Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/2cddd6-17ca-4895-9d95-0c08109ae94e/1/J1NB0nIqlXQdRpuBHieP6O4AKwY.roa
File: J1NB0nIqlXQdRpuBHieP6O4AKwY.roa (raw, json)
Hash identifier: 7h5odY4K5CkXrKXW3P/LgxU8wP8NixPyUusAVmw79PA=
Subject key identifier: 27:53:41:D2:72:2A:95:74:1D:46:9B:81:1E:27:8F:E8:EE:00:2B:06
Certificate issuer: /CN=ac5418d6fbddb013f324499d0b8210f3966675d5
Certificate serial: 09007248
Authority key identifier: AC:54:18:D6:FB:DD:B0:13:F3:24:49:9D:0B:82:10:F3:96:66:75:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFQY1vvdsBPzJEmdC4IQ85ZmddU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/2cddd6-17ca-4895-9d95-0c08109ae94e/1/J1NB0nIqlXQdRpuBHieP6O4AKwY.roa
Signing time: Sat 01 Jan 2022 14:06:54 +0000
ROA not before: Sat 01 Jan 2022 14:06:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 45.67.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151024200 (0x9007248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5418d6fbddb013f324499d0b8210f3966675d5
Validity
Not Before: Jan 1 14:06:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=275341d2722a95741d469b811e278fe8ee002b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a6:4e:c9:00:03:d6:a4:57:63:53:4c:7b:1f:
b6:a1:6e:f5:6c:db:50:db:65:50:f3:f3:c8:b1:5d:
18:23:24:32:2f:b7:28:42:8c:74:ec:98:1c:73:6c:
5e:39:87:d8:ed:37:74:fd:ed:64:71:57:ac:e6:6b:
c0:db:39:95:6d:02:dd:ce:b7:0b:71:6f:64:a3:4b:
a2:6f:5b:9d:35:9c:97:65:a6:f0:c8:2f:d7:cf:a2:
63:ce:63:8c:3e:07:0a:1b:96:d7:1a:eb:61:ca:f4:
ff:a2:3e:27:3a:3a:71:f9:e6:98:e6:6e:2c:8a:6b:
a5:04:df:7e:84:be:33:3e:2b:20:b3:60:73:62:0e:
e7:96:08:d4:c9:6a:8d:a3:c9:22:5e:e9:7f:78:3e:
3b:8a:5f:90:51:f5:9c:df:d3:3b:2b:17:c1:e1:17:
42:98:d0:e1:ae:40:e6:81:c3:84:ad:67:18:8b:16:
e3:6e:50:46:27:ac:7f:14:e4:c9:0f:75:67:8a:76:
27:14:c6:e5:1a:2f:65:7e:42:8b:35:ef:0a:df:74:
84:9c:61:1c:61:2c:7e:2b:7f:9a:c9:eb:c4:5f:0c:
99:c1:bd:5c:f9:8d:80:cb:81:f5:67:0d:85:43:1a:
70:02:a3:ca:3f:27:09:d7:02:dc:3c:f4:f6:22:e1:
7e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:53:41:D2:72:2A:95:74:1D:46:9B:81:1E:27:8F:E8:EE:00:2B:06
X509v3 Authority Key Identifier:
keyid:AC:54:18:D6:FB:DD:B0:13:F3:24:49:9D:0B:82:10:F3:96:66:75:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFQY1vvdsBPzJEmdC4IQ85ZmddU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cddd6-17ca-4895-9d95-0c08109ae94e/1/J1NB0nIqlXQdRpuBHieP6O4AKwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cddd6-17ca-4895-9d95-0c08109ae94e/1/rFQY1vvdsBPzJEmdC4IQ85ZmddU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.132.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:28:b5:b8:ca:2f:93:ce:a9:19:71:2c:e0:a9:32:ef:2d:5b:
