Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/69817d-42e8-45a1-9d54-3ada4d4aed5a/1/sOQwI7k8sEsFCMxabympYxTw7gw.roa
File: sOQwI7k8sEsFCMxabympYxTw7gw.roa (raw, json)
Hash identifier: tnNTS2nZxZN35ITUMi5XlIhsV5LqJU8G8PKKI6fTY0w=
Subject key identifier: B0:E4:30:23:B9:3C:B0:4B:05:08:CC:5A:6F:29:A9:63:14:F0:EE:0C
Certificate issuer: /CN=425e132c37f05117dab94af1869a7149c6408d80
Certificate serial: 0227DEF0
Authority key identifier: 42:5E:13:2C:37:F0:51:17:DA:B9:4A:F1:86:9A:71:49:C6:40:8D:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ql4TLDfwURfauUrxhppxScZAjYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/69817d-42e8-45a1-9d54-3ada4d4aed5a/1/sOQwI7k8sEsFCMxabympYxTw7gw.roa
Signing time: Sat 09 Apr 2022 15:00:18 +0000
ROA not before: Sat 09 Apr 2022 15:00:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 45.81.56.0/24 maxlen: 24
45.81.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36167408 (0x227def0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=425e132c37f05117dab94af1869a7149c6408d80
Validity
Not Before: Apr 9 15:00:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0e43023b93cb04b0508cc5a6f29a96314f0ee0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:0a:7d:a7:9e:0d:9d:20:20:fb:1e:db:e8:
00:31:5c:a7:35:cb:33:b4:fe:08:19:6a:d3:61:5c:
ca:d2:1a:c5:a2:0a:92:de:c5:b2:1a:14:55:8e:fd:
2c:ba:b4:c9:5d:7e:ae:37:a7:5c:5b:e7:94:13:fc:
61:22:a2:24:2c:23:e7:72:9d:95:f4:40:0f:66:56:
e6:b3:77:0f:27:62:29:da:65:75:50:fd:bd:3e:dc:
16:f7:e3:26:16:03:d0:2d:58:c1:12:6a:2d:3e:ea:
ac:d3:7a:53:69:fc:93:a5:42:d0:e8:b7:e3:bd:71:
01:a8:f7:90:08:6a:47:ca:08:e7:fa:e6:fb:b1:aa:
c8:56:56:0b:67:9f:89:71:ca:9c:4c:42:f6:d4:40:
64:ed:36:ce:6b:96:24:b1:e7:42:1d:7b:67:25:a1:
c0:4a:66:0d:dc:75:d8:92:82:a6:15:05:1f:da:0b:
c8:54:f5:f9:c3:fc:12:b1:0e:46:43:67:69:d4:f4:
6d:9d:6c:38:2d:11:33:e4:2e:57:18:e5:7c:f8:d6:
9c:3e:43:79:f0:0c:85:03:d4:86:d7:40:50:06:be:
61:46:9d:10:b8:e5:11:91:ae:ed:2c:27:24:e0:42:
80:eb:82:fd:e8:a0:51:6b:bf:8b:aa:b0:0b:0d:02:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E4:30:23:B9:3C:B0:4B:05:08:CC:5A:6F:29:A9:63:14:F0:EE:0C
X509v3 Authority Key Identifier:
keyid:42:5E:13:2C:37:F0:51:17:DA:B9:4A:F1:86:9A:71:49:C6:40:8D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ql4TLDfwURfauUrxhppxScZAjYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/69817d-42e8-45a1-9d54-3ada4d4aed5a/1/sOQwI7k8sEsFCMxabympYxTw7gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/69817d-42e8-45a1-9d54-3ada4d4aed5a/1/Ql4TLDfwURfauUrxhppxScZAjYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.56.0/23
