Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/33d8aa-93d8-4936-a3de-93a3665c4b68/1/HrWHZLwLz9SHQNWDWAqLUzhWNgM.roa
File: HrWHZLwLz9SHQNWDWAqLUzhWNgM.roa (raw, json)
Hash identifier: +TAR64SkVojwAPPcj29LtZXZh5haH9rqB2EiQmQF6cY=
Subject key identifier: 1E:B5:87:64:BC:0B:CF:D4:87:40:D5:83:58:0A:8B:53:38:56:36:03
Certificate issuer: /CN=45bbb0c37704bfd558849c6549af9734e7d14be5
Certificate serial: 01941F8C8CD4A9380D2F11A76338F56B9EEA
Authority key identifier: 45:BB:B0:C3:77:04:BF:D5:58:84:9C:65:49:AF:97:34:E7:D1:4B:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rbuww3cEv9VYhJxlSa-XNOfRS-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/33d8aa-93d8-4936-a3de-93a3665c4b68/1/HrWHZLwLz9SHQNWDWAqLUzhWNgM.roa
Signing time: Wed 01 Jan 2025 01:48:12 +0000
ROA not before: Wed 01 Jan 2025 01:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48155
IP address blocks: 91.210.88.0/22 maxlen: 22
2001:67c:220c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:8c:d4:a9:38:0d:2f:11:a7:63:38:f5:6b:9e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45bbb0c37704bfd558849c6549af9734e7d14be5
Validity
Not Before: Jan 1 01:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1eb58764bc0bcfd48740d583580a8b5338563603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8e:2e:95:b3:e6:05:45:9d:27:ab:a9:79:f2:
cd:25:de:1b:8d:0b:7f:a9:8b:0f:a0:e6:70:34:c6:
14:42:e4:a7:b3:d3:9b:7f:97:59:24:33:1d:8f:34:
27:1e:e1:06:d1:b9:9e:b5:26:ca:f4:04:a6:de:12:
32:a4:a6:b5:06:b1:5e:de:52:17:38:ba:14:67:52:
0d:e7:67:6a:6f:b6:62:5a:68:63:01:fd:75:4c:31:
27:d8:01:91:93:7a:d4:7a:b6:05:2f:22:f4:ca:bb:
f3:3b:97:5f:b9:1e:e9:5c:e6:08:02:ec:b0:ca:d7:
95:cc:c0:43:ed:3b:cb:34:71:e9:1b:ee:61:5c:8b:
66:ec:88:33:44:40:0b:9e:f3:ba:78:31:7c:88:b7:
bf:45:e1:f5:e3:3c:7c:35:7d:65:59:ff:c0:32:f5:
f4:30:11:9c:a0:5f:30:7c:11:a0:05:11:18:76:20:
d7:35:5b:08:1c:1c:ac:18:b4:da:8e:98:f7:37:c0:
cd:13:72:ad:b7:90:66:3d:de:2c:90:0a:b5:f1:c4:
2a:8a:be:8d:75:6b:d1:f6:e4:d6:a4:c2:7b:90:c8:
c1:49:cf:a7:0a:94:dd:b5:9a:b7:40:27:f1:51:02:
81:97:29:c7:90:d6:8f:e8:39:8c:53:9c:cb:5e:b0:
ce:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B5:87:64:BC:0B:CF:D4:87:40:D5:83:58:0A:8B:53:38:56:36:03
X509v3 Authority Key Identifier:
keyid:45:BB:B0:C3:77:04:BF:D5:58:84:9C:65:49:AF:97:34:E7:D1:4B:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rbuww3cEv9VYhJxlSa-XNOfRS-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/33d8aa-93d8-4936-a3de-93a3665c4b68/1/HrWHZLwLz9SHQNWDWAqLUzhWNgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/33d8aa-93d8-4936-a3de-93a3665c4b68/1/Rbuww3cEv9VYhJxlSa-XNOfRS-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.88.0/22
