Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/8hmeUq6W-_w_blcH8q7vVtCXbiw.roa
File: 8hmeUq6W-_w_blcH8q7vVtCXbiw.roa (raw, json)
Hash identifier: lizXshI+zmP0P74QAuCIGokrPVQ4zinsnZJ0mRXk44k=
Subject key identifier: F2:19:9E:52:AE:96:FB:FC:3F:6E:57:07:F2:AE:EF:56:D0:97:6E:2C
Certificate issuer: /CN=0795d47b63a0fe19d3f001845bcfe201c8e60aa3
Certificate serial: 01EDE695
Authority key identifier: 07:95:D4:7B:63:A0:FE:19:D3:F0:01:84:5B:CF:E2:01:C8:E6:0A:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5XUe2Og_hnT8AGEW8_iAcjmCqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/8hmeUq6W-_w_blcH8q7vVtCXbiw.roa
Signing time: Tue 08 Feb 2022 13:15:27 +0000
ROA not before: Tue 08 Feb 2022 13:15:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.91.195.0/24 maxlen: 24
45.91.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32368277 (0x1ede695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0795d47b63a0fe19d3f001845bcfe201c8e60aa3
Validity
Not Before: Feb 8 13:15:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2199e52ae96fbfc3f6e5707f2aeef56d0976e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ca:f6:2c:70:4d:67:1f:0a:d3:7a:c9:0d:d4:
e0:bf:52:cb:88:ba:70:a9:aa:63:41:29:d5:de:be:
9e:ce:cd:7d:74:4e:55:31:6f:62:c3:eb:ff:93:18:
f5:39:cd:4d:1c:e4:5a:1a:51:e2:93:1b:b9:97:89:
db:3f:28:a4:8d:c4:57:53:f4:5e:fb:e7:ed:74:20:
70:d7:e4:54:f1:94:a4:3e:08:14:6a:1b:e0:23:88:
62:b5:19:df:28:5c:cb:a4:d3:8c:72:6a:12:9e:8a:
fb:25:b6:91:44:c1:9b:25:53:a5:e1:f4:a8:09:11:
28:db:84:a9:21:9c:9b:76:eb:0e:42:86:15:9a:67:
27:bb:30:5b:bc:da:a1:32:2a:6a:87:1a:ed:f8:d4:
81:77:5e:5d:cd:2c:c2:09:37:28:1e:bd:03:3c:eb:
97:42:0c:f6:64:03:12:d3:29:6f:cb:15:2c:7a:6c:
e3:6e:a5:82:43:16:df:6f:1d:83:30:46:58:bc:9c:
03:05:be:7d:32:e3:8f:4e:ff:74:da:b5:40:46:ad:
81:ff:a9:8a:11:0d:d5:66:46:d5:10:26:5f:de:cf:
7c:3f:e6:14:ba:bf:a9:d7:36:8e:01:71:29:73:b9:
c3:7d:fe:06:9e:42:33:ea:77:72:03:84:c5:66:60:
b0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:19:9E:52:AE:96:FB:FC:3F:6E:57:07:F2:AE:EF:56:D0:97:6E:2C
X509v3 Authority Key Identifier:
keyid:07:95:D4:7B:63:A0:FE:19:D3:F0:01:84:5B:CF:E2:01:C8:E6:0A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5XUe2Og_hnT8AGEW8_iAcjmCqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/8hmeUq6W-_w_blcH8q7vVtCXbiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/B5XUe2Og_hnT8AGEW8_iAcjmCqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.194.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:2a:7f:e8:5b:35:bc:25:64:08:e3:14:12:db:ca:c4:14:97:
