Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sysasUI3NN6nOfFfcJpboPMnq0c.roa
File: sysasUI3NN6nOfFfcJpboPMnq0c.roa (raw, json)
Hash identifier: B0jACxlSTPfAt9S3IvxO3Bokasao25W0AZPywDLbTTI=
Subject key identifier: B3:2B:1A:B1:42:37:34:DE:A7:39:F1:5F:70:9A:5B:A0:F3:27:AB:47
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0194266BE2EE8B42A121A3C86E49977CA727
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sysasUI3NN6nOfFfcJpboPMnq0c.roa
Signing time: Thu 02 Jan 2025 09:49:52 +0000
ROA not before: Thu 02 Jan 2025 09:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48646
IP address blocks: 45.152.124.0/24 maxlen: 24
2a0f:5707:aac0::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:e2:ee:8b:42:a1:21:a3:c8:6e:49:97:7c:a7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 09:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b32b1ab1423734dea739f15f709a5ba0f327ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6d:23:7a:f9:2d:f4:a0:44:8e:57:c5:13:85:
d3:37:dd:ee:64:f4:4d:5a:90:07:2a:8d:73:41:96:
85:4e:2a:cc:62:db:77:69:a8:93:fa:ad:54:62:89:
61:b9:4a:d5:24:7d:ad:a5:ad:e5:7b:13:3e:a4:af:
99:d2:ac:ae:72:f7:20:65:88:eb:00:8a:4c:f2:23:
d6:cc:af:f9:50:e5:e2:8f:8e:60:a0:0a:8b:b6:0a:
97:e0:b6:7f:c5:22:43:45:ba:bd:c8:88:ab:7c:e5:
7b:66:c5:00:64:e1:f0:1c:5b:72:e1:8f:80:95:f3:
eb:39:ed:21:79:64:a0:1a:2d:8e:31:24:54:2c:c4:
56:e7:e9:96:f2:3e:5d:68:7b:0a:0f:b2:70:6f:d8:
27:43:7b:5b:30:7f:f4:d9:39:c8:31:0a:93:f3:cb:
94:f7:b4:57:d1:2d:9d:07:be:33:96:10:c9:47:e7:
5f:c6:8b:2f:0f:9b:9f:79:53:dd:34:c9:6f:04:ff:
92:0a:e7:c7:70:b0:12:e8:b1:1c:ec:55:58:4a:d1:
c4:2f:8b:4b:a4:c0:ba:37:3e:0b:d6:25:38:97:c5:
d7:03:3b:b4:e6:81:33:68:1a:20:e2:ed:74:bf:9f:
95:e4:3f:11:71:9b:77:8d:87:a2:d5:19:95:bc:4f:
58:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2B:1A:B1:42:37:34:DE:A7:39:F1:5F:70:9A:5B:A0:F3:27:AB:47
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/sysasUI3NN6nOfFfcJpboPMnq0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.124.0/24
IPv6:
2a0f:5707:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
3e:f8:02:08:90:3e:df:d8:a9:5d:30:10:28:0e:4d:48:ef:cd:
f8:97:9e:d8:b3:de:cb:c4:1e:07:9e:f0:c1:ee:48:3e:58:2c:
ec:8a:87:6e:a2:4f:97:a2:e4:73:1d:3a:ec:b3:c7:87:a7:9e:
39:b7:88:b8:51:9c:d7:ca:f6:c2:fb:2f:e2:57:39:87:2c:ff:
fc:d3:bc:17:85:ff:9f:9c:78:44:ca:22:59:9a:1d:62:13:42:
92:1c:c3:3f:8b:a5:86:cc:b7:4b:7b:ee:23:3e:2f:a4:68:32:
6b:1a:0c:39:78:ff:58:22:1b:7f:53:b9:7f:24:cf:30:0b:08:
c3:fa:07:6a:3f:e8:75:f5:16:c3:a7:7b:b8:dd:ce:2e:e2:a4:
6e:e0:07:72:5f:15:6f:16:98:8a:e1:8a:7d:6a:3a:36:16:9c:
52:d3:f4:79:0d:58:f3:d4:f7:0c:b6:2b:79:eb:30:98:db:3c:
0b:c2:a3:e6:ae:9b:bc:35:b8:0d:ef:cb:0e:5d:22:a1:42:8d:
09:1f:34:3e:a0:1e:b1:a3:3c:78:7d:29:14:13:fa:b7:e4:64:
1e:6d:78:bb:a3:45:40:73:5b:f7:48:c7:ee:9f:7c:b3:64:2e:
47:ea:89:e2:16:f8:16:93:ac:62:60:75:22:43:84:c3:d8:a8:
cf:aa:c8:c2
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQma+Lui0KhIaPIbkmXfKcnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjUwMTAyMDk0OTUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzJiMWFiMTQyMzczNGRlYTczOWYxNWY3MDlhNWJhMGYzMjdhYjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtm0jevkt9KBEjlfFE4XTN93uZPRN
WpAHKo1zQZaFTirMYtt3aaiT+q1UYolhuUrVJH2tpa3lexM+pK+Z0qyucvcgZYjr
AIpM8iPWzK/5UOXij45goAqLtgqX4LZ/xSJDRbq9yIirfOV7ZsUAZOHwHFty4Y+A
lfPrOe0heWSgGi2OMSRULMRW5+mW8j5daHsKD7Jwb9gnQ3tbMH/02TnIMQqT88uU
97RX0S2dB74zlhDJR+dfxosvD5ufeVPdNMlvBP+SCufHcLAS6LEc7FVYStHEL4tL
pMC6Nz4L1iU4l8XXAzu05oEzaBog4u10v5+V5D8RcZt3jYei1RmVvE9YMwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLMrGrFCNzTepznxX3CaW6DzJ6tHMB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvc3lzYXNVSTNOTjZuT2ZGZmNKcGJvUE1ucTBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALZh8MA8E
AgACMAkDBwQqD1cHqsAwDQYJKoZIhvcNAQELBQADggEBAD74AgiQPt/YqV0wECgO
TUjvzfiXntiz3svEHgee8MHuSD5YLOyKh26iT5ei5HMdOuyzx4ennjm3iLhRnNfK
9sL7L+JXOYcs//zTvBeF/5+ceETKIlmaHWITQpIcwz+LpYbMt0t77iM+L6RoMmsa
DDl4/1giG39TuX8kzzALCMP6B2o/6HX1FsOne7jdzi7ipG7gB3JfFW8WmIrhin1q
OjYWnFLT9HkNWPPU9wy2K3nrMJjbPAvCo+aum7w1uA3vyw5dIqFCjQkfND6gHrGj
PHh9KRQT+rfkZB5teLujRUBzW/dIx+6ffLNkLkfqieIW+BaTrGJgdSJDhMPYqM+q
yMI=
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:20:16 2025 by rpki-client