Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bf6267-1f4f-446e-aeb1-ef2d9ad0ca6c/1/G4wm_TC_6cJ0UrqzK_lU5ih9jTQ.roa
File: G4wm_TC_6cJ0UrqzK_lU5ih9jTQ.roa (raw, json)
Hash identifier: wkCeczXaGXHFCSTYR/tcvQ7/E8GgDwZZMSB9kncET4g=
Subject key identifier: 1B:8C:26:FD:30:BF:E9:C2:74:52:BA:B3:2B:F9:54:E6:28:7D:8D:34
Certificate issuer: /CN=dc69b058b7b01adbeda3b6362f3c0751e92ee1ec
Certificate serial: 0118D21D
Authority key identifier: DC:69:B0:58:B7:B0:1A:DB:ED:A3:B6:36:2F:3C:07:51:E9:2E:E1:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GmwWLewGtvto7Y2LzwHUeku4ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bf6267-1f4f-446e-aeb1-ef2d9ad0ca6c/1/G4wm_TC_6cJ0UrqzK_lU5ih9jTQ.roa
Signing time: Sat 01 Jan 2022 07:53:02 +0000
ROA not before: Sat 01 Jan 2022 07:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203534
IP address blocks: 45.131.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18403869 (0x118d21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc69b058b7b01adbeda3b6362f3c0751e92ee1ec
Validity
Not Before: Jan 1 07:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b8c26fd30bfe9c27452bab32bf954e6287d8d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:12:6e:7d:d9:b7:59:5b:40:16:7c:fc:3c:
e1:26:6e:bd:70:3f:49:ee:e1:65:1f:e9:44:af:6f:
d6:90:37:79:c7:fc:5e:8f:f0:c3:be:43:6a:1b:b9:
2f:f0:bb:bc:bc:4e:43:32:af:d0:e7:b1:30:b6:c6:
e4:97:47:da:a4:ba:22:96:b7:b8:35:a2:87:62:37:
2e:55:66:bc:03:91:1c:eb:f7:57:c9:f7:17:36:0f:
61:47:70:ad:8f:82:ed:c6:29:76:84:62:9e:11:ff:
94:6f:41:f6:78:d1:cc:63:ac:ff:a4:55:7b:03:63:
7e:db:05:7b:e5:57:d2:05:52:b9:25:3d:5d:84:b5:
99:d6:99:0d:d1:a4:67:59:c5:34:9c:41:ca:06:cb:
45:5f:cc:0c:b0:f9:19:23:4b:5b:03:2a:fa:99:4c:
d7:c9:95:18:c9:ee:11:ea:c1:38:bd:5b:88:aa:e1:
c5:a8:f1:8b:b6:74:4c:ec:09:28:1d:49:ae:78:2c:
2a:7a:8d:1d:66:89:df:f9:0b:29:ae:2f:0c:9a:38:
c1:6c:1e:ea:47:96:c5:e5:a5:00:2c:b2:0c:93:b6:
ff:65:cd:d3:35:ee:ed:c7:6e:63:b1:70:bf:d9:af:
85:4f:d0:8d:9e:89:5d:00:ff:2b:5a:57:db:ac:38:
01:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:8C:26:FD:30:BF:E9:C2:74:52:BA:B3:2B:F9:54:E6:28:7D:8D:34
X509v3 Authority Key Identifier:
keyid:DC:69:B0:58:B7:B0:1A:DB:ED:A3:B6:36:2F:3C:07:51:E9:2E:E1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GmwWLewGtvto7Y2LzwHUeku4ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bf6267-1f4f-446e-aeb1-ef2d9ad0ca6c/1/G4wm_TC_6cJ0UrqzK_lU5ih9jTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bf6267-1f4f-446e-aeb1-ef2d9ad0ca6c/1/3GmwWLewGtvto7Y2LzwHUeku4ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.172.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:59:62:77:17:19:ea:5b:1c:1d:6e:b6:c0:d0:1c:32:7c:54:
