Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/75c34e-d5b6-4d14-9568-5b590b8fe4f8/1/pNluUSHWYRhFVV-60SjQKaofOwk.roa
File: pNluUSHWYRhFVV-60SjQKaofOwk.roa (raw, json)
Hash identifier: 4rojl8vIYQY3uIX/SHQsW9n4+lXsmb2WwL1Op+QBGZM=
Subject key identifier: A4:D9:6E:51:21:D6:61:18:45:55:5F:BA:D1:28:D0:29:AA:1F:3B:09
Certificate issuer: /CN=d5e927f45b862110e64c16266cbedc32997b43f5
Certificate serial: 07565E9E
Authority key identifier: D5:E9:27:F4:5B:86:21:10:E6:4C:16:26:6C:BE:DC:32:99:7B:43:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ekn9FuGIRDmTBYmbL7cMpl7Q_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/75c34e-d5b6-4d14-9568-5b590b8fe4f8/1/pNluUSHWYRhFVV-60SjQKaofOwk.roa
Signing time: Sat 01 Jan 2022 03:56:38 +0000
ROA not before: Sat 01 Jan 2022 03:56:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41114
IP address blocks: 45.151.16.0/22 maxlen: 22
2a0f:d00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123100830 (0x7565e9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e927f45b862110e64c16266cbedc32997b43f5
Validity
Not Before: Jan 1 03:56:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4d96e5121d6611845555fbad128d029aa1f3b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:24:a6:ca:5c:27:60:d4:14:13:8d:f9:a5:66:
a6:69:60:cb:4f:7c:e0:37:dc:f4:6e:69:3c:13:54:
dc:13:b4:b8:51:05:34:33:35:b9:54:63:ac:c3:bc:
8d:3f:28:af:4d:be:8c:1a:89:84:df:d1:0b:89:a9:
33:23:8c:80:20:1a:08:05:f9:37:39:df:bb:00:1e:
c1:64:9d:54:b9:28:93:0b:9c:dd:5f:66:4c:d3:aa:
8b:16:9b:0b:60:df:06:e4:e7:a3:85:77:75:55:a3:
fd:fa:cf:bd:5b:f2:cd:49:66:b7:5a:ad:ef:94:c3:
98:ca:b1:1d:b3:7e:1a:75:f5:79:e5:49:bf:73:01:
25:a5:ad:5e:02:08:e6:86:63:c7:b8:0a:f0:8e:ef:
ef:b5:47:82:11:b1:36:41:4e:04:99:72:89:d9:1a:
e4:9d:e9:4d:9f:9b:b1:4f:c3:00:ab:2e:02:f0:19:
cd:5c:28:66:a9:fb:b4:26:82:68:9e:20:1e:d8:c3:
d9:fc:ea:74:73:38:1b:fd:56:e5:1a:0c:7d:93:30:
a3:e9:e8:34:16:21:0c:16:20:50:80:7b:00:67:21:
cd:97:ec:79:bb:8b:bb:13:78:a2:42:a8:55:c9:c2:
da:e2:5a:c6:2a:56:6b:69:0c:63:b1:d4:1d:d9:66:
ff:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D9:6E:51:21:D6:61:18:45:55:5F:BA:D1:28:D0:29:AA:1F:3B:09
X509v3 Authority Key Identifier:
keyid:D5:E9:27:F4:5B:86:21:10:E6:4C:16:26:6C:BE:DC:32:99:7B:43:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ekn9FuGIRDmTBYmbL7cMpl7Q_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/75c34e-d5b6-4d14-9568-5b590b8fe4f8/1/pNluUSHWYRhFVV-60SjQKaofOwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/75c34e-d5b6-4d14-9568-5b590b8fe4f8/1/1ekn9FuGIRDmTBYmbL7cMpl7Q_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.16.0/22
