Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/kIj3BSEtEXRo-dDIdwZ7b13pCmA.roa
File: kIj3BSEtEXRo-dDIdwZ7b13pCmA.roa (raw, json)
Hash identifier: +AuR3/Kwd81aZ4KdSGIE+ybK5LkX5NhOPBX87UjZq8E=
Subject key identifier: 90:88:F7:05:21:2D:11:74:68:F9:D0:C8:77:06:7B:6F:5D:E9:0A:60
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0183E72E43246A40C7FD11F7BA70AB42F862
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/kIj3BSEtEXRo-dDIdwZ7b13pCmA.roa
Signing time: Mon 17 Oct 2022 18:21:52 +0000
ROA not before: Mon 17 Oct 2022 18:21:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56729
IP address blocks: 45.91.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e7:2e:43:24:6a:40:c7:fd:11:f7:ba:70:ab:42:f8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Oct 17 18:21:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9088f705212d117468f9d0c877067b6f5de90a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:88:eb:02:dd:4a:ea:15:38:7a:0c:16:24:
08:aa:7c:81:bb:74:f7:f3:73:8b:43:39:58:32:44:
17:ed:f6:e9:59:7e:20:ba:d3:08:9c:54:63:69:57:
60:21:8c:df:0c:c6:69:66:98:42:ab:9f:b1:0f:fe:
75:43:2e:98:27:ea:59:3d:ee:d7:20:ba:40:54:05:
0f:01:02:43:cb:3a:06:9f:fa:9d:bd:98:ae:2f:9b:
36:92:9b:1a:ac:d3:4c:fc:62:5e:19:45:15:bf:44:
d8:e5:e5:d3:68:82:b3:5e:7a:19:59:bc:90:3e:15:
12:66:17:8f:0e:5b:18:4a:2d:04:2f:57:cd:de:9a:
6c:4f:0f:50:c1:62:ff:f3:e0:13:f8:5f:a4:f7:cf:
68:19:86:81:e9:35:db:6c:42:c2:2b:b2:c9:97:b4:
4e:8b:bf:f7:38:70:d7:24:22:fa:0e:2a:96:2b:47:
c0:8b:98:54:70:35:66:82:c5:37:d9:a7:5e:1c:b9:
12:b1:68:ac:cf:0d:6b:73:7d:11:f4:78:09:84:73:
c0:27:7d:d8:90:00:8b:e0:ac:c1:ce:b4:a5:43:f4:
1f:f5:c5:9b:1d:2d:9b:1e:54:d3:ff:34:ce:ed:93:
e7:1a:9c:e3:90:f4:f0:e4:5d:38:84:b7:97:eb:e8:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:88:F7:05:21:2D:11:74:68:F9:D0:C8:77:06:7B:6F:5D:E9:0A:60
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/kIj3BSEtEXRo-dDIdwZ7b13pCmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.5.0/24
Signature Algorithm: sha256WithRSAEncryption
96:47:33:07:60:a0:f1:56:3d:1b:01:c0:df:d5:6b:f9:f8:8a:
bb:91:d0:90:83:71:d1:4c:f7:63:c2:3b:6a:d9:c6:8b:50:f6:
88:c4:3d:9f:7f:97:ac:75:4f:da:f1:54:24:66:00:41:57:0f:
96:5c:5d:b7:8c:4d:e6:28:43:6d:a1:84:b9:ac:ea:cc:d3:41:
87:15:a6:da:50:d6:31:a3:06:d3:5c:17:8b:bd:6a:2f:d0:56:
a4:35:1e:b5:85:4e:80:cd:43:21:dc:b9:7e:77:f6:15:09:66:
e2:3e:60:48:6f:5f:65:7e:d7:24:ae:fd:c9:4a:d2:36:b3:0e:
b8:44:28:f4:18:82:a7:82:fc:8d:7b:fd:76:c1:85:a7:95:2b:
64:e6:cd:bd:80:b4:44:1e:eb:66:ca:0c:e7:99:40:20:2f:f7:
11:59:ee:be:95:fe:ed:30:fb:68:3c:ee:0c:74:ed:08:ac:8d:
02:f8:10:1e:a4:50:47:02:42:92:a3:e7:8b:b3:9d:50:4b:76:
86:59:cf:ce:c7:cf:75:6e:13:ab:75:5f:c0:ac:de:12:6d:c8:
a0:72:67:5a:7d:8a:51:b6:9b:9a:f2:62:32:43:32:e1:28:64:
96:74:0a:b1:78:9e:81:25:75:62:e3:12:c7:4e:cc:1a:a4:89:
1e:a0:80:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPnLkMkakDH/RH3unCrQvhiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmODIzMDlhNjgxNDY3OGFkNzJlM2YzMWE0ZmUwMjcyZjQw
YmQ5ODYwHhcNMjIxMDE3MTgyMTUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDg4ZjcwNTIxMmQxMTc0NjhmOWQwYzg3NzA2N2I2ZjVkZTkwYTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaqI6wLdSuoVOHoMFiQIqnyBu3T3
83OLQzlYMkQX7fbpWX4gutMInFRjaVdgIYzfDMZpZphCq5+xD/51Qy6YJ+pZPe7X
ILpAVAUPAQJDyzoGn/qdvZiuL5s2kpsarNNM/GJeGUUVv0TY5eXTaIKzXnoZWbyQ
PhUSZhePDlsYSi0EL1fN3ppsTw9QwWL/8+AT+F+k989oGYaB6TXbbELCK7LJl7RO
i7/3OHDXJCL6DiqWK0fAi5hUcDVmgsU32adeHLkSsWiszw1rc30R9HgJhHPAJ33Y
kACL4KzBzrSlQ/Qf9cWbHS2bHlTT/zTO7ZPnGpzjkPTw5F04hLeX6+j5mQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJCI9wUhLRF0aPnQyHcGe29d6QpgMB8GA1UdIwQY
MBaAFP+CMJpoFGeK1y4/MaT+AnL0C9mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTkt
ZjUyNTgxNjQwMmJkLzEva0lqM0JTRXRFWFJvLWRESWR3WjdiMTNwQ21BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTktZjUyNTgxNjQwMmJk
LzEvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVsFMA0G
CSqGSIb3DQEBCwUAA4IBAQCWRzMHYKDxVj0bAcDf1Wv5+Iq7kdCQg3HRTPdjwjtq
2caLUPaIxD2ff5esdU/a8VQkZgBBVw+WXF23jE3mKENtoYS5rOrM00GHFabaUNYx
owbTXBeLvWov0FakNR61hU6AzUMh3Ll+d/YVCWbiPmBIb19lftckrv3JStI2sw64
RCj0GIKngvyNe/12wYWnlStk5s29gLREHutmygznmUAgL/cRWe6+lf7tMPtoPO4M
dO0IrI0C+BAepFBHAkKSo+eLs51QS3aGWc/Ox891bhOrdV/ArN4SbcigcmdafYpR
tpua8mIyQzLhKGSWdAqxeJ6BJXVi4xLHTswapIkeoIDt
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:50 2025 by rpki-client