Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/aw4bE-lZ2VUtJF60aGBA4P-q8I8.roa
File: aw4bE-lZ2VUtJF60aGBA4P-q8I8.roa (raw, json)
Hash identifier: oYwefyegle3m91bT5G/VU6XrRQQHH0lRGI5vgN937Z8=
Subject key identifier: 6B:0E:1B:13:E9:59:D9:55:2D:24:5E:B4:68:60:40:E0:FF:AA:F0:8F
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0183A9C5C614E989F69192DD04007C965D2D
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/aw4bE-lZ2VUtJF60aGBA4P-q8I8.roa
Signing time: Wed 05 Oct 2022 20:10:54 +0000
ROA not before: Wed 05 Oct 2022 20:10:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205431
IP address blocks: 45.8.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a9:c5:c6:14:e9:89:f6:91:92:dd:04:00:7c:96:5d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Oct 5 20:10:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b0e1b13e959d9552d245eb4686040e0ffaaf08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:7d:55:6b:a0:b7:51:f0:5c:f1:fa:a2:8b:
d5:a2:f9:be:ee:9e:06:fb:c9:03:5b:2d:7c:34:c0:
3d:1a:7a:5e:39:85:65:97:74:33:06:6c:ef:e2:65:
4d:9e:3d:f0:19:8d:69:1b:48:74:c1:dc:e6:61:d7:
f4:fa:94:1e:17:41:5f:22:e7:d0:78:21:4d:13:6a:
05:b2:4c:93:f5:c1:4f:3d:c7:a9:0a:fd:e5:66:5c:
a2:01:a2:a5:c0:f6:e2:a8:9f:9d:87:f0:95:82:33:
b2:d5:68:e5:5a:44:20:0f:c2:a6:ad:61:68:1b:42:
c4:c0:9c:3e:1a:d2:98:10:8f:3f:bf:33:ac:72:8d:
11:63:30:c2:97:a1:a1:af:b5:ad:f5:b9:3a:17:b7:
bd:4b:d4:f0:fb:a9:90:08:30:2d:2f:62:fb:15:f5:
22:4e:cf:c1:e9:54:53:e7:f6:13:fb:06:a3:44:18:
b7:a5:e3:81:00:d7:9d:73:ed:50:70:85:0d:94:34:
36:2f:3b:04:e5:70:12:01:aa:64:94:13:c0:66:e6:
40:11:d6:b7:75:b7:3f:b0:64:4b:77:b2:a6:43:7b:
c2:12:7a:92:a9:7a:69:a7:8e:03:5a:35:fa:17:e5:
01:f4:5a:33:f8:81:1f:1a:fa:7f:a3:e4:4c:03:d9:
49:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0E:1B:13:E9:59:D9:55:2D:24:5E:B4:68:60:40:E0:FF:AA:F0:8F
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/aw4bE-lZ2VUtJF60aGBA4P-q8I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.219.0/24
Signature Algorithm: sha256WithRSAEncryption
71:6a:50:0a:ae:f3:d1:b7:a2:32:b2:9f:d7:87:83:22:bc:e7:
34:60:56:25:73:01:43:54:b7:86:36:78:74:d7:6b:94:f2:24:
ce:9a:ed:dd:78:52:78:7e:99:64:6b:52:9a:82:ee:61:b8:5d:
e2:bb:c6:ce:7d:0f:47:45:95:74:4a:59:9c:9a:f8:a6:d4:57:
b6:a3:da:25:d7:0b:5b:dd:7f:ac:64:69:9c:48:e3:77:dc:81:
79:10:d2:73:49:0a:0c:e4:60:11:5a:2a:3a:24:36:1f:eb:46:
ee:4c:fc:91:9b:5b:6f:f5:98:fa:de:56:0a:61:e6:b6:3b:5e:
3b:95:7e:8c:44:b4:d5:61:97:9a:bd:67:40:ae:54:60:fe:56:
0f:a8:c4:db:0c:59:2b:85:19:9d:57:40:47:43:58:f5:b6:d0:
9b:8b:50:07:e8:57:10:75:f7:b8:c6:28:f4:34:d5:8d:49:56:
75:cb:31:8c:36:e2:3c:de:bf:d8:35:21:67:b7:9d:93:6a:f0:
79:6a:86:84:99:b4:4d:a6:33:63:2b:9a:4b:6d:df:75:e2:ed:
c5:85:cd:33:f3:08:15:6b:c8:b1:a7:a3:ce:75:e3:99:18:e2:
7a:65:50:26:15:41:f2:bb:e0:f5:d8:5f:43:77:b7:8d:df:b7:
4e:0c:f6:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOpxcYU6Yn2kZLdBAB8ll0tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNDAzOTM5OTAxN2ZhMDkzZGM4ZDUwMzc5OWY2Y2E0MDNm
MGJkMDUwHhcNMjIxMDA1MjAxMDU0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjBlMWIxM2U5NTlkOTU1MmQyNDVlYjQ2ODYwNDBlMGZmYWFmMDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoh9VWugt1HwXPH6oovVovm+7p4G
+8kDWy18NMA9GnpeOYVll3QzBmzv4mVNnj3wGY1pG0h0wdzmYdf0+pQeF0FfIufQ
eCFNE2oFskyT9cFPPcepCv3lZlyiAaKlwPbiqJ+dh/CVgjOy1WjlWkQgD8KmrWFo
G0LEwJw+GtKYEI8/vzOsco0RYzDCl6Ghr7Wt9bk6F7e9S9Tw+6mQCDAtL2L7FfUi
Ts/B6VRT5/YT+wajRBi3peOBANedc+1QcIUNlDQ2LzsE5XASAapklBPAZuZAEda3
dbc/sGRLd7KmQ3vCEnqSqXppp44DWjX6F+UB9Foz+IEfGvp/o+RMA9lJ0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGsOGxPpWdlVLSRetGhgQOD/qvCPMB8GA1UdIwQY
MBaAFGJAOTmQF/oJPcjVA3mfbKQD8L0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWtBNU9aQVgtZ2s5eU5VRGVaOXNwQVB3dlFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9lYjIzOWEtMzNjOC00ZGJkLWJjOTYt
MzI1OTQ5NmU3YzVmLzEvYXc0YkUtbFoyVlV0SkY2MGFHQkE0UC1xOEk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9lYjIzOWEtMzNjOC00ZGJkLWJjOTYtMzI1OTQ5NmU3YzVm
LzEvWWtBNU9aQVgtZ2s5eU5VRGVaOXNwQVB3dlFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQjbMA0G
CSqGSIb3DQEBCwUAA4IBAQBxalAKrvPRt6Iysp/Xh4MivOc0YFYlcwFDVLeGNnh0
12uU8iTOmu3deFJ4fplka1Kagu5huF3iu8bOfQ9HRZV0Slmcmvim1Fe2o9ol1wtb
3X+sZGmcSON33IF5ENJzSQoM5GARWio6JDYf60buTPyRm1tv9Zj63lYKYea2O147
lX6MRLTVYZeavWdArlRg/lYPqMTbDFkrhRmdV0BHQ1j1ttCbi1AH6FcQdfe4xij0
NNWNSVZ1yzGMNuI83r/YNSFnt52TavB5aoaEmbRNpjNjK5pLbd914u3Fhc0z8wgV
a8ixp6POdeOZGOJ6ZVAmFUHyu+D12F9Dd7eN37dODPZo
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:39 2023 by rpki-client on console.sobornost.net