IPv6:
2001:67c:220c::/48
Signature Algorithm: sha256WithRSAEncryption
b5:65:58:64:3d:04:32:d0:d1:19:ef:da:d3:da:73:90:cf:2e:
f0:a7:d1:f3:b2:59:84:34:e9:ef:43:c7:8f:1a:14:b2:bd:9d:
8c:75:da:31:59:4b:5a:5e:20:3a:1b:e2:86:94:32:21:83:10:
44:c2:0c:4f:13:86:22:e9:16:93:1f:34:c7:62:dc:4b:69:cd:
21:6b:41:d5:17:e4:b7:ab:a9:57:7f:58:a2:c8:a1:24:ba:58:
16:0f:c9:e9:f4:35:62:20:1a:80:90:4c:30:44:13:c0:ba:77:
4e:10:14:9a:3b:6b:93:1b:da:8b:9a:b3:58:30:38:59:e7:b9:
3e:22:06:a6:c0:ce:67:42:08:cd:2b:9a:44:d1:0e:4f:28:74:
4d:b9:42:76:a6:b3:69:a4:51:7e:32:41:2c:bf:68:21:31:e3:
ce:75:de:1d:8f:5f:7e:06:e4:bf:ae:77:ea:bf:73:40:eb:79:
36:ed:46:3b:53:89:ae:26:da:a3:54:8c:db:ff:27:71:75:c9:
b1:e6:94:43:4f:b5:c2:b9:63:8f:10:dc:87:45:ba:b5:72:f9:
55:0f:e9:59:86:e7:66:09:fe:cf:c9:ef:2c:f1:81:bc:1c:67:
83:b3:31:de:8c:c2:ad:ef:ea:1d:bb:9a:09:d6:f8:d0:d8:35:
b0:de:0f:5c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQfjIzUqTgNLxGnYzj1a57qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1YmJiMGMzNzcwNGJmZDU1ODg0OWM2NTQ5YWY5NzM0ZTdk
MTRiZTUwHhcNMjUwMTAxMDE0ODEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWI1ODc2NGJjMGJjZmQ0ODc0MGQ1ODM1ODBhOGI1MzM4NTYzNjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmY4ulbPmBUWdJ6upefLNJd4bjQt/
qYsPoOZwNMYUQuSns9Obf5dZJDMdjzQnHuEG0bmetSbK9ASm3hIypKa1BrFe3lIX
OLoUZ1IN52dqb7ZiWmhjAf11TDEn2AGRk3rUerYFLyL0yrvzO5dfuR7pXOYIAuyw
yteVzMBD7TvLNHHpG+5hXItm7IgzREALnvO6eDF8iLe/ReH14zx8NX1lWf/AMvX0
MBGcoF8wfBGgBREYdiDXNVsIHBysGLTajpj3N8DNE3Ktt5BmPd4skAq18cQqir6N
dWvR9uTWpMJ7kMjBSc+nCpTdtZq3QCfxUQKBlynHkNaP6DmMU5zLXrDO/wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFB61h2S8C8/Uh0DVg1gKi1M4VjYDMB8GA1UdIwQY
MBaAFEW7sMN3BL/VWIScZUmvlzTn0UvlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmJ1d3czY0V2OVZZaEp4bFNhLVhOT2ZSUy1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8zM2Q4YWEtOTNkOC00OTM2LWEzZGUt
OTNhMzY2NWM0YjY4LzEvSHJXSFpMd0x6OVNIUU5XRFdBcUxVemhXTmdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy8zM2Q4YWEtOTNkOC00OTM2LWEzZGUtOTNhMzY2NWM0YjY4
LzEvUmJ1d3czY0V2OVZZaEp4bFNhLVhOT2ZSUy1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCW9JYMA8E
AgACMAkDBwAgAQZ8IgwwDQYJKoZIhvcNAQELBQADggEBALVlWGQ9BDLQ0Rnv2tPa
c5DPLvCn0fOyWYQ06e9Dx48aFLK9nYx12jFZS1peIDob4oaUMiGDEETCDE8ThiLp
FpMfNMdi3EtpzSFrQdUX5LerqVd/WKLIoSS6WBYPyen0NWIgGoCQTDBEE8C6d04Q
FJo7a5Mb2ouas1gwOFnnuT4iBqbAzmdCCM0rmkTRDk8odE25Qnams2mkUX4yQSy/
aCEx48513h2PX34G5L+ud+q/c0DreTbtRjtTia4m2qNUjNv/J3F1ybHmlENPtcK5
Y48Q3IdFurVy+VUP6VmG52YJ/s/J7yzxgbwcZ4OzMd6Mwq3v6h27mgnW+NDYNbDe
D1w=
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:26 2025 by rpki-client