Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/Psn9VHtgHRrnHBEW1jQNaDgM59I.roa
File: Psn9VHtgHRrnHBEW1jQNaDgM59I.roa (raw, json)
Hash identifier: jVfEzPS70VdoW/yyc+ZpfFgw8JDXB+FlSJ+0P8ifPNE=
Subject key identifier: 3E:C9:FD:54:7B:60:1D:1A:E7:1C:11:16:D6:34:0D:68:38:0C:E7:D2
Certificate issuer: /CN=44d3e020a819a8cda609d5ea48441ee939e41985
Certificate serial: 018570CC00E07C573B1BB130D61C1EE41A43
Authority key identifier: 44:D3:E0:20:A8:19:A8:CD:A6:09:D5:EA:48:44:1E:E9:39:E4:19:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RNPgIKgZqM2mCdXqSEQe6TnkGYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/Psn9VHtgHRrnHBEW1jQNaDgM59I.roa
Signing time: Mon 02 Jan 2023 04:44:55 +0000
ROA not before: Mon 02 Jan 2023 04:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34568
IP address blocks: 45.157.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cc:00:e0:7c:57:3b:1b:b1:30:d6:1c:1e:e4:1a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44d3e020a819a8cda609d5ea48441ee939e41985
Validity
Not Before: Jan 2 04:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ec9fd547b601d1ae71c1116d6340d68380ce7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:52:d6:b3:62:95:45:f2:de:55:09:e0:12:a8:
3a:56:61:54:e7:a7:b0:fc:ed:88:31:aa:34:17:c5:
9d:a7:ed:89:7d:2c:a8:63:c6:80:5a:61:6b:3e:1c:
27:d0:a6:d3:d7:d7:1d:c0:46:6c:50:43:a5:48:b7:
00:a8:52:d5:7d:f2:89:8f:51:57:8a:60:62:4a:3e:
0c:fe:65:45:ef:70:c1:89:6e:57:15:c7:a1:52:c1:
dc:62:c1:57:fc:fb:70:44:5c:7d:ed:4a:7e:46:4c:
6a:13:ec:a4:48:11:3a:e1:c3:ac:94:61:62:c8:70:
36:64:5b:c3:ed:57:2d:45:e4:c8:06:30:fc:da:08:
77:45:c9:36:fe:9a:5e:a1:f0:24:50:e2:04:7f:36:
b4:0e:0d:4b:82:16:ac:8f:b2:32:81:46:b3:c8:04:
d0:91:58:84:fd:39:e5:c2:00:0d:e2:53:4c:e6:ac:
6a:3a:4c:37:47:c1:71:2e:7e:e6:3f:12:b1:3b:d0:
5d:35:a6:75:79:92:d0:1e:f6:cd:69:f8:75:0e:79:
45:19:22:fc:38:7d:12:54:77:59:67:40:49:4b:8a:
70:9c:c9:a6:39:e7:1c:86:7e:24:60:27:fe:b8:02:
ca:92:eb:0e:28:34:5b:d6:66:59:f0:06:6d:a4:58:
d2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C9:FD:54:7B:60:1D:1A:E7:1C:11:16:D6:34:0D:68:38:0C:E7:D2
X509v3 Authority Key Identifier:
keyid:44:D3:E0:20:A8:19:A8:CD:A6:09:D5:EA:48:44:1E:E9:39:E4:19:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RNPgIKgZqM2mCdXqSEQe6TnkGYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/Psn9VHtgHRrnHBEW1jQNaDgM59I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/RNPgIKgZqM2mCdXqSEQe6TnkGYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.137.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:50:fc:d0:0c:47:14:2e:ad:c6:77:e8:6c:6f:11:e1:0e:d6:
