Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2b8494-99aa-4fd1-9cf9-def7e5c80bac/1/cMwLo9lnSiHPfCyq2fVlEGSetYE.roa
File: cMwLo9lnSiHPfCyq2fVlEGSetYE.roa (raw, json)
Hash identifier: t2XOG+Ujpm3/wnE2wttEnLPfsgXnOZ700GfLk6ZOCz0=
Subject key identifier: 70:CC:0B:A3:D9:67:4A:21:CF:7C:2C:AA:D9:F5:65:10:64:9E:B5:81
Certificate issuer: /CN=ac58e19f03f8840015c530136721b21d6b14a57c
Certificate serial: 01846182ABD02955BF04B8D67DA6047AA480
Authority key identifier: AC:58:E1:9F:03:F8:84:00:15:C5:30:13:67:21:B2:1D:6B:14:A5:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFjhnwP4hAAVxTATZyGyHWsUpXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2b8494-99aa-4fd1-9cf9-def7e5c80bac/1/cMwLo9lnSiHPfCyq2fVlEGSetYE.roa
Signing time: Thu 10 Nov 2022 12:27:44 +0000
ROA not before: Thu 10 Nov 2022 12:27:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48020
IP address blocks: 45.67.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:82:ab:d0:29:55:bf:04:b8:d6:7d:a6:04:7a:a4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac58e19f03f8840015c530136721b21d6b14a57c
Validity
Not Before: Nov 10 12:27:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70cc0ba3d9674a21cf7c2caad9f56510649eb581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c1:a9:fb:b4:2f:c3:82:72:b3:e0:b2:ca:a4:
66:cf:8d:f1:db:5f:2f:c3:c4:3d:5c:9d:14:b5:92:
1a:16:da:fa:40:52:cd:bb:4a:66:c1:d5:7a:30:b7:
b3:a4:6e:a9:f4:76:91:71:f7:cf:4b:ec:65:15:7a:
aa:9b:dc:75:70:01:39:b5:fb:a6:02:b4:a9:49:1a:
6e:fc:2e:ce:84:93:84:fb:7f:09:71:ca:14:7e:0c:
d7:8a:76:e2:42:39:c1:74:5d:15:5f:aa:2a:57:2a:
73:54:91:7c:60:eb:73:94:d4:17:63:80:5c:7f:96:
60:2d:c9:23:56:19:64:98:42:a4:01:5c:c7:af:2e:
e7:f8:b5:8a:a7:e0:3c:46:92:cb:3c:0c:31:64:d3:
59:82:ca:38:20:7c:ef:a7:0d:4e:ea:9a:99:0c:a1:
81:4e:09:13:07:15:7b:b4:ee:c9:99:48:52:cc:6d:
e1:6b:95:2a:e7:bf:6a:ec:9b:5e:76:74:2a:18:d9:
ef:1a:b7:89:e7:16:11:1b:91:01:ff:7f:cc:ce:f3:
a6:ce:17:2c:ee:a4:50:cc:37:c8:e5:0f:8d:da:27:
13:50:c6:35:ee:49:17:fc:17:0a:8e:bb:3c:6a:b2:
d3:36:ea:d1:d6:7e:2e:47:eb:1c:fa:dc:e6:7d:9b:
01:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CC:0B:A3:D9:67:4A:21:CF:7C:2C:AA:D9:F5:65:10:64:9E:B5:81
X509v3 Authority Key Identifier:
keyid:AC:58:E1:9F:03:F8:84:00:15:C5:30:13:67:21:B2:1D:6B:14:A5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFjhnwP4hAAVxTATZyGyHWsUpXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2b8494-99aa-4fd1-9cf9-def7e5c80bac/1/cMwLo9lnSiHPfCyq2fVlEGSetYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2b8494-99aa-4fd1-9cf9-def7e5c80bac/1/rFjhnwP4hAAVxTATZyGyHWsUpXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:a2:11:47:91:c9:9d:68:51:b3:a1:e9:82:38:04:ac:48:ff:
