Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/AkU1sF-DMU1eYJjr0njqq4rLa8M.roa
File: AkU1sF-DMU1eYJjr0njqq4rLa8M.roa (raw, json)
Hash identifier: NvUpIRgjBgsn6QJfqs4bmhh8LdDoEDt7pQIZxfdqEMc=
Subject key identifier: 02:45:35:B0:5F:83:31:4D:5E:60:98:EB:D2:78:EA:AB:8A:CB:6B:C3
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 018450382E86FBB50EC528D231EEDD704D56
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/AkU1sF-DMU1eYJjr0njqq4rLa8M.roa
Signing time: Mon 07 Nov 2022 03:52:49 +0000
ROA not before: Mon 07 Nov 2022 03:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 45.8.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:50:38:2e:86:fb:b5:0e:c5:28:d2:31:ee:dd:70:4d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Nov 7 03:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=024535b05f83314d5e6098ebd278eaab8acb6bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ae:cd:0c:90:73:7e:33:b6:67:07:1d:4f:07:
67:19:94:b5:d9:cb:63:32:b5:3e:b5:55:19:51:b6:
53:06:e7:28:f9:df:37:da:6a:59:7e:a5:5d:1a:b4:
54:5b:71:ad:81:41:f1:2d:12:f3:b2:7c:08:ff:d8:
6b:3b:cb:fb:7b:df:aa:f7:48:82:ea:c8:d3:f5:df:
c9:8f:58:ca:a3:c4:9c:be:d3:06:4f:4a:f6:96:8e:
77:d8:1f:f8:32:f4:2a:be:4e:aa:c4:61:59:e1:3e:
6d:92:22:d0:a2:cd:aa:0d:e9:d2:4a:4e:87:25:e4:
a3:a7:0c:76:f5:66:69:df:32:23:ad:a2:ce:4b:3e:
f1:21:e6:be:fc:92:fc:ba:e7:f9:d7:5e:77:ad:7c:
2d:ab:cc:52:c3:e2:7d:06:8a:eb:12:ce:68:82:28:
1e:a6:49:10:59:02:69:c0:60:4f:fc:1d:41:d7:13:
96:a5:37:87:b1:00:40:ef:1f:d8:73:3d:79:cc:23:
81:20:de:0d:20:c7:15:64:82:c0:8d:c6:b8:16:cf:
10:22:2b:98:42:3c:67:4e:ab:39:48:67:8d:43:e2:
4c:33:1f:ab:69:7d:ed:54:a3:63:85:f7:0a:5e:9a:
d1:9a:0d:d9:f9:bb:08:b6:18:0b:db:42:0b:90:7b:
f9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:45:35:B0:5F:83:31:4D:5E:60:98:EB:D2:78:EA:AB:8A:CB:6B:C3
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/AkU1sF-DMU1eYJjr0njqq4rLa8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.218.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c4:80:a1:c2:1f:3a:e3:84:cb:0c:65:b0:09:00:67:c9:d9:
2d:c9:bb:b7:e5:10:a0:a1:ae:cc:bf:e7:f5:1b:3f:95:ad:42:
80:2f:5b:ce:46:4b:bf:d5:f9:d6:5e:34:4a:c5:49:c7:5f:2f:
4e:b8:76:0a:76:c7:88:00:9c:12:fd:da:04:bf:71:ac:4f:1a:
80:f6:08:c1:a0:28:ec:36:9a:cc:63:31:04:59:0c:94:c4:3b:
6e:b3:80:89:a3:11:34:43:1f:b4:78:28:47:00:d9:95:16:d5:
c6:8e:40:ed:cb:53:da:b8:f9:a0:31:ff:33:63:3e:34:7c:6f:
0f:d5:c2:be:de:80:b1:af:24:20:44:0d:4c:11:84:92:84:ed:
fe:6d:f4:5a:63:65:40:b3:1d:69:3c:6c:18:bb:2d:2f:8f:88:
81:cf:23:8c:05:bc:f1:74:b7:b3:7e:f4:56:7c:46:f4:5d:88:
df:8d:bd:6d:96:53:38:8a:c8:7c:e1:61:5f:83:e6:1e:65:aa:
1d:d9:fb:02:6d:90:1b:c5:b6:80:1d:39:8b:2f:72:dc:cc:81:
02:f6:fe:18:7c:03:4c:8b:73:56:9d:85:d2:e4:12:e9:63:05:
19:02:22:f8:5d:64:11:fd:f3:b0:e1:2c:a7:01:81:06:a9:60:
56:82:c6:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRQOC6G+7UOxSjSMe7dcE1WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNDAzOTM5OTAxN2ZhMDkzZGM4ZDUwMzc5OWY2Y2E0MDNm
MGJkMDUwHhcNMjIxMTA3MDM1MjQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjQ1MzViMDVmODMzMTRkNWU2MDk4ZWJkMjc4ZWFhYjhhY2I2YmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAga7NDJBzfjO2ZwcdTwdnGZS12ctj
MrU+tVUZUbZTBuco+d832mpZfqVdGrRUW3GtgUHxLRLzsnwI/9hrO8v7e9+q90iC
6sjT9d/Jj1jKo8ScvtMGT0r2lo532B/4MvQqvk6qxGFZ4T5tkiLQos2qDenSSk6H
JeSjpwx29WZp3zIjraLOSz7xIea+/JL8uuf51153rXwtq8xSw+J9BorrEs5ogige
pkkQWQJpwGBP/B1B1xOWpTeHsQBA7x/Ycz15zCOBIN4NIMcVZILAjca4Fs8QIiuY
QjxnTqs5SGeNQ+JMMx+raX3tVKNjhfcKXprRmg3Z+bsIthgL20ILkHv5DQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJFNbBfgzFNXmCY69J46quKy2vDMB8GA1UdIwQY
MBaAFGJAOTmQF/oJPcjVA3mfbKQD8L0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWtBNU9aQVgtZ2s5eU5VRGVaOXNwQVB3dlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9lYjIzOWEtMzNjOC00ZGJkLWJjOTYt
MzI1OTQ5NmU3YzVmLzEvQWtVMXNGLURNVTFlWUpqcjBuanFxNHJMYThNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9lYjIzOWEtMzNjOC00ZGJkLWJjOTYtMzI1OTQ5NmU3YzVm
LzEvWWtBNU9aQVgtZ2s5eU5VRGVaOXNwQVB3dlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQjaMA0G
CSqGSIb3DQEBCwUAA4IBAQALxIChwh8644TLDGWwCQBnydktybu35RCgoa7Mv+f1
Gz+VrUKAL1vORku/1fnWXjRKxUnHXy9OuHYKdseIAJwS/doEv3GsTxqA9gjBoCjs
NprMYzEEWQyUxDtus4CJoxE0Qx+0eChHANmVFtXGjkDty1PauPmgMf8zYz40fG8P
1cK+3oCxryQgRA1MEYSShO3+bfRaY2VAsx1pPGwYuy0vj4iBzyOMBbzxdLezfvRW
fEb0XYjfjb1tllM4ish84WFfg+YeZaod2fsCbZAbxbaAHTmLL3LczIEC9v4YfANM
i3NWnYXS5BLpYwUZAiL4XWQR/fOw4SynAYEGqWBWgsYQ
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:03 2025 by rpki-client