Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa
File: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (raw, json)
Hash identifier: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=
Subject key identifier: 9B:A2:32:3D:61:04:6D:B0:2F:BE:F4:8D:C3:92:47:E9:EB:93:43:B0
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 019423D7A642B14036B465EA92236D60D2E0
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa
Signing time: Wed 01 Jan 2025 21:48:42 +0000
ROA not before: Wed 01 Jan 2025 21:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209043
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:a6:42:b1:40:36:b4:65:ea:92:23:6d:60:d2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jan 1 21:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ba2323d61046db02fbef48dc39247e9eb9343b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3b:54:65:41:5f:9b:1a:5a:05:c0:57:4f:d1:
87:46:1a:25:0b:1e:ab:e5:98:00:bc:2f:75:12:24:
36:67:1a:5c:9a:96:8a:f6:a7:ef:da:d6:97:bd:fa:
f1:db:d4:70:03:14:9a:43:99:81:2a:29:10:b6:19:
68:e0:5c:82:e5:12:e7:06:7e:1c:cd:b3:56:49:8b:
b5:19:10:32:99:29:d6:1a:af:38:b8:ad:e9:8f:81:
57:6f:09:9c:f3:2d:26:0c:53:86:b0:42:48:60:c1:
98:3d:b7:30:95:cb:fe:7e:e8:1a:1e:ae:a1:20:45:
c9:de:03:8a:09:33:b0:5e:85:8f:27:c7:06:e7:0d:
45:b6:28:89:c2:98:94:7f:17:8b:a0:07:ed:f4:e3:
37:1f:85:74:ba:11:a9:a0:38:c0:42:8c:5d:d3:f3:
89:ae:b4:c0:c6:13:e2:6b:88:2b:7f:56:ea:d8:09:
d8:04:86:2e:16:8a:33:0f:3d:d2:ae:23:26:63:99:
a6:c0:91:10:2f:c4:07:86:22:0d:a1:71:f6:0b:fe:
be:4a:f7:0f:b1:d9:8f:53:9d:a1:ef:a2:e2:fa:ca:
00:e8:57:a2:da:23:62:e6:12:9a:e9:9a:6c:09:a9:
33:1e:e2:f0:b5:a4:80:cf:e3:a9:0b:94:d5:65:8e:
4a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A2:32:3D:61:04:6D:B0:2F:BE:F4:8D:C3:92:47:E9:EB:93:43:B0
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:70:96:08:02:ae:4c:e9:3a:4b:e2:7e:48:19:cf:b1:92:64:
15:32:bd:fa:06:b5:80:70:4d:4c:f5:c7:8c:d4:39:fd:27:81:
7a:9a:e9:c2:0f:0e:e7:b5:95:3f:f4:eb:b5:7f:63:b4:dc:1d:
70:ee:b2:2b:bb:1d:77:51:25:5f:76:52:de:02:b4:6d:64:44:
c3:a6:59:df:3f:4d:5a:1c:1d:ae:a4:a2:a1:82:36:ae:d3:71:
8b:10:bd:28:91:86:6b:f6:f4:85:af:19:54:ed:cf:67:b5:be:
44:bf:72:f5:42:65:70:a2:02:10:09:01:c8:a0:4b:06:03:1b:
a8:95:54:6b:a9:d7:d5:de:72:5e:1a:e4:27:92:e0:de:21:af:
69:c3:f1:5b:87:b4:61:d5:6c:e5:1c:69:d7:d4:e6:6d:47:62:
4a:b5:28:47:3d:33:f7:1a:86:81:21:0a:1a:90:26:0b:dd:c1:
99:0c:0f:11:ad:96:91:80:4f:b0:77:20:76:e2:e3:6e:26:79:
62:cf:e3:76:a0:bd:37:fe:1e:81:ec:8b:92:2c:e2:8b:3c:8b:
3f:76:d3:f3:b8:1f:67:89:52:6e:80:9a:3d:33:9e:fc:bb:4b:
d7:90:a5:5b:c2:4e:80:c6:fa:6a:7c:39:c4:78:83:4f:92:9f:
85:15:70:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj16ZCsUA2tGXqkiNtYNLgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjUwMTAxMjE0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmEyMzIzZDYxMDQ2ZGIwMmZiZWY0OGRjMzkyNDdlOWViOTM0M2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxztUZUFfmxpaBcBXT9GHRholCx6r
5ZgAvC91EiQ2ZxpcmpaK9qfv2taXvfrx29RwAxSaQ5mBKikQthlo4FyC5RLnBn4c
zbNWSYu1GRAymSnWGq84uK3pj4FXbwmc8y0mDFOGsEJIYMGYPbcwlcv+fugaHq6h
IEXJ3gOKCTOwXoWPJ8cG5w1FtiiJwpiUfxeLoAft9OM3H4V0uhGpoDjAQoxd0/OJ
rrTAxhPia4grf1bq2AnYBIYuFoozDz3SriMmY5mmwJEQL8QHhiINoXH2C/6+SvcP
sdmPU52h76Li+soA6Fei2iNi5hKa6ZpsCakzHuLwtaSAz+OpC5TVZY5KzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJuiMj1hBG2wL770jcOSR+nrk0OwMB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvbTZJeVBXRUViYkF2dnZTTnc1Skg2ZXVUUTdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZyRMA0G
CSqGSIb3DQEBCwUAA4IBAQAucJYIAq5M6TpL4n5IGc+xkmQVMr36BrWAcE1M9ceM
1Dn9J4F6munCDw7ntZU/9Ou1f2O03B1w7rIrux13USVfdlLeArRtZETDplnfP01a
HB2upKKhgjau03GLEL0okYZr9vSFrxlU7c9ntb5Ev3L1QmVwogIQCQHIoEsGAxuo
lVRrqdfV3nJeGuQnkuDeIa9pw/Fbh7Rh1WzlHGnX1OZtR2JKtShHPTP3GoaBIQoa
kCYL3cGZDA8RrZaRgE+wdyB24uNuJnliz+N2oL03/h6B7IuSLOKLPIs/dtPzuB9n
iVJugJo9M578u0vXkKVbwk6AxvpqfDnEeINPkp+FFXCu
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:37:28 2025 by rpki-client