Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/vA0GjHpUBiFG1AdTRGSgEm3zZ2I.roa
File: vA0GjHpUBiFG1AdTRGSgEm3zZ2I.roa (raw, json)
Hash identifier: VdCFVtAAfSys5dVFJI8O4Y3qfwI9WQbjKsCboKnosCY=
Subject key identifier: BC:0D:06:8C:7A:54:06:21:46:D4:07:53:44:64:A0:12:6D:F3:67:62
Certificate issuer: /CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Certificate serial: 03D89ED4
Authority key identifier: 37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/vA0GjHpUBiFG1AdTRGSgEm3zZ2I.roa
Signing time: Sat 01 Jan 2022 15:05:32 +0000
ROA not before: Sat 01 Jan 2022 15:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26548
IP address blocks: 45.128.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64528084 (0x3d89ed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Validity
Not Before: Jan 1 15:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc0d068c7a54062146d407534464a0126df36762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b8:70:81:ca:75:1c:c0:6a:40:a7:27:62:a1:
a1:3b:5d:3b:15:9b:73:9b:b8:6e:5c:5e:96:ad:95:
32:90:ab:41:16:22:36:7e:92:ee:55:cb:8f:bd:05:
13:b8:58:18:95:fc:a2:f5:6e:c2:34:b1:d1:a4:9a:
a4:c3:87:45:ba:80:7c:20:6b:cc:cf:b4:e4:3e:34:
c9:a8:8c:b8:59:16:28:b4:ea:d2:7e:76:02:3e:01:
66:bd:b2:8b:75:2c:33:57:b1:a6:fc:0f:62:cf:81:
61:19:9b:3e:92:b1:94:15:8b:f3:96:46:45:96:7e:
cf:21:4d:a7:12:a4:39:5e:75:b1:d8:79:31:5a:3d:
2a:f9:25:93:40:13:00:98:45:dc:34:15:df:41:5e:
fe:7b:cd:85:de:46:f2:09:7b:25:7e:80:39:5a:ca:
f3:21:21:e3:1f:29:d3:b6:30:5f:f1:5d:22:e4:0e:
6a:80:b6:b9:f2:90:80:f1:bf:b6:8a:12:52:9c:e9:
f6:b1:e4:00:17:1d:3e:f5:59:42:15:e7:ab:93:96:
fa:ea:e4:83:6a:1b:cb:08:af:2d:76:7e:58:c8:ff:
f1:2b:82:4f:52:49:bb:ff:8d:46:1b:9c:6d:51:b6:
55:f4:fa:df:d4:6a:cd:cf:91:7b:92:59:51:43:ee:
9d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0D:06:8C:7A:54:06:21:46:D4:07:53:44:64:A0:12:6D:F3:67:62
X509v3 Authority Key Identifier:
keyid:37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/vA0GjHpUBiFG1AdTRGSgEm3zZ2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/N6i1oYlcUIggUJXC96Xv6R1TnkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.232.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:3a:e4:bf:1c:82:c5:58:4f:38:7e:35:4a:ab:fe:bc:6c:c3:
d0:21:27:63:ee:47:0f:b5:35:26:1f:00:f5:51:e6:16:11:c4:
b1:96:b4:ea:c1:fb:a1:2c:1c:3d:80:4d:3b:96:24:7f:f1:57:
c3:d8:46:07:a7:b4:76:ac:1f:24:ea:cf:e4:7d:7b:64:f3:d0:
59:3b:47:cd:ec:18:e1:cb:5c:70:03:8f:73:3c:7f:fd:60:bb:
f1:01:e0:e0:cb:f2:32:c5:e8:cb:83:5c:e7:e9:8e:29:39:66:
0b:dd:38:87:1a:36:09:1b:ff:85:91:4c:f8:b5:bc:12:c6:cd:
e1:43:90:44:15:7f:4f:da:85:9b:41:88:0d:d7:6d:f9:09:23:
37:2f:e3:1d:6f:62:37:7d:ec:60:f9:65:59:6a:89:35:78:92:
2b:f9:a3:1e:6c:17:02:61:28:33:1d:21:2c:1e:2e:94:b0:59:
89:d6:56:1c:aa:b4:66:95:42:ae:11:be:41:3f:39:4e:0d:9e:
79:9e:7e:a7:5f:2b:ed:79:20:5f:a2:d9:cb:44:92:85:44:90:
65:3b:04:34:dd:06:dd:53:0b:03:8f:59:e7:80:01:85:47:5b:
89:6e:f9:77:50:cd:4e:da:3b:4c:68:b0:d7:c1:04:a3:8b:32:
02:47:18:d2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA9ie1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
N2E4YjVhMTg5NWM1MDg4MjA1MDk1YzJmN2E1ZWZlOTFkNTM5ZTQ1MB4XDTIyMDEw
MTE1MDUzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmMwZDA2OGM3YTU0
MDYyMTQ2ZDQwNzUzNDQ2NGEwMTI2ZGYzNjc2MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM+4cIHKdRzAakCnJ2KhoTtdOxWbc5u4blxelq2VMpCrQRYi
Nn6S7lXLj70FE7hYGJX8ovVuwjSx0aSapMOHRbqAfCBrzM+05D40yaiMuFkWKLTq
0n52Aj4BZr2yi3UsM1expvwPYs+BYRmbPpKxlBWL85ZGRZZ+zyFNpxKkOV51sdh5
MVo9Kvklk0ATAJhF3DQV30Fe/nvNhd5G8gl7JX6AOVrK8yEh4x8p07YwX/FdIuQO
aoC2ufKQgPG/tooSUpzp9rHkABcdPvVZQhXnq5OW+urkg2obywivLXZ+WMj/8SuC
T1JJu/+NRhucbVG2VfT639Rqzc+Re5JZUUPunWMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS8DQaMelQGIUbUB1NEZKASbfNnYjAfBgNVHSMEGDAWgBQ3qLWhiVxQiCBQ
lcL3pe/pHVOeRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L042aTFvWWxjVUlnZ1VKWEM5Nlh2NlIxVG5rVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvYzU3ODM5LTViODEtNGRmNC04OGYwLTE0OWQ4YThlMWZjZC8x
L3ZBMEdqSHBVQmlGRzFBZFRSR1NnRW0zeloySS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
YzU3ODM5LTViODEtNGRmNC04OGYwLTE0OWQ4YThlMWZjZC8xL042aTFvWWxjVUln
Z1VKWEM5Nlh2NlIxVG5rVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2A6DANBgkqhkiG9w0BAQsFAAOC
AQEAWzrkvxyCxVhPOH41Sqv+vGzD0CEnY+5HD7U1Jh8A9VHmFhHEsZa06sH7oSwc
PYBNO5Ykf/FXw9hGB6e0dqwfJOrP5H17ZPPQWTtHzewY4ctccAOPczx//WC78QHg
4MvyMsXoy4Nc5+mOKTlmC904hxo2CRv/hZFM+LW8EsbN4UOQRBV/T9qFm0GIDddt
+QkjNy/jHW9iN33sYPllWWqJNXiSK/mjHmwXAmEoMx0hLB4ulLBZidZWHKq0ZpVC
rhG+QT85Tg2eeZ5+p18r7XkgX6LZy0SShUSQZTsENN0G3VMLA49Z54ABhUdbiW75
d1DNTto7TGiw18EEo4syAkcY0g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:21 2025 by rpki-client