Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/qwZtdLaZC8qUmsGD8YNQuJnCfZ8.roa
File: qwZtdLaZC8qUmsGD8YNQuJnCfZ8.roa (raw, json)
Hash identifier: SU5vGRqeGnKUSIQW5/i/arvk73r71+GMPtqN53FKXPw=
Subject key identifier: AB:06:6D:74:B6:99:0B:CA:94:9A:C1:83:F1:83:50:B8:99:C2:7D:9F
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 018499D9CC6E9E9B2A8D42842B3FC18D7C85
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/qwZtdLaZC8qUmsGD8YNQuJnCfZ8.roa
Signing time: Mon 21 Nov 2022 11:01:38 +0000
ROA not before: Mon 21 Nov 2022 11:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 45.156.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:d9:cc:6e:9e:9b:2a:8d:42:84:2b:3f:c1:8d:7c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Nov 21 11:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab066d74b6990bca949ac183f18350b899c27d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d9:20:f5:d3:73:b6:92:75:18:10:ce:c9:32:
9f:1e:f5:40:60:11:33:e7:ef:87:b7:aa:8e:f5:f2:
d7:9d:b2:8f:a1:87:71:eb:b4:dc:76:8f:7b:cc:76:
46:13:ac:b7:86:f8:41:b0:ea:16:b4:d6:05:74:ca:
44:34:04:84:c8:76:64:02:e1:b5:21:87:e4:e9:18:
19:97:a6:95:60:ab:8f:f1:83:f3:ef:45:bf:27:17:
a8:d4:e5:d2:52:5a:dd:25:59:39:69:b8:f5:e2:6b:
79:96:1e:d0:4d:be:88:8e:d4:7d:07:ae:f8:bd:e9:
13:bb:32:fa:64:77:5f:82:9b:23:9e:d2:b2:dc:53:
1b:09:37:de:fd:26:45:27:26:44:2b:a7:85:27:f9:
33:9a:06:eb:42:e1:98:ab:26:52:f9:3a:08:2f:43:
d5:e9:ff:77:16:df:3f:ae:5e:26:d5:0a:c0:61:11:
0f:b8:32:8c:b4:bf:57:c9:a1:50:c4:0f:d4:46:34:
96:b2:bd:a4:9c:ea:7f:42:9a:94:21:1a:58:6a:79:
7c:ef:e8:f5:ce:9c:c6:76:ea:49:ac:b5:7b:f0:da:
d2:ae:da:2e:ff:0d:3b:b9:6f:77:b4:16:e1:fe:01:
f3:b4:aa:a5:da:2d:6e:fc:8e:01:80:2c:c7:ae:35:
95:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:06:6D:74:B6:99:0B:CA:94:9A:C1:83:F1:83:50:B8:99:C2:7D:9F
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/qwZtdLaZC8qUmsGD8YNQuJnCfZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.147.0/24
Signature Algorithm: sha256WithRSAEncryption
42:be:78:b7:1c:bd:66:1c:32:72:c4:08:55:6a:9f:7f:c1:bb:
80:2b:c3:78:eb:db:cc:e8:3e:88:9c:73:4b:8e:66:ed:ad:7c:
f8:ff:f4:36:df:60:58:41:4a:e7:3c:2f:cf:f9:57:7d:00:01:
cb:76:c2:92:54:49:8c:1e:03:65:05:85:8d:f8:e1:74:18:28:
98:7f:f1:ca:a1:88:23:5a:00:95:a4:d5:62:15:52:85:96:69:
23:55:0e:d8:3a:da:67:47:da:00:6f:ad:65:02:5f:69:f4:7c:
69:15:a2:c9:78:93:9c:6d:ae:9b:c7:8f:b9:be:6a:f2:41:f7:
b2:34:2c:e8:ae:9a:39:1f:b3:b6:5a:3c:62:95:a2:bc:5c:d6:
37:de:b7:06:6e:df:a3:65:0f:1d:3c:61:c9:98:bf:16:ce:48:
0e:85:51:98:a5:90:51:b7:22:75:ad:9b:44:e7:dc:81:de:2d:
0a:f2:4e:f0:22:93:a7:3c:c6:5b:13:8c:e3:f2:32:1a:92:ba:
db:25:41:cf:3c:c5:61:b1:d5:15:8d:73:1a:ad:5d:81:57:9a:
88:23:b0:6a:cd:0e:b9:e9:b9:49:36:bb:e3:e2:c3:9f:af:28:
a4:ea:8f:b0:2c:28:d2:19:8c:06:bd:65:ac:2e:8e:45:9c:99:
fc:0e:ef:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSZ2cxunpsqjUKEKz/BjXyFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2
OTczY2YwHhcNMjIxMTIxMTEwMTM4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjA2NmQ3NGI2OTkwYmNhOTQ5YWMxODNmMTgzNTBiODk5YzI3ZDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9kg9dNztpJ1GBDOyTKfHvVAYBEz
5++Ht6qO9fLXnbKPoYdx67Tcdo97zHZGE6y3hvhBsOoWtNYFdMpENASEyHZkAuG1
IYfk6RgZl6aVYKuP8YPz70W/Jxeo1OXSUlrdJVk5abj14mt5lh7QTb6IjtR9B674
vekTuzL6ZHdfgpsjntKy3FMbCTfe/SZFJyZEK6eFJ/kzmgbrQuGYqyZS+ToIL0PV
6f93Ft8/rl4m1QrAYREPuDKMtL9XyaFQxA/URjSWsr2knOp/QpqUIRpYanl87+j1
zpzGdupJrLV78NrSrtou/w07uW93tBbh/gHztKql2i1u/I4BgCzHrjWVMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKsGbXS2mQvKlJrBg/GDULiZwn2fMB8GA1UdIwQY
MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It
MzQwZDYyNWM2ZGJhLzEvcXdadGRMYVpDOHFVbXNHRDhZTlF1Sm5DZlo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh
LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZyTMA0G
CSqGSIb3DQEBCwUAA4IBAQBCvni3HL1mHDJyxAhVap9/wbuAK8N469vM6D6InHNL
jmbtrXz4//Q232BYQUrnPC/P+Vd9AAHLdsKSVEmMHgNlBYWN+OF0GCiYf/HKoYgj
WgCVpNViFVKFlmkjVQ7YOtpnR9oAb61lAl9p9HxpFaLJeJOcba6bx4+5vmryQfey
NCzorpo5H7O2WjxilaK8XNY33rcGbt+jZQ8dPGHJmL8WzkgOhVGYpZBRtyJ1rZtE
59yB3i0K8k7wIpOnPMZbE4zj8jIakrrbJUHPPMVhsdUVjXMarV2BV5qII7BqzQ65
6blJNrvj4sOfryik6o+wLCjSGYwGvWWsLo5FnJn8Du8X
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:50:57 2025 by rpki-client