Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLfGt0dFaTx8V1G9lFBBPryWW1k.roa
File: YLfGt0dFaTx8V1G9lFBBPryWW1k.roa (raw, json)
Hash identifier: vxby0GraGzzzfnY3kaz1fQJBxvV7L17lilpEOTE/mPU=
Subject key identifier: 60:B7:C6:B7:47:45:69:3C:7C:57:51:BD:94:50:41:3E:BC:96:5B:59
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369E02321782E86F206B7B2A12373DA
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLfGt0dFaTx8V1G9lFBBPryWW1k.roa
Signing time: Wed 01 Jan 2025 19:48:48 +0000
ROA not before: Wed 01 Jan 2025 19:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 262254
IP address blocks: 45.148.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e0:23:21:78:2e:86:f2:06:b7:b2:a1:23:73:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60b7c6b74745693c7c5751bd9450413ebc965b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cb:bf:b4:07:6a:61:7e:52:d6:5c:93:30:ce:
48:9d:5a:97:79:f4:fd:07:a3:9f:2e:0f:f1:59:ba:
e9:1b:76:2a:2b:db:83:e5:ce:dc:57:d2:22:03:ac:
45:42:30:db:82:83:57:e4:51:50:fc:6f:99:75:8b:
7c:30:4a:00:c8:54:49:15:2d:9b:14:5c:a6:06:17:
f2:e5:31:ea:5b:79:21:07:ab:ea:63:a7:b7:b9:7a:
e0:8b:69:c1:cb:be:13:14:eb:25:d2:1b:31:8a:65:
e0:5b:49:a7:87:41:80:6a:f6:54:59:19:96:50:2b:
ac:4b:a1:8d:aa:c6:33:55:42:6a:97:19:54:1a:4f:
e2:ba:04:3c:05:ab:21:6b:55:3b:d4:8e:c1:55:c5:
28:09:91:26:77:ca:62:e7:72:bf:8e:dd:6b:90:d5:
ed:91:8c:9c:b0:15:aa:5f:3d:36:d7:0d:65:62:37:
08:1d:97:27:56:ee:c8:92:42:c6:fb:88:19:28:7d:
1b:2e:ac:cc:37:bd:6f:02:5c:78:30:10:a2:7b:58:
4e:58:9e:66:f7:21:62:57:7f:7e:ed:3a:f1:5f:c0:
8e:30:e7:5d:d3:08:6c:bb:dc:61:f7:bf:79:1e:69:
f2:90:82:98:6d:ce:d3:e9:25:bc:f6:6c:19:a2:43:
38:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B7:C6:B7:47:45:69:3C:7C:57:51:BD:94:50:41:3E:BC:96:5B:59
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/YLfGt0dFaTx8V1G9lFBBPryWW1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.164.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f0:a1:9e:23:cc:1e:b3:d5:c4:70:42:c0:c3:54:69:ce:53:
f0:3d:75:9b:9b:93:aa:9a:a1:a5:98:4f:79:33:1d:e2:44:c4:
e3:82:b8:bd:f9:e5:18:28:b0:ae:b9:93:f8:80:2f:25:39:e7:
d1:a2:3e:78:51:26:53:51:a0:34:e6:d6:c8:81:f3:f5:d2:e9:
dd:08:6e:99:3c:fc:1f:e4:82:22:68:4f:91:11:ca:aa:ae:b2:
51:29:35:42:90:3b:65:95:ad:1a:c7:3d:cb:dd:3e:b4:0b:c2:
62:66:83:54:d6:0d:cc:36:cf:c3:8b:6e:82:6d:b9:e4:ce:13:
6b:e2:e2:22:43:38:54:c9:e8:fb:e3:bc:2f:04:23:0e:68:f5:
40:bc:6c:4d:b2:02:d1:68:4b:27:9e:94:c9:f6:15:0e:25:ec:
e5:fd:1b:00:3c:0a:65:43:bb:a4:79:b8:2b:bf:89:a5:77:20:
d8:b4:e3:9f:f8:0f:94:e6:e5:f5:68:42:69:86:32:7b:69:d3:
82:d4:83:2e:f4:7b:bd:2b:59:c3:2f:65:a1:5c:56:a1:73:55:
61:c2:ee:5c:91:9d:3a:d1:47:eb:61:99:0a:a6:d5:2e:a0:ab:
1c:b2:41:f0:b8:c1:0e:1a:ca:04:89:bb:19:cf:f2:01:50:a7:
58:21:81:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjaeAjIXguhvIGt7KhI3PaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjUwMTAxMTk0ODQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGI3YzZiNzQ3NDU2OTNjN2M1NzUxYmQ5NDUwNDEzZWJjOTY1YjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8u/tAdqYX5S1lyTMM5InVqXefT9
B6OfLg/xWbrpG3YqK9uD5c7cV9IiA6xFQjDbgoNX5FFQ/G+ZdYt8MEoAyFRJFS2b
FFymBhfy5THqW3khB6vqY6e3uXrgi2nBy74TFOsl0hsximXgW0mnh0GAavZUWRmW
UCusS6GNqsYzVUJqlxlUGk/iugQ8Basha1U71I7BVcUoCZEmd8pi53K/jt1rkNXt
kYycsBWqXz021w1lYjcIHZcnVu7IkkLG+4gZKH0bLqzMN71vAlx4MBCie1hOWJ5m
9yFiV39+7TrxX8COMOdd0whsu9xh9795HmnykIKYbc7T6SW89mwZokM41wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGC3xrdHRWk8fFdRvZRQQT68lltZMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvWUxmR3QwZEZhVHg4VjFHOWxGQkJQcnlXVzFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZSkMA0G
CSqGSIb3DQEBCwUAA4IBAQBj8KGeI8wes9XEcELAw1RpzlPwPXWbm5OqmqGlmE95
Mx3iRMTjgri9+eUYKLCuuZP4gC8lOefRoj54USZTUaA05tbIgfP10undCG6ZPPwf
5IIiaE+REcqqrrJRKTVCkDtlla0axz3L3T60C8JiZoNU1g3MNs/Di26CbbnkzhNr
4uIiQzhUyej747wvBCMOaPVAvGxNsgLRaEsnnpTJ9hUOJezl/RsAPAplQ7ukebgr
v4mldyDYtOOf+A+U5uX1aEJphjJ7adOC1IMu9Hu9K1nDL2WhXFahc1Vhwu5ckZ06
0UfrYZkKptUuoKscskHwuMEOGsoEibsZz/IBUKdYIYF5
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:43 2025 by rpki-client