Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/70db6c-d162-4d49-8849-d2accda08bee/1/nIiAR3zoWfXOBW2a9U1_6aY8QOU.roa
File: nIiAR3zoWfXOBW2a9U1_6aY8QOU.roa (raw, json)
Hash identifier: QPnBiPAKk2vWkcBn7fWcRl3cCEQgIXYTeE4oi3akuw8=
Subject key identifier: 9C:88:80:47:7C:E8:59:F5:CE:05:6D:9A:F5:4D:7F:E9:A6:3C:40:E5
Certificate issuer: /CN=5d55260cebf2a73ca14709d96d24a5ff3bcb5dc4
Certificate serial: 07A83135
Authority key identifier: 5D:55:26:0C:EB:F2:A7:3C:A1:47:09:D9:6D:24:A5:FF:3B:CB:5D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVUmDOvypzyhRwnZbSSl_zvLXcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/70db6c-d162-4d49-8849-d2accda08bee/1/nIiAR3zoWfXOBW2a9U1_6aY8QOU.roa
Signing time: Sat 01 Jan 2022 14:01:13 +0000
ROA not before: Sat 01 Jan 2022 14:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210538
IP address blocks: 45.155.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128463157 (0x7a83135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d55260cebf2a73ca14709d96d24a5ff3bcb5dc4
Validity
Not Before: Jan 1 14:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c8880477ce859f5ce056d9af54d7fe9a63c40e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:12:00:7c:94:f2:69:de:e1:8d:db:b6:09:03:
ea:ae:26:b4:c2:82:ef:ec:0f:40:ba:28:08:46:a2:
50:7b:c2:01:19:b3:36:b0:a1:f1:e6:5e:c5:53:c2:
1c:97:2a:ab:90:7a:42:53:d3:8e:3b:90:7c:cc:a8:
f3:47:4d:df:9d:5b:92:2b:91:71:3c:8a:c1:35:5b:
bb:36:82:70:44:11:5f:3d:d6:c3:20:47:70:1f:24:
0e:c7:27:ce:a3:0f:8f:ce:7f:6f:33:05:1e:9c:13:
6f:ab:fb:9c:02:80:ee:9f:b6:35:46:ea:df:c4:91:
b7:a5:fb:8e:7c:c6:f7:3d:7c:a1:11:0a:e0:1e:ba:
10:ff:55:5f:a5:b5:02:04:f0:df:1c:d7:04:47:62:
ca:59:32:32:b6:6e:6d:fe:87:1e:ff:7a:78:1c:2e:
ef:dc:ee:51:97:1a:f5:33:ae:a9:c5:ca:a8:85:50:
6d:4d:f5:7d:e6:39:3c:4e:df:54:1e:9c:90:1d:68:
07:9a:fa:c7:4c:72:d5:67:c3:00:7c:07:d8:48:df:
d7:63:53:cd:d0:4c:c6:f6:01:ac:48:c5:fa:3a:d5:
05:80:e3:ab:40:a6:d6:2b:ad:a1:30:db:fc:b6:7c:
09:97:34:0d:df:32:78:f8:51:98:fd:a5:a6:b9:f4:
63:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:88:80:47:7C:E8:59:F5:CE:05:6D:9A:F5:4D:7F:E9:A6:3C:40:E5
X509v3 Authority Key Identifier:
keyid:5D:55:26:0C:EB:F2:A7:3C:A1:47:09:D9:6D:24:A5:FF:3B:CB:5D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVUmDOvypzyhRwnZbSSl_zvLXcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/70db6c-d162-4d49-8849-d2accda08bee/1/nIiAR3zoWfXOBW2a9U1_6aY8QOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/70db6c-d162-4d49-8849-d2accda08bee/1/XVUmDOvypzyhRwnZbSSl_zvLXcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.124.0/24