bd:aa:47:3f:3e:14:9b:59:21:c0:b2:9b:84:b2:b2:f6:37:b4:
9b:1e:1f:8f:ce:b1:8c:bf:05:2f:c8:fc:ad:72:0c:30:d7:a2:
56:e9:36:21:f2:85:2b:2e:4c:e9:ae:f2:5c:57:dc:ad:4d:4a:
bd:92:64:86:81:10:b3:e2:db:a2:63:72:e9:a3:d2:6e:72:64:
ee:8b:e6:53:6d:2a:74:01:5d:f5:34:c0:1e:fb:d2:6c:91:8f:
9e:78:e8:b8:58:ba:22:9f:be:f8:3f:79:cd:b8:17:ff:ae:ec:
fe:8a:02:c2:3e:c4:81:73:7d:38:23:9a:68:ad:a5:6a:15:77:
b7:f6:30:17:44:6e:e2:83:79:b0:41:61:25:60:b6:68:76:ef:
41:fb:f9:df:6b:d2:8e:ef:c2:f5:3d:ea:30:f1:59:1e:44:ae:
46:12:94:6a:d4:7f:20:a2:f2:ff:a3:4f:d8:91:c9:b0:9f:6b:
7c:73:96:84:05:32:f8:11:b5:76:b6:22:49:2a:fb:08:4c:aa:
6e:11:64:e0:3a:df:d1:b7:cb:50:c2:9c:f0:06:c9:f1:c7:dc:
5a:b3:3f:83:9e:8e:eb:3e:41:76:cb:6a:3c:12:a6:fd:80:4a:
e5:6f:d6:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwzADgfFc7G7Ew1hwe5BpDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZDNlMDIwYTgxOWE4Y2RhNjA5ZDVlYTQ4NDQxZWU5Mzll
NDE5ODUwHhcNMjMwMTAyMDQ0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWM5ZmQ1NDdiNjAxZDFhZTcxYzExMTZkNjM0MGQ2ODM4MGNlN2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVLWs2KVRfLeVQngEqg6VmFU56ew
/O2IMao0F8Wdp+2JfSyoY8aAWmFrPhwn0KbT19cdwEZsUEOlSLcAqFLVffKJj1FX
imBiSj4M/mVF73DBiW5XFcehUsHcYsFX/PtwRFx97Up+RkxqE+ykSBE64cOslGFi
yHA2ZFvD7VctReTIBjD82gh3Rck2/ppeofAkUOIEfza0Dg1Lghasj7IygUazyATQ
kViE/TnlwgAN4lNM5qxqOkw3R8FxLn7mPxKxO9BdNaZ1eZLQHvbNafh1DnlFGSL8
OH0SVHdZZ0BJS4pwnMmmOecchn4kYCf+uALKkusOKDRb1mZZ8AZtpFjSBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD7J/VR7YB0a5xwRFtY0DWg4DOfSMB8GA1UdIwQY
MBaAFETT4CCoGajNpgnV6khEHuk55BmFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUk5QZ0lLZ1pxTTJtQ2RYcVNFUWU2VG5rR1lVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hNzc1YzYtMGE2ZS00ZDc1LTk5OTAt
ZTc5NWJlNjI5Njc3LzEvUHNuOVZIdGdIUnJuSEJFVzFqUU5hRGdNNTlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hNzc1YzYtMGE2ZS00ZDc1LTk5OTAtZTc5NWJlNjI5Njc3
LzEvUk5QZ0lLZ1pxTTJtQ2RYcVNFUWU2VG5rR1lVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ2JMA0G
CSqGSIb3DQEBCwUAA4IBAQCLUPzQDEcULq3Gd+hsbxHhDta9qkc/PhSbWSHAspuE
srL2N7SbHh+PzrGMvwUvyPytcgww16JW6TYh8oUrLkzprvJcV9ytTUq9kmSGgRCz
4tuiY3Lpo9JucmTui+ZTbSp0AV31NMAe+9JskY+eeOi4WLoin774P3nNuBf/ruz+
igLCPsSBc304I5poraVqFXe39jAXRG7ig3mwQWElYLZodu9B+/nfa9KO78L1Peow
8VkeRK5GEpRq1H8govL/o0/Ykcmwn2t8c5aEBTL4EbV2tiJJKvsITKpuEWTgOt/R
t8tQwpzwBsnxx9xasz+Dno7rPkF2y2o8Eqb9gErlb9ZV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:11 2024 by rpki-client on console-ams.rpki-client.org