Signature Algorithm: sha256WithRSAEncryption
63:68:96:e9:1e:f9:81:28:28:bb:bd:8f:e7:0f:b0:18:73:6f:
ff:fa:d1:5f:dc:95:85:29:3d:f9:4d:7e:e7:5a:b8:5a:18:db:
5a:87:28:e3:82:d9:e0:b2:45:31:0f:9f:91:d2:89:07:19:af:
4c:5b:6b:b5:5e:82:1c:3c:36:90:89:d4:16:64:91:3b:8f:51:
5d:dd:a3:e6:4e:fb:6f:11:cd:23:0e:6e:f7:7f:09:56:7e:cf:
d6:d8:7a:2f:9b:46:b4:a8:42:2c:57:0f:09:52:a9:6a:2b:ba:
a2:9f:99:85:08:8a:b8:57:b8:ef:f4:d4:2b:8b:11:3f:62:68:
80:31:ca:9d:7d:a6:c1:58:0d:7d:f3:58:41:9d:c2:70:b3:c9:
0f:08:c7:bf:18:84:3a:f8:5f:a9:ac:37:64:57:ea:e1:e4:da:
f9:e4:39:90:0d:60:c2:c7:f9:cd:61:8f:00:63:73:73:95:21:
6d:c6:bd:27:2a:c7:d1:5f:62:9b:10:fb:f3:c2:3c:5d:99:38:
39:e7:81:46:34:63:2b:cb:0b:7e:bc:30:47:f3:07:bd:cd:5e:
2e:79:eb:08:3b:af:21:79:20:56:d6:ae:82:fe:f9:89:d9:37:
27:df:59:bc:3d:81:a6:0a:0a:32:bf:92:59:98:c2:04:12:3a:
33:f1:48:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAife8DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MjVlMTMyYzM3ZjA1MTE3ZGFiOTRhZjE4NjlhNzE0OWM2NDA4ZDgwMB4XDTIyMDQw
OTE1MDAxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjBlNDMwMjNiOTNj
YjA0YjA1MDhjYzVhNmYyOWE5NjMxNGYwZWUwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALmRCn2nng2dICD7HtvoADFcpzXLM7T+CBlq02FcytIaxaIK
kt7FshoUVY79LLq0yV1+rjenXFvnlBP8YSKiJCwj53KdlfRAD2ZW5rN3DydiKdpl
dVD9vT7cFvfjJhYD0C1YwRJqLT7qrNN6U2n8k6VC0Oi3471xAaj3kAhqR8oI5/rm
+7GqyFZWC2efiXHKnExC9tRAZO02zmuWJLHnQh17ZyWhwEpmDdx12JKCphUFH9oL
yFT1+cP8ErEORkNnadT0bZ1sOC0RM+QuVxjlfPjWnD5DefAMhQPUhtdAUAa+YUad
ELjlEZGu7SwnJOBCgOuC/eigUWu/i6qwCw0C+60CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSw5DAjuTywSwUIzFpvKaljFPDuDDAfBgNVHSMEGDAWgBRCXhMsN/BRF9q5
SvGGmnFJxkCNgDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FsNFRMRGZ3VVJmYXVVcnhocHB4U2NaQWpZQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTcvNjk4MTdkLTQyZTgtNDVhMS05ZDU0LTNhZGE0ZDRhZWQ1YS8x
L3NPUXdJN2s4c0VzRkNNeGFieW1wWXhUdzdndy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcv
Njk4MTdkLTQyZTgtNDVhMS05ZDU0LTNhZGE0ZDRhZWQ1YS8xL1FsNFRMRGZ3VVJm
YXVVcnhocHB4U2NaQWpZQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1RODANBgkqhkiG9w0BAQsFAAOC
AQEAY2iW6R75gSgou72P5w+wGHNv//rRX9yVhSk9+U1+51q4WhjbWoco44LZ4LJF
MQ+fkdKJBxmvTFtrtV6CHDw2kInUFmSRO49RXd2j5k77bxHNIw5u938JVn7P1th6
L5tGtKhCLFcPCVKpaiu6op+ZhQiKuFe47/TUK4sRP2JogDHKnX2mwVgNffNYQZ3C
cLPJDwjHvxiEOvhfqaw3ZFfq4eTa+eQ5kA1gwsf5zWGPAGNzc5Uhbca9JyrH0V9i
mxD788I8XZk4OeeBRjRjK8sLfrwwR/MHvc1eLnnrCDuvIXkgVtaugv75idk3J99Z
vD2BpgoKMr+SWZjCBBI6M/FItg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:00 2024 by rpki-client on console-ams.rpki-client.org