Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/85483e-a23c-44bf-9900-203495152c69/1/BwM_65bjnWU5QZbLU7vx6GE6KRA.roa
File: BwM_65bjnWU5QZbLU7vx6GE6KRA.roa (raw, json)
Hash identifier: 84QxdrxeX1vmPIy5xCgx9iIsVeO1fbNrR1u2fhRkgKA=
Subject key identifier: 07:03:3F:EB:96:E3:9D:65:39:41:96:CB:53:BB:F1:E8:61:3A:29:10
Certificate issuer: /CN=0d854eb8133c1c04dbd073ecbb4ee3fa1302ae86
Certificate serial: 01C0788A
Authority key identifier: 0D:85:4E:B8:13:3C:1C:04:DB:D0:73:EC:BB:4E:E3:FA:13:02:AE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYVOuBM8HATb0HPsu07j-hMCroY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/85483e-a23c-44bf-9900-203495152c69/1/BwM_65bjnWU5QZbLU7vx6GE6KRA.roa
Signing time: Sat 01 Jan 2022 15:00:59 +0000
ROA not before: Sat 01 Jan 2022 15:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208482
IP address blocks: 45.84.98.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29390986 (0x1c0788a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d854eb8133c1c04dbd073ecbb4ee3fa1302ae86
Validity
Not Before: Jan 1 15:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07033feb96e39d65394196cb53bbf1e8613a2910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:e8:fa:e9:5f:df:37:ee:44:14:09:45:de:
72:c0:aa:59:3c:1a:26:3f:fe:bb:4f:e5:45:06:83:
cb:d3:99:5b:45:36:35:5a:db:86:9d:f3:97:da:55:
27:de:3b:de:4c:e4:84:2c:bc:58:f2:e9:03:9c:0b:
89:f7:8f:57:d7:be:be:cd:9c:a5:7e:a0:b5:8e:fb:
77:53:18:39:b5:d1:86:3f:c3:3f:f7:13:7b:aa:9d:
de:8a:9c:69:64:55:08:a3:65:ea:2e:de:fe:06:93:
91:9d:f6:a6:64:2d:70:fe:a6:11:e5:f2:97:b0:a9:
e7:2d:d3:a8:e6:b4:de:a2:6a:5e:ee:59:97:f0:97:
66:8c:0c:6b:59:2f:e3:22:2b:2a:44:f9:f7:77:ec:
84:d4:07:73:09:ea:53:15:7f:aa:80:3e:6b:45:8f:
05:55:1c:c0:59:69:79:b5:e4:d4:81:e3:eb:23:78:
f9:a1:ac:16:bc:f9:dc:39:5a:48:b3:b9:63:6b:a2:
90:cc:9e:74:53:5d:87:1c:04:27:09:8c:04:f5:49:
80:42:09:dc:55:2f:8e:ce:63:dc:d5:4f:4c:f9:24:
0e:e5:c6:04:47:6a:cb:96:13:ff:39:5b:7e:89:e7:
99:0e:8c:97:37:d5:82:34:f8:53:04:5b:0a:bc:07:
84:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:03:3F:EB:96:E3:9D:65:39:41:96:CB:53:BB:F1:E8:61:3A:29:10
X509v3 Authority Key Identifier:
keyid:0D:85:4E:B8:13:3C:1C:04:DB:D0:73:EC:BB:4E:E3:FA:13:02:AE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYVOuBM8HATb0HPsu07j-hMCroY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/85483e-a23c-44bf-9900-203495152c69/1/BwM_65bjnWU5QZbLU7vx6GE6KRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/85483e-a23c-44bf-9900-203495152c69/1/DYVOuBM8HATb0HPsu07j-hMCroY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.98.0/23
