Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/fIW3A6DE0UTnYqPNb-o1MidBJB4.roa
File: fIW3A6DE0UTnYqPNb-o1MidBJB4.roa (raw, json)
Hash identifier: wxClidtps6tzD1iFHM6OzD5f5stG5cfOX/Qu+4kxOqA=
Subject key identifier: 7C:85:B7:03:A0:C4:D1:44:E7:62:A3:CD:6F:EA:35:32:27:41:24:1E
Certificate issuer: /CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Certificate serial: 01872DE0A2D516B753F62C5278AD394797E9
Authority key identifier: 6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/fIW3A6DE0UTnYqPNb-o1MidBJB4.roa
Signing time: Wed 29 Mar 2023 14:58:29 +0000
ROA not before: Wed 29 Mar 2023 14:58:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 45.150.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:e0:a2:d5:16:b7:53:f6:2c:52:78:ad:39:47:97:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Validity
Not Before: Mar 29 14:58:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c85b703a0c4d144e762a3cd6fea35322741241e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:04:2b:0a:a5:d4:2c:ef:f5:d5:af:58:e3:7e:
c4:43:a6:ac:8b:3d:cb:3d:30:78:42:eb:78:e6:01:
e2:c8:3c:d5:62:86:a1:4a:4b:e2:f0:19:61:90:ab:
6b:c9:95:a3:2a:33:f8:11:00:cb:2b:1d:8a:24:81:
4b:93:33:fd:fc:df:ec:49:0a:46:e0:b7:3b:3b:ec:
2b:1e:af:92:7f:49:70:6f:8a:b4:1b:5f:87:0b:00:
d5:0b:b0:21:53:f4:b8:79:cf:97:33:51:ec:18:26:
17:6b:54:50:4c:23:ec:eb:fa:87:7f:cb:be:4a:6b:
f4:61:8a:64:63:5c:a4:1f:16:4a:2e:41:69:69:d7:
ed:f5:72:7e:8f:84:cd:fd:92:aa:3f:b1:2a:84:8e:
ca:83:b7:4a:ec:a1:f2:04:ef:2a:14:55:fb:3b:28:
b6:ce:84:b8:21:c5:25:c1:97:6d:97:61:73:20:dd:
91:05:08:4e:33:f5:6d:6e:a2:75:66:d3:a9:56:aa:
dc:6a:b1:9a:09:42:18:ce:30:de:cf:e3:1b:68:bd:
d3:7f:63:af:e3:8f:ce:a9:d2:62:95:bd:cb:b7:77:
b1:58:7e:a4:ef:93:e8:7e:6a:cb:56:c2:e1:ac:a6:
b9:58:6a:db:bb:30:75:62:82:77:18:74:e3:18:86:
9a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:85:B7:03:A0:C4:D1:44:E7:62:A3:CD:6F:EA:35:32:27:41:24:1E
X509v3 Authority Key Identifier:
keyid:6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/fIW3A6DE0UTnYqPNb-o1MidBJB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/a9DFs_psKIhgzLbZAgDLuOV9t_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.4.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b5:59:0a:47:aa:d9:a8:43:1c:0e:3d:d0:93:08:61:9e:b6:
42:e7:88:46:71:3a:9a:7b:cb:68:83:0d:6a:a6:71:3c:43:a9:
bb:38:42:54:8b:1a:ea:18:5e:ee:02:59:8e:05:89:32:ac:35:
08:00:e2:e8:61:65:e7:b1:da:0c:cf:12:a7:92:29:6e:d4:4f:
b4:0f:b7:4f:2d:52:1e:9d:4a:cb:13:e5:18:21:d2:de:24:76:
3d:4f:69:40:ca:ac:e6:c5:bb:c9:d3:18:80:69:29:f6:ac:99:
3f:21:dd:39:ab:31:5d:10:01:4a:2b:8f:8c:b9:09:a9:7d:8e:
44:93:96:13:3d:ea:87:78:1f:4b:49:3f:8e:89:30:7d:c4:b4:
00:7f:4b:46:71:74:75:af:ab:a5:87:be:49:fd:52:0a:47:f3:
0f:45:3d:50:10:4e:5e:f4:db:f8:8c:50:64:03:79:41:88:85:
9f:66:16:df:bc:33:d8:b2:23:69:ff:a3:5e:ab:6f:10:a6:b3:
4f:6e:dc:5d:2a:31:ab:df:e0:e4:54:4e:6a:11:51:fb:a9:b5:
67:5e:16:55:4c:dd:af:66:b5:7a:d9:f9:30:7c:a9:d9:6e:72:
8c:e1:da:7e:92:60:c5:e1:41:75:cd:76:cb:2e:39:80:66:d0:
af:35:f9:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYct4KLVFrdT9ixSeK05R5fpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZDBjNWIzZmE2YzI4ODg2MGNjYjZkOTAyMDBjYmI4ZTU3
ZGI3ZjcwHhcNMjMwMzI5MTQ1ODI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Yzg1YjcwM2EwYzRkMTQ0ZTc2MmEzY2Q2ZmVhMzUzMjI3NDEyNDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAQrCqXULO/11a9Y437EQ6asiz3L
PTB4Qut45gHiyDzVYoahSkvi8BlhkKtryZWjKjP4EQDLKx2KJIFLkzP9/N/sSQpG
4Lc7O+wrHq+Sf0lwb4q0G1+HCwDVC7AhU/S4ec+XM1HsGCYXa1RQTCPs6/qHf8u+
Smv0YYpkY1ykHxZKLkFpadft9XJ+j4TN/ZKqP7EqhI7Kg7dK7KHyBO8qFFX7Oyi2
zoS4IcUlwZdtl2FzIN2RBQhOM/VtbqJ1ZtOpVqrcarGaCUIYzjDez+MbaL3Tf2Ov
44/OqdJilb3Lt3exWH6k75PofmrLVsLhrKa5WGrbuzB1YoJ3GHTjGIaapwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHyFtwOgxNFE52KjzW/qNTInQSQeMB8GA1UdIwQY
MBaAFGvQxbP6bCiIYMy22QIAy7jlfbf3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTlERnNfcHNLSWhnekxiWkFnREx1T1Y5dF9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9iNGY1ODQtZjI1Ni00Y2FiLWFkYmIt
YzQ2MjBmYWIxZjE5LzEvZklXM0E2REUwVVRuWXFQTmItbzFNaWRCSkI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9iNGY1ODQtZjI1Ni00Y2FiLWFkYmItYzQ2MjBmYWIxZjE5
LzEvYTlERnNfcHNLSWhnekxiWkFnREx1T1Y5dF9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZYEMA0G
CSqGSIb3DQEBCwUAA4IBAQA6tVkKR6rZqEMcDj3QkwhhnrZC54hGcTqae8togw1q
pnE8Q6m7OEJUixrqGF7uAlmOBYkyrDUIAOLoYWXnsdoMzxKnkilu1E+0D7dPLVIe
nUrLE+UYIdLeJHY9T2lAyqzmxbvJ0xiAaSn2rJk/Id05qzFdEAFKK4+MuQmpfY5E
k5YTPeqHeB9LST+OiTB9xLQAf0tGcXR1r6ulh75J/VIKR/MPRT1QEE5e9Nv4jFBk
A3lBiIWfZhbfvDPYsiNp/6Neq28QprNPbtxdKjGr3+DkVE5qEVH7qbVnXhZVTN2v
ZrV62fkwfKnZbnKM4dp+kmDF4UF1zXbLLjmAZtCvNfkM
-----END CERTIFICATE-----
Generated at Wed Mar 12 13:07:17 2025 by rpki-client