Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/G6QTWGAz2oUeXEKNZ1HG8q7RVi0.roa
File: G6QTWGAz2oUeXEKNZ1HG8q7RVi0.roa (raw, json)
Hash identifier: qpJq7QjGXBRth3in5m4PBM61KDygLTMNAxI/Nwk2Y2E=
Subject key identifier: 1B:A4:13:58:60:33:DA:85:1E:5C:42:8D:67:51:C6:F2:AE:D1:56:2D
Certificate issuer: /CN=f4db95f9d1b5c3ec934ff84d6ff7f01242da842a
Certificate serial: 01675131
Authority key identifier: F4:DB:95:F9:D1:B5:C3:EC:93:4F:F8:4D:6F:F7:F0:12:42:DA:84:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NuV-dG1w-yTT_hNb_fwEkLahCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/G6QTWGAz2oUeXEKNZ1HG8q7RVi0.roa
Signing time: Sat 01 Jan 2022 12:04:19 +0000
ROA not before: Sat 01 Jan 2022 12:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209984
IP address blocks: 45.132.48.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23548209 (0x1675131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4db95f9d1b5c3ec934ff84d6ff7f01242da842a
Validity
Not Before: Jan 1 12:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ba413586033da851e5c428d6751c6f2aed1562d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:83:ac:15:17:ee:af:31:87:5a:92:bd:e6:41:
04:07:32:90:e2:23:fe:aa:89:a0:e7:29:f4:54:31:
6b:df:d7:df:6a:07:91:08:e6:ce:f3:b1:ba:87:4b:
b3:ef:2a:e2:ce:55:cf:cf:cb:5c:f2:1a:41:83:63:
d7:d9:d6:e6:0a:db:ca:f8:9f:45:3f:7e:8e:dd:90:
05:94:ea:8a:28:84:1f:b4:d0:da:5b:90:f3:d1:ca:
44:40:7a:6f:bc:52:32:07:0a:a2:1f:65:9e:6e:27:
05:ea:be:98:13:44:ed:85:6e:65:88:40:5a:77:e8:
43:9a:b4:4e:9f:1f:8c:89:e3:c9:8d:f5:58:a7:09:
12:43:30:05:83:4c:c0:36:b5:6d:a0:75:a2:79:7e:
69:b4:8c:83:11:35:fc:84:61:d3:ba:68:2c:92:5d:
76:a4:64:cb:b6:c5:32:a0:76:74:b1:af:a1:e7:58:
6f:9e:68:67:46:ee:03:03:52:cf:69:bf:77:cc:06:
15:36:ac:05:50:f8:ae:74:4f:af:12:5b:f3:a5:9f:
26:5f:b3:c9:be:18:7a:b9:da:85:2f:ef:83:56:47:
82:85:7b:9d:b0:85:8d:fa:29:e3:59:d2:4e:b7:7f:
f8:3a:3e:3d:ee:28:79:3e:c0:6b:ee:85:6c:18:7d:
c1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A4:13:58:60:33:DA:85:1E:5C:42:8D:67:51:C6:F2:AE:D1:56:2D
X509v3 Authority Key Identifier:
keyid:F4:DB:95:F9:D1:B5:C3:EC:93:4F:F8:4D:6F:F7:F0:12:42:DA:84:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NuV-dG1w-yTT_hNb_fwEkLahCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/G6QTWGAz2oUeXEKNZ1HG8q7RVi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/9NuV-dG1w-yTT_hNb_fwEkLahCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.48.0/23
Signature Algorithm: sha256WithRSAEncryption