IPv6:
2a0f:d00::/32
Signature Algorithm: sha256WithRSAEncryption
03:5f:af:40:1d:27:10:af:1b:37:54:ad:5b:74:58:ca:ae:9b:
f3:79:a9:9b:18:6d:1f:09:b2:6d:f7:0a:25:f3:12:63:5a:d3:
48:ec:f7:8f:d9:42:01:f7:30:37:dd:4d:c2:3c:a9:88:05:1a:
05:86:18:5c:d1:ba:5e:a0:60:7f:75:ba:6a:78:0a:2e:03:ac:
bc:10:6f:3e:9e:06:68:0c:ab:71:94:99:4e:c1:74:2d:0d:d1:
ea:d9:20:06:a3:dd:9f:0e:c5:d4:52:68:ea:20:dd:95:77:7a:
0c:6e:a9:60:f5:b5:80:00:d7:a0:85:a4:fd:f8:15:9f:ab:8b:
ae:19:2f:0a:7e:d5:7b:3f:30:f9:08:57:b4:30:3a:22:e2:1a:
3f:e8:19:21:03:bf:07:44:8b:ed:0f:f6:3c:91:91:90:62:bb:
ea:fe:ac:da:b4:a5:51:f9:9f:23:d4:9f:c6:ca:1d:b7:8b:dd:
c6:bb:b4:73:f8:10:b9:eb:6e:3e:25:0e:18:23:1c:84:5a:5b:
4d:81:2b:92:ad:99:6d:ff:78:14:e6:25:39:b3:e1:9a:d6:88:
83:b5:28:f9:1c:6f:9c:95:9e:bc:96:5b:ed:9f:98:c1:58:50:
f3:8b:3a:2b:d1:f0:49:63:21:cf:9e:50:35:d1:ec:e3:c6:a1:
fd:b7:e1:d7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEB1ZenjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NWU5MjdmNDViODYyMTEwZTY0YzE2MjY2Y2JlZGMzMjk5N2I0M2Y1MB4XDTIyMDEw
MTAzNTYzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTRkOTZlNTEyMWQ2
NjExODQ1NTU1ZmJhZDEyOGQwMjlhYTFmM2IwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOokpspcJ2DUFBON+aVmpmlgy0984Dfc9G5pPBNU3BO0uFEF
NDM1uVRjrMO8jT8or02+jBqJhN/RC4mpMyOMgCAaCAX5NznfuwAewWSdVLkokwuc
3V9mTNOqixabC2DfBuTno4V3dVWj/frPvVvyzUlmt1qt75TDmMqxHbN+GnX1eeVJ
v3MBJaWtXgII5oZjx7gK8I7v77VHghGxNkFOBJlyidka5J3pTZ+bsU/DAKsuAvAZ
zVwoZqn7tCaCaJ4gHtjD2fzqdHM4G/1W5RoMfZMwo+noNBYhDBYgUIB7AGchzZfs
ebuLuxN4okKoVcnC2uJaxipWa2kMY7HUHdlm/7cCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSk2W5RIdZhGEVVX7rRKNApqh87CTAfBgNVHSMEGDAWgBTV6Sf0W4YhEOZM
FiZsvtwymXtD9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFla245RnVHSVJEbVRCWW1iTDdjTXBsN1FfVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvNzVjMzRlLWQ1YjYtNGQxNC05NTY4LTViNTkwYjhmZTRmOC8x
L3BObHVVU0hXWVJoRlZWLTYwU2pRS2FvZk93ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
NzVjMzRlLWQ1YjYtNGQxNC05NTY4LTViNTkwYjhmZTRmOC8xLzFla245RnVHSVJE
bVRCWW1iTDdjTXBsN1FfVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi2XEDANBAIAAjAHAwUAKg8NADAN
BgkqhkiG9w0BAQsFAAOCAQEAA1+vQB0nEK8bN1StW3RYyq6b83mpmxhtHwmybfcK
JfMSY1rTSOz3j9lCAfcwN91NwjypiAUaBYYYXNG6XqBgf3W6angKLgOsvBBvPp4G
aAyrcZSZTsF0LQ3R6tkgBqPdnw7F1FJo6iDdlXd6DG6pYPW1gADXoIWk/fgVn6uL
rhkvCn7Vez8w+QhXtDA6IuIaP+gZIQO/B0SL7Q/2PJGRkGK76v6s2rSlUfmfI9Sf
xsodt4vdxru0c/gQuetuPiUOGCMchFpbTYErkq2Zbf94FOYlObPhmtaIg7Uo+Rxv
nJWevJZb7Z+YwVhQ84s6K9HwSWMhz55QNdHs48ah/bfh1w==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:03:20 2025 by rpki-client