Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/231914-032a-41ef-8975-9533a8491425/1/2VRehhOMAadLFQMgdtsBgHJk8-w.roa
File: 2VRehhOMAadLFQMgdtsBgHJk8-w.roa (raw, json)
Hash identifier: r8Oolrr9Rcthxq6ss6PhW9+c2Ob8gVwIsh6y94qMzSY=
Subject key identifier: D9:54:5E:86:13:8C:01:A7:4B:15:03:20:76:DB:01:80:72:64:F3:EC
Certificate issuer: /CN=225e7ba910679ece289a4678aadff0f9d2c1d1a1
Certificate serial: 0817862E
Authority key identifier: 22:5E:7B:A9:10:67:9E:CE:28:9A:46:78:AA:DF:F0:F9:D2:C1:D1:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Il57qRBnns4omkZ4qt_w-dLB0aE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/231914-032a-41ef-8975-9533a8491425/1/2VRehhOMAadLFQMgdtsBgHJk8-w.roa
Signing time: Tue 28 Jun 2022 11:26:02 +0000
ROA not before: Tue 28 Jun 2022 11:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208126
IP address blocks: 45.128.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135759406 (0x817862e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225e7ba910679ece289a4678aadff0f9d2c1d1a1
Validity
Not Before: Jun 28 11:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9545e86138c01a74b15032076db01807264f3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:62:d5:78:89:f5:3b:43:16:64:78:f3:b4:9d:
7f:fd:29:cc:fb:dc:fe:bc:fa:e0:e7:d1:e7:cc:a4:
34:41:fc:5b:be:7a:50:d3:72:5e:b0:a0:74:f2:e7:
89:e7:23:c6:51:19:0d:27:55:7b:3c:65:67:fb:94:
d6:5a:d4:27:88:d3:0d:7e:1f:45:f0:0f:cf:8e:fa:
6f:b7:2e:5d:39:7b:f4:49:9c:c0:b2:6d:0c:dc:47:
83:50:49:59:93:a3:77:89:17:34:42:3f:77:79:0b:
f1:30:9e:4a:d3:78:5f:de:b2:4d:8a:0f:90:83:e8:
25:e7:9a:a6:df:72:b9:a0:7c:e6:e2:12:62:ec:b5:
e9:39:f8:97:fb:c0:6a:d8:c4:0c:57:b2:03:eb:30:
f0:35:c5:ad:88:79:a9:22:ab:42:33:8f:9e:79:41:
c5:9c:c4:a9:b8:b4:7b:79:7a:cd:69:dc:84:e6:b6:
38:96:15:3e:c7:c3:72:eb:ff:70:f3:9c:18:99:0d:
3d:62:5b:b9:05:85:e8:c7:74:8c:b7:32:6e:96:11:
08:da:df:44:10:35:f2:73:e2:fb:47:5a:80:4a:34:
2f:2b:4e:be:a3:a3:dd:31:0e:16:a8:9f:3f:8a:af:
27:88:48:09:74:6c:7d:dd:dd:63:57:f4:22:ba:eb:
4e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:54:5E:86:13:8C:01:A7:4B:15:03:20:76:DB:01:80:72:64:F3:EC
X509v3 Authority Key Identifier:
keyid:22:5E:7B:A9:10:67:9E:CE:28:9A:46:78:AA:DF:F0:F9:D2:C1:D1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Il57qRBnns4omkZ4qt_w-dLB0aE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/231914-032a-41ef-8975-9533a8491425/1/2VRehhOMAadLFQMgdtsBgHJk8-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/231914-032a-41ef-8975-9533a8491425/1/Il57qRBnns4omkZ4qt_w-dLB0aE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.68.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3c:17:84:a1:99:13:c5:e7:72:d9:76:c8:d6:bd:1e:b3:a9:
