Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/01QaWPYu2SHMXvLz74cgmf-1zuE.roa
File: 01QaWPYu2SHMXvLz74cgmf-1zuE.roa (raw, json)
Hash identifier: qW2juW2n3G7RsPa8+JesDO07/NRgMuAAulIIfBw44X8=
Subject key identifier: D3:54:1A:58:F6:2E:D9:21:CC:5E:F2:F3:EF:87:20:99:FF:B5:CE:E1
Certificate issuer: /CN=b0758e88c20702131b917a4dfdb2374bc3655587
Certificate serial: 018CC794FA79507D7201CDE91A21E8345C3E
Authority key identifier: B0:75:8E:88:C2:07:02:13:1B:91:7A:4D:FD:B2:37:4B:C3:65:55:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHWOiMIHAhMbkXpN_bI3S8NlVYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/01QaWPYu2SHMXvLz74cgmf-1zuE.roa
Signing time: Tue 02 Jan 2024 00:31:18 +0000
ROA not before: Tue 02 Jan 2024 00:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200793
IP address blocks: 45.149.200.0/22 maxlen: 22
45.149.200.0/23 maxlen: 23
45.149.201.0/24 maxlen: 24
45.149.202.0/24 maxlen: 24
45.149.203.0/24 maxlen: 24
45.149.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:fa:79:50:7d:72:01:cd:e9:1a:21:e8:34:5c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0758e88c20702131b917a4dfdb2374bc3655587
Validity
Not Before: Jan 2 00:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3541a58f62ed921cc5ef2f3ef872099ffb5cee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:66:3f:b3:02:73:65:3e:6e:47:4a:66:70:
60:f9:5a:75:8c:e4:57:a6:6b:e0:37:6c:f8:b7:cf:
d6:b3:af:a3:fb:b8:f1:7d:0a:23:f9:81:52:28:11:
ea:96:29:cc:ff:e6:17:07:b2:cd:6f:93:9e:b2:38:
a2:e7:06:a5:85:77:27:78:83:4e:7e:78:f0:9f:f5:
86:c5:13:d6:3b:96:05:6b:ac:f5:bf:b7:83:06:f6:
23:54:ce:7d:b6:50:dd:3a:19:57:21:fc:21:a9:b5:
6e:99:20:23:90:3c:53:2b:e3:76:ba:1a:10:1f:82:
c3:df:e8:1f:04:67:46:da:4c:91:39:ce:1d:b9:7e:
75:6a:e3:fd:8f:b3:ea:de:98:64:5e:67:e4:71:3b:
ab:3e:a3:54:c8:e3:d7:ff:c0:e5:25:f4:3e:2d:b4:
27:b6:fe:f3:40:8c:79:d3:b9:d4:d3:17:70:f6:9f:
46:50:a4:ca:db:b2:a4:f5:e8:21:f5:83:ea:bc:3f:
95:8d:ce:33:6e:c7:9f:e4:e5:3a:7c:8a:02:a3:ee:
ca:46:08:73:8c:ac:d3:4c:59:15:1e:dc:24:c5:3c:
2e:e9:2e:c6:66:f8:ac:2f:36:c0:e9:f6:a0:9c:89:
07:3f:02:d2:e7:3a:7e:69:6d:f8:56:6a:28:76:df:
c4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:54:1A:58:F6:2E:D9:21:CC:5E:F2:F3:EF:87:20:99:FF:B5:CE:E1
X509v3 Authority Key Identifier:
keyid:B0:75:8E:88:C2:07:02:13:1B:91:7A:4D:FD:B2:37:4B:C3:65:55:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHWOiMIHAhMbkXpN_bI3S8NlVYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/01QaWPYu2SHMXvLz74cgmf-1zuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/sHWOiMIHAhMbkXpN_bI3S8NlVYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.200.0/22
