Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gd4f67E5HeBDx5ceJKdud7jO0Hk.roa
File: Gd4f67E5HeBDx5ceJKdud7jO0Hk.roa (raw, json)
Hash identifier: ozTKh02wgYkKqbl3ptST/C+bwDEQQeGr9jw+aK64Qio=
Subject key identifier: 19:DE:1F:EB:B1:39:1D:E0:43:C7:97:1E:24:A7:6E:77:B8:CE:D0:79
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0188AF7E38F1C8645248E9A9AAEC3060C36D
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gd4f67E5HeBDx5ceJKdud7jO0Hk.roa
Signing time: Mon 12 Jun 2023 12:04:24 +0000
ROA not before: Mon 12 Jun 2023 12:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.156.144.0/24 maxlen: 24
45.156.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:7e:38:f1:c8:64:52:48:e9:a9:aa:ec:30:60:c3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jun 12 12:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19de1febb1391de043c7971e24a76e77b8ced079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2e:a2:28:c2:b5:f4:c8:6b:c1:bc:f4:d9:2a:
41:f6:1e:f6:6f:ba:88:5a:78:91:d6:a6:7a:0c:72:
1b:03:fc:f3:5d:ba:62:ed:2b:1d:f5:0a:39:d4:b8:
b7:82:92:19:b5:cb:3b:6a:2d:88:d6:d6:3e:b9:3c:
ff:f6:2c:46:20:2a:3f:3c:de:3e:9a:bf:1c:05:f1:
f3:b7:82:fa:e5:36:cd:38:e1:1b:89:0f:6c:26:7b:
d4:55:3b:ff:12:80:ad:38:f6:3c:a5:eb:16:17:72:
df:73:a0:ce:24:45:0a:54:23:80:ff:93:74:96:03:
39:63:66:f6:bb:76:e3:3c:87:78:e7:76:67:d8:ce:
4b:24:f3:b4:69:ba:23:30:2e:2c:27:fd:6a:a2:bd:
ae:76:56:25:7c:8c:c0:d0:fb:15:4e:11:0c:00:66:
f3:78:4b:65:d3:60:32:e7:83:c2:30:74:d2:96:0a:
2f:95:4c:97:a7:75:2a:e9:49:99:9f:40:75:7f:ec:
f5:37:b2:5c:ca:2e:d6:20:81:bd:10:09:7a:30:7e:
9c:3a:3e:c7:b3:e0:a8:f8:fe:01:9f:a5:04:fd:24:
4f:44:47:7e:3c:7f:45:f9:c6:17:30:9a:20:66:a6:
2a:2e:c6:bc:a9:e7:a8:65:94:1e:fa:e1:bd:62:8e:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:DE:1F:EB:B1:39:1D:E0:43:C7:97:1E:24:A7:6E:77:B8:CE:D0:79
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gd4f67E5HeBDx5ceJKdud7jO0Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.144.0/23
Signature Algorithm: sha256WithRSAEncryption
be:b4:07:d1:61:4e:a7:ce:ef:a1:6e:eb:09:ac:a3:d7:92:04:
58:11:9b:9a:61:f4:ab:e5:39:f7:d6:ed:2e:cf:c3:f7:8a:58:
80:af:cc:ee:d8:87:f0:58:1a:bf:8b:d6:1e:72:1a:1d:33:3f:
a0:dd:8e:e4:33:0c:70:f7:93:58:bb:14:f2:13:ef:72:a6:67:
bb:d0:1e:dc:61:1d:19:14:1e:c0:c3:d1:9a:cb:57:e2:ad:0f:
24:20:0e:8c:2d:33:c9:aa:0a:5f:08:30:b1:03:e6:30:6e:e3:
11:36:05:e5:26:16:b4:f2:65:4e:cb:eb:e1:ee:76:61:32:15:
92:bf:2f:eb:5c:bd:90:dc:af:4a:3b:dc:c9:40:94:02:24:46:
70:34:11:86:56:fc:29:87:d3:99:db:d5:8e:52:1e:5c:e5:7f:
23:b5:4d:bf:73:27:cd:16:2b:ea:0e:e0:4e:b1:50:4e:d5:3c:
39:ed:9f:00:cd:3e:54:95:87:ba:a8:83:59:b9:f9:68:5d:11:
75:e2:e1:b8:6d:a1:82:39:0c:fb:35:14:48:43:55:24:10:aa:
57:4a:47:a5:e3:f1:26:86:9a:25:7d:fe:00:6e:26:af:5c:20:
38:9e:97:b0:21:15:f1:17:33:f2:77:c9:b9:16:a3:9b:5e:06:
a4:09:7e:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYivfjjxyGRSSOmpquwwYMNtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjMwNjEyMTIwNDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWRlMWZlYmIxMzkxZGUwNDNjNzk3MWUyNGE3NmU3N2I4Y2VkMDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1y6iKMK19Mhrwbz02SpB9h72b7qI
WniR1qZ6DHIbA/zzXbpi7Ssd9Qo51Li3gpIZtcs7ai2I1tY+uTz/9ixGICo/PN4+
mr8cBfHzt4L65TbNOOEbiQ9sJnvUVTv/EoCtOPY8pesWF3Lfc6DOJEUKVCOA/5N0
lgM5Y2b2u3bjPId453Zn2M5LJPO0abojMC4sJ/1qor2udlYlfIzA0PsVThEMAGbz
eEtl02Ay54PCMHTSlgovlUyXp3Uq6UmZn0B1f+z1N7Jcyi7WIIG9EAl6MH6cOj7H
s+Co+P4Bn6UE/SRPREd+PH9F+cYXMJogZqYqLsa8qeeoZZQe+uG9Yo6PUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBneH+uxOR3gQ8eXHiSnbne4ztB5MB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvR2Q0ZjY3RTVIZUJEeDVjZUpLZHVkN2pPMEhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZyQMA0G
CSqGSIb3DQEBCwUAA4IBAQC+tAfRYU6nzu+hbusJrKPXkgRYEZuaYfSr5Tn31u0u
z8P3iliAr8zu2IfwWBq/i9YechodMz+g3Y7kMwxw95NYuxTyE+9ypme70B7cYR0Z
FB7Aw9Gay1firQ8kIA6MLTPJqgpfCDCxA+YwbuMRNgXlJha08mVOy+vh7nZhMhWS
vy/rXL2Q3K9KO9zJQJQCJEZwNBGGVvwph9OZ29WOUh5c5X8jtU2/cyfNFivqDuBO
sVBO1Tw57Z8AzT5UlYe6qINZufloXRF14uG4baGCOQz7NRRIQ1UkEKpXSkel4/Em
hpolff4AbiavXCA4npewIRXxFzPyd8m5FqObXgakCX4b
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:04:40 2025 by rpki-client