de:c3:68:b7:af:58:0f:ce:dd:64:4d:e4:bb:99:92:38:b3:df:
91:8c:0a:5c:f0:ce:c7:53:2a:b9:b0:e0:61:50:d2:6a:ff:38:
31:e9:0f:d1:58:ac:23:1c:d2:98:db:3e:09:29:85:8a:7b:82:
8b:bd:6b:78:4a:87:e4:04:7b:47:23:55:31:80:a5:2b:86:7d:
4f:b7:65:95:2c:31:d4:55:e9:32:09:fc:6b:fd:54:4a:7a:61:
59:c1:93:b5:01:3d:d8:df:ff:d0:ec:d1:9c:0c:5a:d3:6d:96:
c3:b6:d5:63:91:1f:2e:70:ad:fd:b2:54:7d:c0:2e:c2:d3:76:
50:d8:46:23:8e:06:6d:3a:f6:30:d6:10:04:8d:6a:41:cd:68:
00:23:3a:51:f3:d9:5a:43:e0:db:7e:d1:fe:ad:d8:cb:4b:3b:
00:01:8c:ca:d8:45:ee:61:48:94:43:46:dc:28:4a:5b:5a:49:
89:a7:f9:0e:8e:0e:fd:78:99:11:53:1d:25:3e:bf:10:5c:95:
b6:bb:5a:ef:1b:57:cd:9d:1f:29:14:8c:f2:32:11:1c:39:51:
3c:46:fb:35:f7:97:89:e9:35:f9:e4:b3:9c:9d:c4:5d:13:0a:
88:3b:b8:3d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQBySDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YzU0MThkNmZiZGRiMDEzZjMyNDQ5OWQwYjgyMTBmMzk2NjY3NWQ1MB4XDTIyMDEw
MTE0MDY1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc1MzQxZDI3MjJh
OTU3NDFkNDY5YjgxMWUyNzhmZThlZTAwMmIwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJKmTskAA9akV2NTTHsftqFu9WzbUNtlUPPzyLFdGCMkMi+3
KEKMdOyYHHNsXjmH2O03dP3tZHFXrOZrwNs5lW0C3c63C3FvZKNLom9bnTWcl2Wm
8Mgv18+iY85jjD4HChuW1xrrYcr0/6I+Jzo6cfnmmOZuLIprpQTffoS+Mz4rILNg
c2IO55YI1MlqjaPJIl7pf3g+O4pfkFH1nN/TOysXweEXQpjQ4a5A5oHDhK1nGIsW
425QRiesfxTkyQ91Z4p2JxTG5RovZX5CizXvCt90hJxhHGEsfit/msnrxF8MmcG9
XPmNgMuB9WcNhUMacAKjyj8nCdcC3Dz09iLhfu0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnU0HSciqVdB1Gm4EeJ4/o7gArBjAfBgNVHSMEGDAWgBSsVBjW+92wE/Mk
SZ0LghDzlmZ11TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JGUVkxdnZkc0JQekpFbWRDNElRODVabWRkVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjgvMmNkZGQ2LTE3Y2EtNDg5NS05ZDk1LTBjMDgxMDlhZTk0ZS8x
L0oxTkIwbklxbFhRZFJwdUJIaWVQNk80QUt3WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgv
MmNkZGQ2LTE3Y2EtNDg5NS05ZDk1LTBjMDgxMDlhZTk0ZS8xL3JGUVkxdnZkc0JQ
ekpFbWRDNElRODVabWRkVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1DhDANBgkqhkiG9w0BAQsFAAOC
AQEAjii1uMovk86pGXEs4Kky7y1b3sNot69YD87dZE3ku5mSOLPfkYwKXPDOx1Mq
ubDgYVDSav84MekP0VisIxzSmNs+CSmFinuCi71reEqH5AR7RyNVMYClK4Z9T7dl
lSwx1FXpMgn8a/1USnphWcGTtQE92N//0OzRnAxa022Ww7bVY5EfLnCt/bJUfcAu
wtN2UNhGI44GbTr2MNYQBI1qQc1oACM6UfPZWkPg237R/q3Yy0s7AAGMythF7mFI
lENG3ChKW1pJiaf5Do4O/XiZEVMdJT6/EFyVtrta7xtXzZ0fKRSM8jIRHDlRPEb7
NfeXiek1+eSznJ3EXRMKiDu4PQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:08 2025 by rpki-client