Signature Algorithm: sha256WithRSAEncryption
14:8a:bf:2f:67:cc:ba:cd:3a:a3:96:5d:b8:5e:76:b2:b5:57:
b4:2f:2e:67:54:13:23:8e:5f:bf:93:29:be:62:7b:c9:da:ee:
00:6c:72:0e:b8:b3:b0:a4:80:e9:4d:65:8c:90:73:82:0e:2d:
f5:1f:6d:70:dc:66:0c:d6:da:38:7a:4c:df:dc:3c:60:c5:85:
bb:9a:b1:6b:55:11:5c:97:82:ab:71:7c:c4:b8:50:b6:f1:71:
da:bf:a7:f2:2a:b6:13:e1:3a:01:a6:70:2b:07:e4:d9:ac:f8:
28:7a:d2:22:57:a9:c8:fe:58:52:40:2e:ba:6b:d6:fe:55:e7:
1a:f3:1a:74:68:bf:87:1f:8e:11:a2:0f:34:a8:8b:1f:e9:dc:
0c:97:47:c7:07:bb:50:10:2b:3e:25:9a:bc:f5:1d:19:ef:f5:
37:d0:38:b8:02:2f:0d:60:12:3d:c2:d3:d9:a3:e4:b3:0c:7f:
e4:2d:79:db:c0:e2:6f:0e:ae:08:1f:99:80:82:ee:70:69:1a:
a1:17:b6:39:04:6b:c2:78:96:05:ab:8b:6b:55:4a:ad:7e:9c:
76:27:d8:2e:cf:df:05:5d:03:1b:f9:27:be:c9:fa:48:b7:82:
dd:88:64:0e:71:9a:22:f9:a0:ca:37:fb:3c:a0:ed:b5:35:60:
19:86:3b:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlPp5UH1yAc3pGiHoNFw+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNzU4ZTg4YzIwNzAyMTMxYjkxN2E0ZGZkYjIzNzRiYzM2
NTU1ODcwHhcNMjQwMTAyMDAzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzU0MWE1OGY2MmVkOTIxY2M1ZWYyZjNlZjg3MjA5OWZmYjVjZWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5RmP7MCc2U+bkdKZnBg+Vp1jORX
pmvgN2z4t8/Ws6+j+7jxfQoj+YFSKBHqlinM/+YXB7LNb5Oesjii5walhXcneINO
fnjwn/WGxRPWO5YFa6z1v7eDBvYjVM59tlDdOhlXIfwhqbVumSAjkDxTK+N2uhoQ
H4LD3+gfBGdG2kyROc4duX51auP9j7Pq3phkXmfkcTurPqNUyOPX/8DlJfQ+LbQn
tv7zQIx507nU0xdw9p9GUKTK27Kk9egh9YPqvD+Vjc4zbsef5OU6fIoCo+7KRghz
jKzTTFkVHtwkxTwu6S7GZvisLzbA6fagnIkHPwLS5zp+aW34Vmoodt/EtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNNUGlj2LtkhzF7y8++HIJn/tc7hMB8GA1UdIwQY
MBaAFLB1jojCBwITG5F6Tf2yN0vDZVWHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0hXT2lNSUhBaE1ia1hwTl9iSTNTOE5sVlljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8wNzFlZWItMTU0YS00NWYwLThkN2It
NjM4NzNlODg0NDEzLzEvMDFRYVdQWXUyU0hNWHZMejc0Y2dtZi0xenVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My8wNzFlZWItMTU0YS00NWYwLThkN2ItNjM4NzNlODg0NDEz
LzEvc0hXT2lNSUhBaE1ia1hwTl9iSTNTOE5sVlljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZXIMA0G
CSqGSIb3DQEBCwUAA4IBAQAUir8vZ8y6zTqjll24XnaytVe0Ly5nVBMjjl+/kym+
YnvJ2u4AbHIOuLOwpIDpTWWMkHOCDi31H21w3GYM1to4ekzf3DxgxYW7mrFrVRFc
l4KrcXzEuFC28XHav6fyKrYT4ToBpnArB+TZrPgoetIiV6nI/lhSQC66a9b+Veca
8xp0aL+HH44Rog80qIsf6dwMl0fHB7tQECs+JZq89R0Z7/U30Di4Ai8NYBI9wtPZ
o+SzDH/kLXnbwOJvDq4IH5mAgu5waRqhF7Y5BGvCeJYFq4trVUqtfpx2J9guz98F
XQMb+Se+yfpIt4LdiGQOcZoi+aDKN/s8oO21NWAZhjtn
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:16 2024 by rpki-client on console.sobornost.net