aoOI
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:28 2025 by rpki-client