Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/RTLYKjFYBk9dNj2tBu9kS_JRih0.roa
File: RTLYKjFYBk9dNj2tBu9kS_JRih0.roa (raw, json)
Hash identifier: 5Iao2pVcxQiEO6sXUnw3RGp90XyJHxB9lgyKscOITrg=
Subject key identifier: 45:32:D8:2A:31:58:06:4F:5D:36:3D:AD:06:EF:64:4B:F2:51:8A:1D
Certificate issuer: /CN=d3202774b7de641d8ea18be56a75ff6098747618
Certificate serial: 033970
Authority key identifier: D3:20:27:74:B7:DE:64:1D:8E:A1:8B:E5:6A:75:FF:60:98:74:76:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0yAndLfeZB2OoYvlanX_YJh0dhg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/RTLYKjFYBk9dNj2tBu9kS_JRih0.roa
Signing time: Wed 26 Jan 2022 12:46:30 +0000
ROA not before: Wed 26 Jan 2022 12:46:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 45.150.56.0/24 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211312 (0x33970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3202774b7de641d8ea18be56a75ff6098747618
Validity
Not Before: Jan 26 12:46:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4532d82a3158064f5d363dad06ef644bf2518a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4c:f6:3b:63:26:33:6c:bb:4c:14:5a:cb:c9:
7b:79:1e:82:1c:f0:de:99:9a:96:c7:87:5e:f3:42:
cf:cf:10:78:bd:d9:1e:8c:46:e1:5d:29:06:df:3b:
3a:3f:2e:36:43:4d:66:14:63:fc:ae:b4:46:50:15:
91:37:76:af:69:7a:ca:01:91:43:05:85:30:37:fc:
94:ef:01:6f:6c:a9:b7:40:72:7d:6b:27:7a:16:24:
7a:b1:6c:4c:35:19:05:a1:1c:8c:85:27:ba:6a:66:
07:80:e8:64:95:94:49:13:f8:47:23:f6:df:6a:4d:
26:40:d5:31:f5:0b:de:2e:3f:03:e4:dd:39:17:bd:
7e:7b:52:b2:91:48:b9:2b:da:26:be:d7:21:78:57:
c1:39:ed:e0:fb:a1:e3:e0:ac:96:ea:c5:fb:a8:d7:
a4:c8:7f:f9:28:91:f0:d7:08:48:e4:d4:b3:c8:8e:
ef:c2:40:84:ae:e9:e1:c4:9c:83:cb:d6:1d:0e:3d:
62:c2:5a:30:90:a1:33:36:d5:12:95:bc:92:f6:ab:
bc:92:54:d2:f4:e5:30:23:3c:d1:2c:5a:33:21:2c:
04:94:48:72:a5:bd:d3:78:c3:28:c6:9a:d4:3c:61:
ec:52:89:48:5c:53:fc:3f:05:82:a4:41:d8:95:e9:
a4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:32:D8:2A:31:58:06:4F:5D:36:3D:AD:06:EF:64:4B:F2:51:8A:1D
X509v3 Authority Key Identifier:
keyid:D3:20:27:74:B7:DE:64:1D:8E:A1:8B:E5:6A:75:FF:60:98:74:76:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0yAndLfeZB2OoYvlanX_YJh0dhg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/RTLYKjFYBk9dNj2tBu9kS_JRih0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/cb4b6b-18aa-4e2c-a405-e7e77b6fac1e/1/0yAndLfeZB2OoYvlanX_YJh0dhg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.56.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:c6:02:45:9e:5a:ba:d7:94:6f:9b:18:10:25:27:31:c0:ab:
