Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f82332-919e-49fa-9743-b14e63bb134d/1/NhvBbFdlyHktIBweEddT0WWoiy0.roa
File: NhvBbFdlyHktIBweEddT0WWoiy0.roa (raw, json)
Hash identifier: bSl1dYtu4pNIXXHBh3Bf01PY7H53BgoJlgF9b+v+9/Q=
Subject key identifier: 36:1B:C1:6C:57:65:C8:79:2D:20:1C:1E:11:D7:53:D1:65:A8:8B:2D
Certificate issuer: /CN=25601600e8450ccd1ea5ee324cc82160e290988f
Certificate serial: 074F380B
Authority key identifier: 25:60:16:00:E8:45:0C:CD:1E:A5:EE:32:4C:C8:21:60:E2:90:98:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JWAWAOhFDM0epe4yTMghYOKQmI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f82332-919e-49fa-9743-b14e63bb134d/1/NhvBbFdlyHktIBweEddT0WWoiy0.roa
Signing time: Sat 01 Jan 2022 01:59:04 +0000
ROA not before: Sat 01 Jan 2022 01:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 45.156.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122632203 (0x74f380b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25601600e8450ccd1ea5ee324cc82160e290988f
Validity
Not Before: Jan 1 01:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361bc16c5765c8792d201c1e11d753d165a88b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:54:d8:2a:4c:5b:59:2d:0b:9b:a7:44:ae:3d:
6c:ea:85:a0:6f:ba:ce:6f:43:5e:b5:9a:24:19:46:
05:9c:54:30:c7:6c:a4:bd:6b:82:0c:23:08:0e:74:
c3:6b:62:6f:ee:fe:d6:e9:a1:c1:fa:2d:9d:9f:68:
93:61:a8:e6:98:17:a1:15:13:43:08:df:8f:c8:31:
bf:15:8b:89:df:fe:12:1d:5a:20:05:6d:8e:26:25:
52:65:98:e5:e3:4c:92:0f:fb:d0:cc:9b:92:9f:8f:
d7:55:9c:03:0f:da:9d:00:c2:04:1b:c8:aa:39:9b:
36:e9:48:9e:55:2a:c0:0c:2d:55:80:20:5d:de:54:
dc:ed:d3:d5:1d:e3:9e:56:11:d8:c0:2b:67:1a:31:
94:e9:39:dc:a0:67:a2:4b:0d:1b:47:fc:e3:2f:11:
a8:e5:2f:93:4e:13:5c:bf:d4:df:7d:10:a6:96:92:
dc:d0:fc:6b:b0:6f:17:89:59:fa:02:df:4e:05:15:
4a:59:8e:ae:94:93:5c:f0:cb:b1:e5:87:b4:60:9e:
17:d8:e8:ef:34:8b:02:27:93:ce:6b:85:af:07:9a:
93:e6:26:69:79:35:41:2d:9a:a4:0f:6b:9a:f0:64:
7d:a6:03:8b:b0:d0:bb:e4:7c:11:9c:72:f8:f9:37:
a5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1B:C1:6C:57:65:C8:79:2D:20:1C:1E:11:D7:53:D1:65:A8:8B:2D
X509v3 Authority Key Identifier:
keyid:25:60:16:00:E8:45:0C:CD:1E:A5:EE:32:4C:C8:21:60:E2:90:98:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JWAWAOhFDM0epe4yTMghYOKQmI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f82332-919e-49fa-9743-b14e63bb134d/1/NhvBbFdlyHktIBweEddT0WWoiy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f82332-919e-49fa-9743-b14e63bb134d/1/JWAWAOhFDM0epe4yTMghYOKQmI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.200.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:bf:8f:e3:51:fe:e8:03:6f:32:8a:d6:74:56:53:38:cf:1c:
e8:40:d8:c2:10:01:bf:c6:de:1d:f6:44:47:59:d0:47:ba:40:
4e:c9:f6:ca:b5:3f:4d:6e:e7:ac:86:ea:a9:ee:d9:99:fc:e2:
93:11:7f:2a:0f:0e:06:bc:df:ab:4f:70:fe:92:80:3e:f1:ed:
12:3e:26:b6:b5:5b:4b:9c:f7:b6:fe:54:39:51:53:57:d5:40:
f3:0c:57:7f:8c:e6:19:4c:8e:7f:e4:40:fd:ed:4f:00:08:38:
e3:af:09:35:80:a1:13:79:37:ab:e0:44:76:ba:30:a0:72:37:
64:04:3f:be:20:b7:e0:49:11:aa:06:a8:68:51:49:76:6b:1b:
ea:33:25:21:4a:f7:c1:41:b5:71:d4:5e:56:69:7f:0b:a0:c7:
0b:01:6a:18:b7:43:ee:90:05:af:16:b3:2f:cb:b9:9f:f6:48:
87:df:95:30:70:4a:44:c2:a1:8c:69:53:28:78:32:89:87:b4:
26:ad:9f:ae:11:2a:09:42:2f:bb:81:e8:49:e2:14:00:29:14:
c0:2d:c4:87:64:e0:0d:b1:22:8f:29:2a:d1:db:24:cb:4c:47:
ca:87:b5:15:7e:58:e4:11:b7:ce:a3:71:bb:74:22:83:5c:06:
86:c5:5f:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB084CzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NTYwMTYwMGU4NDUwY2NkMWVhNWVlMzI0Y2M4MjE2MGUyOTA5ODhmMB4XDTIyMDEw
MTAxNTkwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzYxYmMxNmM1NzY1
Yzg3OTJkMjAxYzFlMTFkNzUzZDE2NWE4OGIyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtU2CpMW1ktC5unRK49bOqFoG+6zm9DXrWaJBlGBZxUMMds
pL1rggwjCA50w2tib+7+1umhwfotnZ9ok2Go5pgXoRUTQwjfj8gxvxWLid/+Eh1a
IAVtjiYlUmWY5eNMkg/70Mybkp+P11WcAw/anQDCBBvIqjmbNulInlUqwAwtVYAg
Xd5U3O3T1R3jnlYR2MArZxoxlOk53KBnoksNG0f84y8RqOUvk04TXL/U330QppaS
3ND8a7BvF4lZ+gLfTgUVSlmOrpSTXPDLseWHtGCeF9jo7zSLAieTzmuFrweak+Ym
aXk1QS2apA9rmvBkfaYDi7DQu+R8EZxy+Pk3pYECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ2G8FsV2XIeS0gHB4R11PRZaiLLTAfBgNVHSMEGDAWgBQlYBYA6EUMzR6l
7jJMyCFg4pCYjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pXQVdBT2hGRE0wZXBlNHlUTWdoWU9LUW1JOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2UvZjgyMzMyLTkxOWUtNDlmYS05NzQzLWIxNGU2M2JiMTM0ZC8x
L05odkJiRmRseUhrdElCd2VFZGRUMFdXb2l5MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Uv
ZjgyMzMyLTkxOWUtNDlmYS05NzQzLWIxNGU2M2JiMTM0ZC8xL0pXQVdBT2hGRE0w
ZXBlNHlUTWdoWU9LUW1JOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2cyDANBgkqhkiG9w0BAQsFAAOC
AQEAXL+P41H+6ANvMorWdFZTOM8c6EDYwhABv8beHfZER1nQR7pATsn2yrU/TW7n
rIbqqe7ZmfzikxF/Kg8OBrzfq09w/pKAPvHtEj4mtrVbS5z3tv5UOVFTV9VA8wxX
f4zmGUyOf+RA/e1PAAg4468JNYChE3k3q+BEdrowoHI3ZAQ/viC34EkRqgaoaFFJ
dmsb6jMlIUr3wUG1cdReVml/C6DHCwFqGLdD7pAFrxazL8u5n/ZIh9+VMHBKRMKh
jGlTKHgyiYe0Jq2frhEqCUIvu4HoSeIUACkUwC3Eh2TgDbEijykq0dsky0xHyoe1
FX5Y5BG3zqNxu3Qig1wGhsVfnQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net