b7:3c:cf:09:a2:e4:40:8c:2e:ba:5e:84:90:df:f0:d6:2d:cc:
b0:7b:11:cd:a7:d3:41:2a:f6:56:03:74:82:b3:7e:ab:5a:fe:
3d:ab:b4:39:cd:f4:90:a0:58:51:d5:88:e8:ce:73:22:b8:12:
9f:c4:ae:5f:eb:37:8a:53:72:39:e7:61:4a:10:c4:20:3a:57:
68:a6:df:8c:26:2e:46:66:e5:9f:30:8c:4f:9b:3c:b8:64:ef:
a2:85:4c:33:03:e3:c0:a7:4d:4c:de:d1:eb:0e:38:61:4a:0a:
31:34:ff:7f:61:24:cc:60:7c:69:62:e4:11:d9:c6:1b:5c:c6:
1b:08:7a:49:c6:55:11:71:2e:20:81:cb:07:b1:a8:b0:c6:a6:
0c:21:ff:76:3f:58:74:83:15:fd:2f:57:a4:f9:be:c8:35:a3:
18:8c:c8:ad:8d:46:f5:30:be:07:04:28:48:8e:d9:d5:80:82:
ec:90:df:1c:f3:ba:14:bc:14:7f:ef:f9:77:d2:5c:5a:23:93:
19:40:a4:b2:57:1f:43:77:35:39:e9:2b:9e:fc:c2:16:b2:b6:
43:78:98:ed:fc:d0:29:0a:63:fb:02:9a:b8:ef:42:53:f6:13:
c8:49:8b:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAe3mlTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
Nzk1ZDQ3YjYzYTBmZTE5ZDNmMDAxODQ1YmNmZTIwMWM4ZTYwYWEzMB4XDTIyMDIw
ODEzMTUyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjIxOTllNTJhZTk2
ZmJmYzNmNmU1NzA3ZjJhZWVmNTZkMDk3NmUyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDK9ixwTWcfCtN6yQ3U4L9Sy4i6cKmqY0Ep1d6+ns7NfXRO
VTFvYsPr/5MY9TnNTRzkWhpR4pMbuZeJ2z8opI3EV1P0Xvvn7XQgcNfkVPGUpD4I
FGob4COIYrUZ3yhcy6TTjHJqEp6K+yW2kUTBmyVTpeH0qAkRKNuEqSGcm3brDkKG
FZpnJ7swW7zaoTIqaoca7fjUgXdeXc0swgk3KB69Azzrl0IM9mQDEtMpb8sVLHps
426lgkMW328dgzBGWLycAwW+fTLjj07/dNq1QEatgf+pihEN1WZG1RAmX97PfD/m
FLq/qdc2jgFxKXO5w33+Bp5CM+p3cgOExWZgsPkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTyGZ5Srpb7/D9uVwfyru9W0JduLDAfBgNVHSMEGDAWgBQHldR7Y6D+GdPw
AYRbz+IByOYKozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0I1WFVlMk9nX2huVDhBR0VXOF9pQWNqbUNxTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGYvNDQwOWI4LWE4MWUtNDI5YS05N2EyLTQ2YzM5MTUwODQzNi8x
LzhobWVVcTZXLV93X2JsY0g4cTd2VnRDWGJpdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYv
NDQwOWI4LWE4MWUtNDI5YS05N2EyLTQ2YzM5MTUwODQzNi8xL0I1WFVlMk9nX2hu
VDhBR0VXOF9pQWNqbUNxTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1bwjANBgkqhkiG9w0BAQsFAAOC
AQEALyp/6Fs1vCVkCOMUEtvKxBSXtzzPCaLkQIwuul6EkN/w1i3MsHsRzafTQSr2
VgN0grN+q1r+Pau0Oc30kKBYUdWI6M5zIrgSn8SuX+s3ilNyOedhShDEIDpXaKbf
jCYuRmblnzCMT5s8uGTvooVMMwPjwKdNTN7R6w44YUoKMTT/f2EkzGB8aWLkEdnG
G1zGGwh6ScZVEXEuIIHLB7GosMamDCH/dj9YdIMV/S9XpPm+yDWjGIzIrY1G9TC+
BwQoSI7Z1YCC7JDfHPO6FLwUf+/5d9JcWiOTGUCkslcfQ3c1OekrnvzCFrK2Q3iY
7fzQKQpj+wKauO9CU/YTyEmLng==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-ams.rpki-client.org