Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lD_-iIrb50ph-Dcbn6D5qydqjuE.roa
File: lD_-iIrb50ph-Dcbn6D5qydqjuE.roa (raw, json)
Hash identifier: FaV+HQS/2woOhdKSzCi3wVcOeQXKEB9vlXu0XH0WN6M=
Subject key identifier: 94:3F:FE:88:8A:DB:E7:4A:61:F8:37:1B:9F:A0:F9:AB:27:6A:8E:E1
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018921B7F2D60C62091A3F8AFF02E93E67AA
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lD_-iIrb50ph-Dcbn6D5qydqjuE.roa
Signing time: Tue 04 Jul 2023 16:24:10 +0000
ROA not before: Tue 04 Jul 2023 16:24:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58033
IP address blocks: 45.135.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:21:b7:f2:d6:0c:62:09:1a:3f:8a:ff:02:e9:3e:67:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jul 4 16:24:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=943ffe888adbe74a61f8371b9fa0f9ab276a8ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:fc:97:b8:d2:aa:af:22:e9:7b:c3:1a:c7:
5e:f7:cd:57:13:44:37:5a:e2:8f:49:0f:2e:09:33:
a4:59:5c:6c:13:d2:a1:4d:f8:46:f9:af:fb:3c:c3:
1b:60:66:13:f8:9d:8b:ab:7f:9f:07:27:c7:74:d8:
a8:7b:cb:6b:58:5a:f6:56:6e:e3:e4:f8:67:87:4c:
77:83:65:12:b1:0e:3d:2c:29:3a:19:67:e3:23:33:
dd:45:c0:e8:54:92:08:d2:88:e8:a4:ae:00:8f:42:
31:9e:ca:3c:c7:81:71:41:5c:05:66:72:79:1e:33:
07:ad:1a:be:c0:bf:00:eb:dc:e3:9d:3d:c0:ac:b8:
0f:c4:cc:41:52:82:79:59:e9:7f:68:30:91:95:25:
e6:13:d4:51:67:f3:4c:7c:5a:18:40:08:0c:22:6d:
3d:fe:b1:d3:80:96:23:60:8d:b6:91:09:e6:bd:90:
ee:20:33:fb:c4:35:2c:62:ab:b1:4a:37:32:e0:b4:
08:ac:6f:1c:dc:a2:8b:aa:0f:73:cd:c2:56:f0:be:
79:95:7b:18:d7:db:bc:3c:f6:34:b5:71:f5:bd:ce:
fa:39:df:13:51:2a:d2:00:3f:1c:20:38:50:20:38:
d9:77:04:a4:b6:86:1f:ce:92:46:53:62:65:5f:a7:
64:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3F:FE:88:8A:DB:E7:4A:61:F8:37:1B:9F:A0:F9:AB:27:6A:8E:E1
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lD_-iIrb50ph-Dcbn6D5qydqjuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.133.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:9a:2c:c1:58:cc:2d:cd:aa:53:76:ba:3c:28:da:54:54:1c:
b6:e9:ee:47:69:ab:d8:a7:a3:a4:f5:4f:42:fb:36:53:e5:af:
6c:d3:a0:35:a8:80:a0:83:e7:4d:bd:20:7b:e2:1e:ec:fc:6a:
b8:85:63:77:99:79:a0:90:1e:57:58:3b:fb:de:4e:b3:89:86:
f6:6a:fb:4d:d7:dd:3c:de:97:24:7e:13:a3:48:45:7e:c3:92:
54:20:07:e7:e3:a3:7f:48:09:f1:4c:f4:79:ca:16:48:e7:38:
8e:fa:31:b9:4c:40:cb:93:94:5f:21:c3:9a:60:31:25:b1:63:
05:31:a3:6d:fd:29:6f:7b:37:0d:b9:dc:16:f8:3d:ab:46:1c:
11:d2:ef:83:64:64:89:0a:a3:06:96:f2:e8:57:71:e1:f8:70:
20:e5:c5:0f:d3:e8:e8:99:5e:b6:92:9c:12:81:60:c6:54:ff:
eb:e1:0a:96:be:52:41:2e:7a:d3:32:67:5e:6e:b2:31:54:a3:
73:f3:6a:07:08:3a:a5:d4:e3:80:97:4f:ee:8b:a8:82:39:8c:
33:9e:19:88:d7:85:8e:4f:a5:5c:4a:b1:82:0a:12:b1:3c:41:
f5:84:df:98:14:78:83:1a:a8:28:9a:89:ad:2c:3d:d6:7a:64:
97:90:b3:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkht/LWDGIJGj+K/wLpPmeqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjMwNzA0MTYyNDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDNmZmU4ODhhZGJlNzRhNjFmODM3MWI5ZmEwZjlhYjI3NmE4ZWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/78l7jSqq8i6XvDGsde981XE0Q3
WuKPSQ8uCTOkWVxsE9KhTfhG+a/7PMMbYGYT+J2Lq3+fByfHdNioe8trWFr2Vm7j
5Phnh0x3g2USsQ49LCk6GWfjIzPdRcDoVJII0ojopK4Aj0Ixnso8x4FxQVwFZnJ5
HjMHrRq+wL8A69zjnT3ArLgPxMxBUoJ5Wel/aDCRlSXmE9RRZ/NMfFoYQAgMIm09
/rHTgJYjYI22kQnmvZDuIDP7xDUsYquxSjcy4LQIrG8c3KKLqg9zzcJW8L55lXsY
19u8PPY0tXH1vc76Od8TUSrSAD8cIDhQIDjZdwSktoYfzpJGU2JlX6dk0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJQ//oiK2+dKYfg3G5+g+asnao7hMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvbERfLWlJcmI1MHBoLURjYm42RDVxeWRxanVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYeFMA0G
CSqGSIb3DQEBCwUAA4IBAQArmizBWMwtzapTdro8KNpUVBy26e5HaavYp6Ok9U9C
+zZT5a9s06A1qICgg+dNvSB74h7s/Gq4hWN3mXmgkB5XWDv73k6ziYb2avtN1908
3pckfhOjSEV+w5JUIAfn46N/SAnxTPR5yhZI5ziO+jG5TEDLk5RfIcOaYDElsWMF
MaNt/SlvezcNudwW+D2rRhwR0u+DZGSJCqMGlvLoV3Hh+HAg5cUP0+jomV62kpwS
gWDGVP/r4QqWvlJBLnrTMmdebrIxVKNz82oHCDql1OOAl0/ui6iCOYwznhmI14WO
T6VcSrGCChKxPEH1hN+YFHiDGqgomomtLD3WemSXkLNI
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:49 2025 by rpki-client