Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/biJknYRjE5L_jTv2KpvNG71JuZs.roa
File: biJknYRjE5L_jTv2KpvNG71JuZs.roa (raw, json)
Hash identifier: HCdhdiyjdtaidQONiCaAjw0Va1l2ztmngnp9upg/BOo=
Subject key identifier: 6E:22:64:9D:84:63:13:92:FF:8D:3B:F6:2A:9B:CD:1B:BD:49:B9:9B
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 019424457BCC466B8FE207EA1290F0719848
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/biJknYRjE5L_jTv2KpvNG71JuZs.roa
Signing time: Wed 01 Jan 2025 23:48:40 +0000
ROA not before: Wed 01 Jan 2025 23:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213167
IP address blocks: 45.132.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:7b:cc:46:6b:8f:e2:07:ea:12:90:f0:71:98:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Jan 1 23:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e22649d84631392ff8d3bf62a9bcd1bbd49b99b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:84:1b:62:02:2b:a1:23:5a:87:0c:35:76:3f:
60:31:01:9d:7f:ee:84:16:70:e4:f0:91:00:b4:b5:
7f:44:f7:8d:cf:e2:6c:ac:b6:28:70:da:b7:d7:72:
01:d1:df:2e:ca:8e:1e:d4:9e:93:00:0b:57:db:35:
57:e1:4e:9f:1a:ec:e3:59:d3:01:77:b4:24:48:27:
f9:9d:c2:0a:0e:47:a3:a6:e0:7e:4e:39:4a:36:68:
63:d5:82:f8:3f:aa:48:cc:75:6b:65:bd:cb:9b:4b:
bb:8b:1a:42:bc:3c:a4:91:1c:86:9d:12:82:7b:68:
a7:45:db:ad:57:f7:20:4a:09:f7:ed:5a:b9:9c:cf:
38:f3:36:fe:bb:29:e4:f3:17:21:11:da:6c:24:16:
32:24:bb:93:fd:fa:c7:32:36:82:c6:41:db:37:c2:
d9:cf:d5:a1:b1:0d:b4:a1:5b:2c:5d:15:31:99:f7:
15:05:0a:bc:c5:ce:85:13:e8:3b:e0:1f:72:d9:59:
83:b6:68:27:5a:fd:f2:b0:1a:27:61:74:06:0c:2c:
0b:bb:a0:ea:2e:fc:10:52:24:15:31:af:41:72:e5:
7d:8b:3e:29:ac:b8:9a:71:45:89:27:aa:92:5b:91:
a1:55:c4:22:62:67:c2:c8:82:60:f1:c0:5f:2a:f2:
51:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:22:64:9D:84:63:13:92:FF:8D:3B:F6:2A:9B:CD:1B:BD:49:B9:9B
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/biJknYRjE5L_jTv2KpvNG71JuZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.114.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b7:1b:2a:d3:4d:13:59:da:95:3e:df:51:c6:f5:fd:a6:f6:
f0:ef:75:61:bb:6c:e8:73:38:af:40:65:1a:f1:86:98:e8:76:
ab:bd:cb:24:fa:d4:14:a1:52:b8:c8:46:2e:aa:04:de:74:70:
bf:ca:be:4e:85:39:27:0b:8f:7b:72:28:b2:7c:8e:59:13:9b:
28:04:3d:77:f2:48:c5:0b:1e:fa:b0:2a:f5:5e:d1:b6:25:a6:
70:d7:26:fc:f9:0d:40:4f:a0:9f:02:d6:52:17:95:b6:14:ea:
fe:33:8e:17:a3:31:63:f6:96:22:05:87:98:d1:ba:d6:52:29:
99:2d:cd:dc:b0:6d:1b:7e:81:04:88:b0:25:cf:c5:82:bc:6c:
a2:52:7d:1b:d1:a2:85:8f:57:e8:28:f6:d5:bc:f5:bb:bb:63:
61:58:5f:92:70:af:ef:a6:0a:47:b3:c1:7d:b1:50:b9:47:24:
55:d1:86:22:da:7a:b4:96:6e:0c:f6:ce:2b:70:cf:63:9c:d6:
39:ff:29:e4:78:b5:5a:3c:3d:13:44:92:87:7c:f5:1a:10:75:
c0:50:cf:d6:0d:18:c1:f2:53:42:58:78:6d:70:9f:59:a4:a4:
cc:15:81:63:c3:24:cb:6c:30:b6:db:a3:43:7a:aa:9f:03:f2:
29:bc:bc:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRXvMRmuP4gfqEpDwcZhIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDIxZTgwNGFiNzcxM2FkNzg3N2RkZTYwM2FhNzgyNGIz
MTk4M2MwHhcNMjUwMTAxMjM0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTIyNjQ5ZDg0NjMxMzkyZmY4ZDNiZjYyYTliY2QxYmJkNDliOTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4QbYgIroSNahww1dj9gMQGdf+6E
FnDk8JEAtLV/RPeNz+JsrLYocNq313IB0d8uyo4e1J6TAAtX2zVX4U6fGuzjWdMB
d7QkSCf5ncIKDkejpuB+TjlKNmhj1YL4P6pIzHVrZb3Lm0u7ixpCvDykkRyGnRKC
e2inRdutV/cgSgn37Vq5nM848zb+uynk8xchEdpsJBYyJLuT/frHMjaCxkHbN8LZ
z9WhsQ20oVssXRUxmfcVBQq8xc6FE+g74B9y2VmDtmgnWv3ysBonYXQGDCwLu6Dq
LvwQUiQVMa9BcuV9iz4prLiacUWJJ6qSW5GhVcQiYmfCyIJg8cBfKvJRHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG4iZJ2EYxOS/4079iqbzRu9SbmbMB8GA1UdIwQY
MBaAFMLSHoBKt3E614d93mA6p4JLMZg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYt
NTlhZTA5ZWRiZWI5LzEvYmlKa25ZUmpFNUxfalR2Mktwdk5HNzFKdVpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYtNTlhZTA5ZWRiZWI5
LzEvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYRyMA0G
CSqGSIb3DQEBCwUAA4IBAQCJtxsq000TWdqVPt9RxvX9pvbw73Vhu2zoczivQGUa
8YaY6Harvcsk+tQUoVK4yEYuqgTedHC/yr5OhTknC497ciiyfI5ZE5soBD138kjF
Cx76sCr1XtG2JaZw1yb8+Q1AT6CfAtZSF5W2FOr+M44XozFj9pYiBYeY0brWUimZ
Lc3csG0bfoEEiLAlz8WCvGyiUn0b0aKFj1foKPbVvPW7u2NhWF+ScK/vpgpHs8F9
sVC5RyRV0YYi2nq0lm4M9s4rcM9jnNY5/ynkeLVaPD0TRJKHfPUaEHXAUM/WDRjB
8lNCWHhtcJ9ZpKTMFYFjwyTLbDC226NDeqqfA/IpvLx5
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net