4e:c0:13:9b:e0:c9:5a:eb:10:63:ca:cd:4d:cb:d2:cc:5d:74:
04:f4:e4:69:47:f9:2f:28:bc:bd:12:14:d6:f7:ae:f6:f4:55:
64:6d:76:d5:da:e3:1a:37:6a:f9:38:3e:d9:4b:64:6a:09:44:
52:c9:b5:74:84:02:69:07:86:13:03:99:8c:b9:cb:88:eb:38:
0f:b4:0d:c4:2d:f5:23:3d:53:08:fd:2f:a9:05:bd:cc:8d:85:
70:30:2d:e5:a8:4c:15:f3:a9:03:7b:a0:8f:d1:06:5d:e6:60:
fc:56:7a:c2:b6:44:87:67:29:6d:e4:bf:09:b5:16:d4:3d:8a:
dc:0f:5d:9f:50:07:13:e2:04:c0:b3:cf:0d:dc:ce:e6:e0:f7:
ba:b4:5d:21:6c:f1:47:a7:63:5f:ff:56:bc:72:e1:a0:1a:0c:
19:ee:a6:72:cb:e2:ef:24:1e:aa:b1:c2:92:d8:05:0f:2c:ff:
ad:ea:b8:ef:7b:09:56:8b:ac:eb:29:45:7f:51:42:aa:5b:5c:
36:09:6e:a0:10:c9:6b:c4:fc:1a:32:fe:79:ca:41:0b:63:13:
41:a9:83:18:c2:d5:28:f8:5f:45:f5:ab:6d:66:6c:27:6e:33:
53:27:9c:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRhgqvQKVW/BLjWfaYEeqSAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjNThlMTlmMDNmODg0MDAxNWM1MzAxMzY3MjFiMjFkNmIx
NGE1N2MwHhcNMjIxMTEwMTIyNzQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGNjMGJhM2Q5Njc0YTIxY2Y3YzJjYWFkOWY1NjUxMDY0OWViNTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsGp+7Qvw4Jys+CyyqRmz43x218v
w8Q9XJ0UtZIaFtr6QFLNu0pmwdV6MLezpG6p9HaRcffPS+xlFXqqm9x1cAE5tfum
ArSpSRpu/C7OhJOE+38JccoUfgzXinbiQjnBdF0VX6oqVypzVJF8YOtzlNQXY4Bc
f5ZgLckjVhlkmEKkAVzHry7n+LWKp+A8RpLLPAwxZNNZgso4IHzvpw1O6pqZDKGB
TgkTBxV7tO7JmUhSzG3ha5Uq579q7JtednQqGNnvGreJ5xYRG5EB/3/MzvOmzhcs
7qRQzDfI5Q+N2icTUMY17kkX/BcKjrs8arLTNurR1n4uR+sc+tzmfZsB0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHDMC6PZZ0ohz3wsqtn1ZRBknrWBMB8GA1UdIwQY
MBaAFKxY4Z8D+IQAFcUwE2chsh1rFKV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckZqaG53UDRoQUFWeFRBVFp5R3lIV3NVcFh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8yYjg0OTQtOTlhYS00ZmQxLTljZjkt
ZGVmN2U1YzgwYmFjLzEvY013TG85bG5TaUhQZkN5cTJmVmxFR1NldFlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8yYjg0OTQtOTlhYS00ZmQxLTljZjktZGVmN2U1YzgwYmFj
LzEvckZqaG53UDRoQUFWeFRBVFp5R3lIV3NVcFh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUO4MA0G
CSqGSIb3DQEBCwUAA4IBAQC2ohFHkcmdaFGzoemCOASsSP9OwBOb4Mla6xBjys1N
y9LMXXQE9ORpR/kvKLy9EhTW96729FVkbXbV2uMaN2r5OD7ZS2RqCURSybV0hAJp
B4YTA5mMucuI6zgPtA3ELfUjPVMI/S+pBb3MjYVwMC3lqEwV86kDe6CP0QZd5mD8
VnrCtkSHZylt5L8JtRbUPYrcD12fUAcT4gTAs88N3M7m4Pe6tF0hbPFHp2Nf/1a8
cuGgGgwZ7qZyy+LvJB6qscKS2AUPLP+t6rjvewlWi6zrKUV/UUKqW1w2CW6gEMlr
xPwaMv55ykELYxNBqYMYwtUo+F9F9attZmwnbjNTJ5yP
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:27 2025 by rpki-client