Signature Algorithm: sha256WithRSAEncryption
17:ce:38:e2:d2:e9:6e:71:2a:07:0a:ae:18:3e:58:20:46:e7:
7e:9d:5b:bc:4f:c7:7e:ce:d7:cf:17:a3:f9:b0:6d:16:82:ac:
5a:c0:6a:f0:f6:56:6d:08:d0:84:b0:dd:7c:b4:71:2e:24:f7:
a2:60:29:54:14:fa:2e:87:05:7b:19:59:e1:69:4a:c6:4c:c6:
bd:74:02:14:4e:fb:c3:35:6a:77:97:58:7b:1d:0e:16:1e:71:
5c:c7:b2:b0:92:1c:f9:0a:68:4e:ee:d6:4f:a2:3e:73:1c:12:
da:48:4c:ce:e5:cc:74:39:5f:59:b7:d3:9a:28:d8:00:04:50:
82:5b:c3:6a:47:24:9f:50:97:34:fd:c2:b2:19:52:6a:a8:85:
bc:3d:eb:fe:5e:f8:d1:17:69:4f:ce:04:b9:61:5d:86:d3:d7:
24:08:10:7a:eb:6a:81:2a:03:1b:51:32:d0:eb:ad:7e:2e:a7:
a5:de:2a:7f:8f:4a:d5:e8:b7:20:a1:0c:04:b6:3b:5f:95:f9:
92:9d:ff:cc:4c:0a:ed:b7:01:b3:71:9d:ae:e3:87:6d:af:d6:
dc:65:3a:17:42:f1:78:9a:f5:3c:99:6e:9c:26:20:27:80:ba:
f4:ff:33:92:93:8c:4f:0c:68:f8:89:d1:22:5c:41:8d:32:39:
ae:73:eb:2a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAcB4ijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZDg1NGViODEzM2MxYzA0ZGJkMDczZWNiYjRlZTNmYTEzMDJhZTg2MB4XDTIyMDEw
MTE1MDA1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDcwMzNmZWI5NmUz
OWQ2NTM5NDE5NmNiNTNiYmYxZTg2MTNhMjkxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4n6PrpX9837kQUCUXecsCqWTwaJj/+u0/lRQaDy9OZW0U2
NVrbhp3zl9pVJ9473kzkhCy8WPLpA5wLifePV9e+vs2cpX6gtY77d1MYObXRhj/D
P/cTe6qd3oqcaWRVCKNl6i7e/gaTkZ32pmQtcP6mEeXyl7Cp5y3TqOa03qJqXu5Z
l/CXZowMa1kv4yIrKkT593fshNQHcwnqUxV/qoA+a0WPBVUcwFlpebXk1IHj6yN4
+aGsFrz53DlaSLO5Y2uikMyedFNdhxwEJwmMBPVJgEIJ3FUvjs5j3NVPTPkkDuXG
BEdqy5YT/zlbfonnmQ6MlzfVgjT4UwRbCrwHhHsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQHAz/rluOdZTlBlstTu/HoYTopEDAfBgNVHSMEGDAWgBQNhU64EzwcBNvQ
c+y7TuP6EwKuhjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RZVk91Qk04SEFUYjBIUHN1MDdqLWhNQ3JvWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDgvODU0ODNlLWEyM2MtNDRiZi05OTAwLTIwMzQ5NTE1MmM2OS8x
L0J3TV82NWJqbldVNVFaYkxVN3Z4NkdFNktSQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgv
ODU0ODNlLWEyM2MtNDRiZi05OTAwLTIwMzQ5NTE1MmM2OS8xL0RZVk91Qk04SEFU
YjBIUHN1MDdqLWhNQ3JvWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1UYjANBgkqhkiG9w0BAQsFAAOC
AQEAF8444tLpbnEqBwquGD5YIEbnfp1bvE/Hfs7Xzxej+bBtFoKsWsBq8PZWbQjQ
hLDdfLRxLiT3omApVBT6LocFexlZ4WlKxkzGvXQCFE77wzVqd5dYex0OFh5xXMey
sJIc+QpoTu7WT6I+cxwS2khMzuXMdDlfWbfTmijYAARQglvDakckn1CXNP3CshlS
aqiFvD3r/l740RdpT84EuWFdhtPXJAgQeutqgSoDG1Ey0Outfi6npd4qf49K1ei3
IKEMBLY7X5X5kp3/zEwK7bcBs3GdruOHba/W3GU6F0LxeJr1PJlunCYgJ4C69P8z
kpOMTwxo+InRIlxBjTI5rnPrKg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:46 2024 by rpki-client on console-fra.rpki-client.org