86:60:f0:ed:52:5b:89:97:fc:59:13:17:f8:5a:b5:1d:09:05:
7c:17:fc:52:08:aa:a0:7a:c8:36:69:bc:d1:df:fc:74:0d:26:
80:eb:a9:1d:c5:6e:79:bf:01:39:45:67:17:99:b2:f2:52:26:
9f:51:01:2e:80:53:09:34:84:f0:93:7a:27:c8:b3:40:9f:32:
f4:48:0d:9f:fb:ac:1b:58:00:0c:b4:f6:79:8b:59:f6:77:14:
88:a4:d1:bd:6a:6e:5e:a3:a7:7a:d3:74:52:ae:82:35:a6:ab:
8a:70:e5:3a:23:19:d2:cb:52:19:e8:b1:8f:79:9f:4c:26:83:
45:c7:60:5a:14:5c:81:b7:b3:a1:b8:74:cf:6b:4e:1b:39:d8:
d9:6a:c4:e4:15:44:77:1d:b5:34:d5:f7:e5:e1:43:83:64:5d:
d7:7b:13:81:b9:ef:69:2b:09:44:fe:cd:81:c4:9d:62:9c:b2:
76:21:84:c3:c3:57:db:5e:86:de:d5:da:d6:16:c9:f2:91:f8:
dd:1c:b8:98:82:f0:f0:12:47:93:d7:47:c8:31:41:02:50:f3:
a9:b0:b8:2c:66:24:41:77:ef:2b:03:98:1f:ef:65:fe:95:b5:
73:17:40:17:cf:5d:7e:52:94:18:10:e2:fc:f8:59:5f:fc:63:
37:4b:e9:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAWdRMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NGRiOTVmOWQxYjVjM2VjOTM0ZmY4NGQ2ZmY3ZjAxMjQyZGE4NDJhMB4XDTIyMDEw
MTEyMDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJhNDEzNTg2MDMz
ZGE4NTFlNWM0MjhkNjc1MWM2ZjJhZWQxNTYyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOiDrBUX7q8xh1qSveZBBAcykOIj/qqJoOcp9FQxa9/X32oH
kQjmzvOxuodLs+8q4s5Vz8/LXPIaQYNj19nW5grbyvifRT9+jt2QBZTqiiiEH7TQ
2luQ89HKREB6b7xSMgcKoh9lnm4nBeq+mBNE7YVuZYhAWnfoQ5q0Tp8fjInjyY31
WKcJEkMwBYNMwDa1baB1onl+abSMgxE1/IRh07poLJJddqRky7bFMqB2dLGvoedY
b55oZ0buAwNSz2m/d8wGFTasBVD4rnRPrxJb86WfJl+zyb4YernahS/vg1ZHgoV7
nbCFjfop41nSTrd/+Do+Pe4oeT7Aa+6FbBh9wWUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQbpBNYYDPahR5cQo1nUcbyrtFWLTAfBgNVHSMEGDAWgBT025X50bXD7JNP
+E1v9/ASQtqEKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlOdVYtZEcxdy15VFRfaE5iX2Z3RWtMYWhDby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjAvNDZkN2FmLTAyZmItNDVmOS1hOTIyLTE0YjM4YjZlMDBhNy8x
L0c2UVRXR0F6Mm9VZVhFS05aMUhHOHE3UlZpMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAv
NDZkN2FmLTAyZmItNDVmOS1hOTIyLTE0YjM4YjZlMDBhNy8xLzlOdVYtZEcxdy15
VFRfaE5iX2Z3RWtMYWhDby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2EMDANBgkqhkiG9w0BAQsFAAOC
AQEAhmDw7VJbiZf8WRMX+Fq1HQkFfBf8UgiqoHrINmm80d/8dA0mgOupHcVueb8B
OUVnF5my8lImn1EBLoBTCTSE8JN6J8izQJ8y9EgNn/usG1gADLT2eYtZ9ncUiKTR
vWpuXqOnetN0Uq6CNaarinDlOiMZ0stSGeixj3mfTCaDRcdgWhRcgbezobh0z2tO
GznY2WrE5BVEdx21NNX35eFDg2Rd13sTgbnvaSsJRP7NgcSdYpyydiGEw8NX216G
3tXa1hbJ8pH43Ry4mILw8BJHk9dHyDFBAlDzqbC4LGYkQXfvKwOYH+9l/pW1cxdA
F89dflKUGBDi/PhZX/xjN0vp8g==
-----END CERTIFICATE-----
Generated at Mon May 12 10:15:59 2025 by rpki-client