63:d9:0b:f6:b9:70:62:14:44:dc:dd:1c:dc:b6:06:22:32:a7:
e4:87:08:3c:9b:38:f6:dd:ab:4c:dc:bc:ee:ec:96:11:10:33:
72:c2:6f:49:d4:98:b1:70:76:7f:a4:2f:70:11:0b:45:01:8e:
e9:51:d9:a6:21:e0:03:b8:75:60:81:ed:0e:8c:51:d7:1a:08:
f6:32:50:42:b8:e2:83:a8:f7:d9:c5:79:00:b4:0a:36:46:82:
84:c3:d3:08:99:27:12:fb:c8:89:73:c0:c3:b0:6e:df:24:49:
fa:32:7b:03:22:46:14:58:a9:7d:df:ef:18:8d:5d:e3:1e:60:
4a:44:7d:1c:06:d8:e6:d1:9e:9c:b4:38:f7:36:a4:0c:d0:bd:
1c:e3:cd:66:92:60:6f:f4:a2:a3:f1:31:ac:dc:e5:8e:c9:ad:
59:07:03:89:82:bb:c1:31:46:a1:78:78:bb:11:3c:21:f3:81:
ad:8f:8d:cf:85:1f:41:8e:d7:11:c0:65:41:7f:a4:99:2f:c5:
e1:26:e9:99:77:e3:9d:1d:a1:54:7e:0c:c8:b9:9c:73:d9:28:
67:02:e8:6e:34:b7:2c:c8:43:05:2f:13:88:8c:67:1b:05:00:
83:bf:48:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEARjSHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzY5YjA1OGI3YjAxYWRiZWRhM2I2MzYyZjNjMDc1MWU5MmVlMWVjMB4XDTIyMDEw
MTA3NTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWI4YzI2ZmQzMGJm
ZTljMjc0NTJiYWIzMmJmOTU0ZTYyODdkOGQzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKrQEm592bdZW0AWfPw84SZuvXA/Se7hZR/pRK9v1pA3ecf8
Xo/ww75Dahu5L/C7vLxOQzKv0OexMLbG5JdH2qS6Ipa3uDWih2I3LlVmvAORHOv3
V8n3FzYPYUdwrY+C7cYpdoRinhH/lG9B9njRzGOs/6RVewNjftsFe+VX0gVSuSU9
XYS1mdaZDdGkZ1nFNJxBygbLRV/MDLD5GSNLWwMq+plM18mVGMnuEerBOL1biKrh
xajxi7Z0TOwJKB1JrngsKnqNHWaJ3/kLKa4vDJo4wWwe6keWxeWlACyyDJO2/2XN
0zXu7cduY7Fwv9mvhU/QjZ6JXQD/K1pX26w4AUcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQbjCb9ML/pwnRSurMr+VTmKH2NNDAfBgNVHSMEGDAWgBTcabBYt7Aa2+2j
tjYvPAdR6S7h7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNHbXdXTGV3R3R2dG83WTJMendIVWVrdTRldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvYmY2MjY3LTFmNGYtNDQ2ZS1hZWIxLWVmMmQ5YWQwY2E2Yy8x
L0c0d21fVENfNmNKMFVycXpLX2xVNWloOWpUUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
YmY2MjY3LTFmNGYtNDQ2ZS1hZWIxLWVmMmQ5YWQwY2E2Yy8xLzNHbXdXTGV3R3R2
dG83WTJMendIVWVrdTRldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2DrDANBgkqhkiG9w0BAQsFAAOC
AQEAPllidxcZ6lscHW62wNAcMnxUY9kL9rlwYhRE3N0c3LYGIjKn5IcIPJs49t2r
TNy87uyWERAzcsJvSdSYsXB2f6QvcBELRQGO6VHZpiHgA7h1YIHtDoxR1xoI9jJQ
Qrjig6j32cV5ALQKNkaChMPTCJknEvvIiXPAw7Bu3yRJ+jJ7AyJGFFipfd/vGI1d
4x5gSkR9HAbY5tGenLQ49zakDNC9HOPNZpJgb/Sio/ExrNzljsmtWQcDiYK7wTFG
oXh4uxE8IfOBrY+Nz4UfQY7XEcBlQX+kmS/F4SbpmXfjnR2hVH4MyLmcc9koZwLo
bjS3LMhDBS8TiIxnGwUAg79Ijg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:51 2023 by rpki-client on console-ams.rpki-client.org