25:2c:0f:fb:cc:49:45:61:36:79:14:47:f0:37:2f:19:8f:d5:
7c:64:22:a8:2f:7f:b8:f8:5e:d8:1d:c2:57:56:ac:e4:39:ba:
a3:83:c1:f4:f8:fb:23:a6:cf:2d:98:60:93:a3:a8:6c:00:41:
b3:b4:71:b8:3a:b2:bd:88:67:f0:2c:e7:77:7f:a3:f9:e0:71:
d6:b4:fc:a5:a8:c7:71:7b:c4:df:58:17:ef:87:99:cf:28:dd:
bc:ae:14:79:4b:b0:08:fd:47:40:c2:76:ca:64:23:eb:bc:db:
2f:c2:b0:18:b2:30:97:5f:85:8e:e9:8f:08:ea:0e:c7:51:61:
f2:f0:f7:96:6e:83:67:2e:1b:99:15:8c:c4:33:4d:b9:c4:c2:
4f:15:b7:20:ba:78:f5:e4:39:fa:82:f7:a5:78:78:8f:af:4d:
54:3e:71:99:bd:32:b8:09:67:09:1e:05:4e:6c:95:26:4e:b0:
dc:a9:2b:35:f5:4f:12:59:dd:c5:09:2f:ac:ef:49:3a:b6:a8:
c3:65:57:78:23:a7:5c:4e:aa:b8:ca:a3:0c:c4:23:85:89:df:
41:02:1f:fe:ae:74:e1:73:6a:13:f2:8b:1f:2c:c6:b7:61:b0:
d1:50:02:6f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECBeGLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MjVlN2JhOTEwNjc5ZWNlMjg5YTQ2NzhhYWRmZjBmOWQyYzFkMWExMB4XDTIyMDYy
ODExMjYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDk1NDVlODYxMzhj
MDFhNzRiMTUwMzIwNzZkYjAxODA3MjY0ZjNlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJli1XiJ9TtDFmR487Sdf/0pzPvc/rz64OfR58ykNEH8W756
UNNyXrCgdPLniecjxlEZDSdVezxlZ/uU1lrUJ4jTDX4fRfAPz476b7cuXTl79Emc
wLJtDNxHg1BJWZOjd4kXNEI/d3kL8TCeStN4X96yTYoPkIPoJeeapt9yuaB85uIS
Yuy16Tn4l/vAatjEDFeyA+sw8DXFrYh5qSKrQjOPnnlBxZzEqbi0e3l6zWnchOa2
OJYVPsfDcuv/cPOcGJkNPWJbuQWF6Md0jLcybpYRCNrfRBA18nPi+0dagEo0LytO
vqOj3TEOFqifP4qvJ4hICXRsfd3dY1f0IrrrTusCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTZVF6GE4wBp0sVAyB22wGAcmTz7DAfBgNVHSMEGDAWgBQiXnupEGeeziia
Rniq3/D50sHRoTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lsNTdxUkJubnM0b21rWjRxdF93LWRMQjBhRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODUvMjMxOTE0LTAzMmEtNDFlZi04OTc1LTk1MzNhODQ5MTQyNS8x
LzJWUmVoaE9NQWFkTEZRTWdkdHNCZ0hKazgtdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUv
MjMxOTE0LTAzMmEtNDFlZi04OTc1LTk1MzNhODQ5MTQyNS8xL0lsNTdxUkJubnM0
b21rWjRxdF93LWRMQjBhRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2ARDANBgkqhkiG9w0BAQsFAAOC
AQEAazwXhKGZE8Xnctl2yNa9HrOpJSwP+8xJRWE2eRRH8DcvGY/VfGQiqC9/uPhe
2B3CV1as5Dm6o4PB9Pj7I6bPLZhgk6OobABBs7RxuDqyvYhn8Cznd3+j+eBx1rT8
pajHcXvE31gX74eZzyjdvK4UeUuwCP1HQMJ2ymQj67zbL8KwGLIwl1+FjumPCOoO
x1Fh8vD3lm6DZy4bmRWMxDNNucTCTxW3ILp49eQ5+oL3pXh4j69NVD5xmb0yuAln
CR4FTmyVJk6w3KkrNfVPElndxQkvrO9JOraow2VXeCOnXE6quMqjDMQjhYnfQQIf
/q504XNqE/KLHyzGt2Gw0VACbw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:05 2025 by rpki-client