Signature Algorithm: sha256WithRSAEncryption
83:18:56:d1:62:03:69:11:6d:af:05:a3:83:17:38:ff:25:b3:
11:3e:59:9b:58:68:67:a0:f9:be:12:1e:6a:67:09:b9:81:16:
d6:7e:a9:37:0c:d2:16:ff:29:18:e6:b8:ff:8a:f1:4d:a3:ef:
94:0a:3d:65:d7:43:7b:54:f5:59:fc:9c:6a:6b:70:4b:6b:2a:
8a:b9:67:b7:72:aa:82:58:0f:ad:7d:d2:c2:e4:b8:1d:ac:e3:
c6:3e:87:11:bf:4c:fa:6b:d6:41:d4:01:c9:10:95:27:36:ab:
18:da:fe:61:3e:82:50:82:f9:b6:c4:8b:b5:d1:bb:25:9f:96:
8f:1e:d1:37:96:f7:9a:9f:ab:48:fb:60:fa:af:ce:3c:15:7c:
26:52:35:b2:6d:91:b6:96:a0:59:76:bd:76:98:bd:05:c0:a2:
ae:e8:b5:fc:86:fd:f5:a0:66:ed:ac:40:24:cc:13:f1:16:48:
10:6d:76:00:d8:0c:2c:11:0c:3e:f3:b7:2b:35:91:15:bd:45:
e7:f4:65:27:e4:0e:6d:25:ee:f1:68:91:5a:6e:08:5d:df:6b:
57:a4:33:cb:6a:0f:7d:79:5a:c7:2a:06:a3:b1:0e:33:d6:a3:
74:b1:c7:d2:92:1d:d0:59:49:d8:81:b2:6e:d1:b2:c3:ea:88:
68:61:61:59
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6gxNTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDU1MjYwY2ViZjJhNzNjYTE0NzA5ZDk2ZDI0YTVmZjNiY2I1ZGM0MB4XDTIyMDEw
MTE0MDExM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWM4ODgwNDc3Y2U4
NTlmNWNlMDU2ZDlhZjU0ZDdmZTlhNjNjNDBlNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUSAHyU8mne4Y3btgkD6q4mtMKC7+wPQLooCEaiUHvCARmz
NrCh8eZexVPCHJcqq5B6QlPTjjuQfMyo80dN351bkiuRcTyKwTVbuzaCcEQRXz3W
wyBHcB8kDscnzqMPj85/bzMFHpwTb6v7nAKA7p+2NUbq38SRt6X7jnzG9z18oREK
4B66EP9VX6W1AgTw3xzXBEdiylkyMrZubf6HHv96eBwu79zuUZca9TOuqcXKqIVQ
bU31feY5PE7fVB6ckB1oB5r6x0xy1WfDAHwH2Ejf12NTzdBMxvYBrEjF+jrVBYDj
q0Cm1iutoTDb/LZ8CZc0Dd8yePhRmP2lprn0Y5cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSciIBHfOhZ9c4FbZr1TX/ppjxA5TAfBgNVHSMEGDAWgBRdVSYM6/KnPKFH
CdltJKX/O8tdxDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hWVW1ET3Z5cHp5aFJ3blpiU1NsX3p2TFhjUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTYvNzBkYjZjLWQxNjItNGQ0OS04ODQ5LWQyYWNjZGEwOGJlZS8x
L25JaUFSM3pvV2ZYT0JXMmE5VTFfNmFZOFFPVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYv
NzBkYjZjLWQxNjItNGQ0OS04ODQ5LWQyYWNjZGEwOGJlZS8xL1hWVW1ET3Z5cHp5
aFJ3blpiU1NsX3p2TFhjUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2bfDANBgkqhkiG9w0BAQsFAAOC
AQEAgxhW0WIDaRFtrwWjgxc4/yWzET5Zm1hoZ6D5vhIeamcJuYEW1n6pNwzSFv8p
GOa4/4rxTaPvlAo9ZddDe1T1WfycamtwS2sqirlnt3KqglgPrX3SwuS4Hazjxj6H
Eb9M+mvWQdQByRCVJzarGNr+YT6CUIL5tsSLtdG7JZ+Wjx7RN5b3mp+rSPtg+q/O
PBV8JlI1sm2RtpagWXa9dpi9BcCirui1/Ib99aBm7axAJMwT8RZIEG12ANgMLBEM
PvO3KzWRFb1F5/RlJ+QObSXu8WiRWm4IXd9rV6Qzy2oPfXlaxyoGo7EOM9ajdLHH
0pId0FlJ2IGybtGyw+qIaGFhWQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org