96:c1:e0:ae:a6:b3:4a:2e:5a:79:8f:40:0e:69:5e:de:99:04:
62:24:40:6b:42:37:41:11:13:7f:aa:46:50:09:42:1e:7c:d0:
a4:ec:46:68:5c:30:69:c5:42:00:d8:7d:1a:bb:90:50:36:66:
e0:0d:85:cf:88:89:16:e4:96:1d:3a:40:41:c7:52:f8:66:e0:
26:d9:41:1d:56:f2:c7:0c:cf:8d:98:fd:3a:b0:fc:6c:2e:42:
5a:4c:db:25:7b:4b:c0:66:e5:37:b1:3c:e6:65:a0:ba:e7:b2:
65:cb:2b:68:28:e9:fd:6d:ef:1b:78:ef:d4:5b:63:67:45:38:
c8:a4:58:3d:f1:ab:08:d1:9b:3c:cb:11:6c:39:6d:2a:5b:d5:
4f:c7:53:83:c8:8b:67:1c:21:49:ee:5a:2d:bb:44:7e:05:d3:
63:50:ec:93:c6:01:8b:84:d2:50:e6:04:c7:1d:3a:d1:a9:88:
ff:e0:a4:a6:33:da:ae:f3:8b:88:0b:1c:44:a2:50:26:ac:2f:
2c:75:b4:c3:0c:cb:31:84:8a:b0:62:0a:ca:95:82:59:c7:6b:
44:b9:2b:ca:13:26:cc:87:61:3c:f8:ab:d7:2a:16:ea:c1:5f:
bd:2d:2a:2b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAzlwMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQz
MjAyNzc0YjdkZTY0MWQ4ZWExOGJlNTZhNzVmZjYwOTg3NDc2MTgwHhcNMjIwMTI2
MTI0NjMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0NTMyZDgyYTMxNTgw
NjRmNWQzNjNkYWQwNmVmNjQ0YmYyNTE4YTFkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAukz2O2MmM2y7TBRay8l7eR6CHPDemZqWx4de80LPzxB4vdke
jEbhXSkG3zs6Py42Q01mFGP8rrRGUBWRN3avaXrKAZFDBYUwN/yU7wFvbKm3QHJ9
ayd6FiR6sWxMNRkFoRyMhSe6amYHgOhklZRJE/hHI/bfak0mQNUx9QveLj8D5N05
F71+e1KykUi5K9omvtcheFfBOe3g+6Hj4KyW6sX7qNekyH/5KJHw1whI5NSzyI7v
wkCErunhxJyDy9YdDj1iwlowkKEzNtUSlbyS9qu8klTS9OUwIzzRLFozISwElEhy
pb3TeMMoxprUPGHsUolIXFP8PwWCpEHYlemkJQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEUy2CoxWAZPXTY9rQbvZEvyUYodMB8GA1UdIwQYMBaAFNMgJ3S33mQdjqGL
5Wp1/2CYdHYYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MHlBbmRMZmVaQjJPb1l2bGFuWF9ZSmgwZGhnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jYS9jYjRiNmItMThhYS00ZTJjLWE0MDUtZTdlNzdiNmZhYzFlLzEv
UlRMWUtqRllCazlkTmoydEJ1OWtTX0pSaWgwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9j
YjRiNmItMThhYS00ZTJjLWE0MDUtZTdlNzdiNmZhYzFlLzEvMHlBbmRMZmVaQjJP
b1l2bGFuWF9ZSmgwZGhnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZY4MA0GCSqGSIb3DQEBCwUAA4IB
AQDVxgJFnlq615RvmxgQJScxwKuWweCuprNKLlp5j0AOaV7emQRiJEBrQjdBERN/
qkZQCUIefNCk7EZoXDBpxUIA2H0au5BQNmbgDYXPiIkW5JYdOkBBx1L4ZuAm2UEd
VvLHDM+NmP06sPxsLkJaTNsle0vAZuU3sTzmZaC657JlyytoKOn9be8beO/UW2Nn
RTjIpFg98asI0Zs8yxFsOW0qW9VPx1ODyItnHCFJ7lotu0R+BdNjUOyTxgGLhNJQ
5gTHHTrRqYj/4KSmM9qu84uICxxEolAmrC8sdbTDDMsxhIqwYgrKlYJZx2tEuSvK
EybMh2E8+KvXKhbqwV+9LSor
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:57 2024 by rpki-client on console-fra.rpki-client.org