Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/UnUG9yNZwHFtxPW6hAKjubIbusM.roa
File: UnUG9yNZwHFtxPW6hAKjubIbusM.roa (raw, json)
Hash identifier: xsmRUWemFAWw0xMxDEpqyiLbWsqfijBX0AOIJJiaM5U=
Subject key identifier: 52:75:06:F7:23:59:C0:71:6D:C4:F5:BA:84:02:A3:B9:B2:1B:BA:C3
Certificate issuer: /CN=9e42ca46688a837b575234ce6a1a326587d6c204
Certificate serial: 019420D625DF7228F772E0498185436BB34B
Authority key identifier: 9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/UnUG9yNZwHFtxPW6hAKjubIbusM.roa
Signing time: Wed 01 Jan 2025 07:48:12 +0000
ROA not before: Wed 01 Jan 2025 07:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208342
IP address blocks: 45.13.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:25:df:72:28:f7:72:e0:49:81:85:43:6b:b3:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e42ca46688a837b575234ce6a1a326587d6c204
Validity
Not Before: Jan 1 07:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=527506f72359c0716dc4f5ba8402a3b9b21bbac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:16:1e:02:b0:5e:06:fb:d6:c7:55:62:3f:
70:8d:ff:62:45:c6:1b:89:0a:3b:53:f3:43:f5:1a:
4d:79:11:fe:57:2f:56:a0:e2:13:85:76:22:80:aa:
6b:c2:e7:99:5d:9f:05:82:87:d1:e3:2d:1f:e4:a6:
1c:93:d8:d7:2b:76:90:c6:0d:71:12:ae:8a:dc:45:
f5:b6:e7:0d:29:72:62:7c:f2:9d:d8:86:c8:67:d1:
e1:74:47:97:46:8a:91:f4:94:6a:6a:3c:c5:ca:53:
71:1d:a2:00:42:53:d4:4f:c7:a2:a9:8c:bd:b3:70:
a6:ed:47:59:82:52:bd:9e:57:8a:3e:3b:0f:7e:c3:
4d:8b:43:a4:1e:b6:dd:cb:28:a2:16:68:63:7c:61:
04:95:d2:e7:c7:54:3b:9e:23:be:a0:a6:80:71:b7:
98:f1:2c:bd:b0:7e:de:5a:f2:e8:bd:bb:cd:51:0a:
2b:19:7d:7b:f8:8a:be:a9:48:f0:a6:8b:7d:ab:ee:
fb:92:54:4a:2c:25:85:4c:57:b0:a2:e8:1e:81:07:
18:ed:0b:38:ab:a7:39:01:3c:9a:19:f1:dd:d4:76:
cc:d8:7a:aa:dc:e7:05:fb:62:ef:7b:3b:c6:78:a4:
93:d4:90:ad:ab:6c:dd:f1:5d:6f:8b:a1:9a:3b:04:
52:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:75:06:F7:23:59:C0:71:6D:C4:F5:BA:84:02:A3:B9:B2:1B:BA:C3
X509v3 Authority Key Identifier:
keyid:9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/UnUG9yNZwHFtxPW6hAKjubIbusM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/nkLKRmiKg3tXUjTOahoyZYfWwgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.12.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:b6:98:39:fc:a1:12:95:f8:fb:a7:49:c6:1d:20:4e:b1:ae:
ff:d8:d2:20:3a:eb:89:50:e3:e5:a5:dd:da:ad:6a:4a:68:5a:
8d:5c:83:3e:ae:69:53:f4:1a:ba:0a:c5:49:6b:79:60:39:f1:
7d:f9:96:5b:a3:ca:dd:92:6e:06:99:d2:b2:97:e2:4c:9c:38:
b9:3c:23:d0:68:54:fc:5c:b2:61:ab:31:6c:05:df:51:6f:f7:
87:86:76:53:ef:d0:cd:79:3c:16:9f:54:89:2e:1d:8a:a9:93:
75:4e:ce:08:f6:1a:8b:58:d3:d7:ee:7f:f4:aa:b7:b7:7d:59:
ef:61:95:a9:bf:8c:4e:74:0d:a1:b4:e3:ec:f3:df:e0:f5:86:
e3:5b:7d:3d:90:0c:6d:c7:b8:a8:30:4d:aa:6b:5f:86:f3:6b:
f8:d9:98:bb:3d:dc:0e:4d:95:fe:ae:56:f3:26:41:de:cf:34:
e6:70:d0:32:40:11:50:f8:20:c4:e9:27:f6:f0:ba:f4:a1:29:
82:8a:f7:b6:d0:b0:0d:f6:51:dd:c5:2c:7e:a6:c5:37:2d:81:
53:09:fd:97:fb:63:ef:0f:35:58:74:01:db:84:cb:7c:99:57:
18:27:ab:89:fb:d4:19:37:cb:46:79:9d:68:19:3c:81:7d:0e:
7d:af:60:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1iXfcij3cuBJgYVDa7NLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNDJjYTQ2Njg4YTgzN2I1NzUyMzRjZTZhMWEzMjY1ODdk
NmMyMDQwHhcNMjUwMTAxMDc0ODEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Mjc1MDZmNzIzNTljMDcxNmRjNGY1YmE4NDAyYTNiOWIyMWJiYWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H8WHgKwXgb71sdVYj9wjf9iRcYb
iQo7U/ND9RpNeRH+Vy9WoOIThXYigKprwueZXZ8FgofR4y0f5KYck9jXK3aQxg1x
Eq6K3EX1tucNKXJifPKd2IbIZ9HhdEeXRoqR9JRqajzFylNxHaIAQlPUT8eiqYy9
s3Cm7UdZglK9nleKPjsPfsNNi0OkHrbdyyiiFmhjfGEEldLnx1Q7niO+oKaAcbeY
8Sy9sH7eWvLovbvNUQorGX17+Iq+qUjwpot9q+77klRKLCWFTFewougegQcY7Qs4
q6c5ATyaGfHd1HbM2Hqq3OcF+2LvezvGeKST1JCtq2zd8V1vi6GaOwRSvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFJ1BvcjWcBxbcT1uoQCo7myG7rDMB8GA1UdIwQY
MBaAFJ5CykZoioN7V1I0zmoaMmWH1sIEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmtMS1JtaUtnM3RYVWpUT2Fob3laWWZXd2dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9lZTI3OTMtYTBjOS00MmRjLWE2YTIt
MzI5YmEzODhiN2NmLzEvVW5VRzl5Tlp3SEZ0eFBXNmhBS2p1YklidXNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9lZTI3OTMtYTBjOS00MmRjLWE2YTItMzI5YmEzODhiN2Nm
LzEvbmtMS1JtaUtnM3RYVWpUT2Fob3laWWZXd2dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQ0MMA0G
CSqGSIb3DQEBCwUAA4IBAQA+tpg5/KESlfj7p0nGHSBOsa7/2NIgOuuJUOPlpd3a
rWpKaFqNXIM+rmlT9Bq6CsVJa3lgOfF9+ZZbo8rdkm4GmdKyl+JMnDi5PCPQaFT8
XLJhqzFsBd9Rb/eHhnZT79DNeTwWn1SJLh2KqZN1Ts4I9hqLWNPX7n/0qre3fVnv
YZWpv4xOdA2htOPs89/g9YbjW309kAxtx7ioME2qa1+G82v42Zi7PdwOTZX+rlbz
JkHezzTmcNAyQBFQ+CDE6Sf28Lr0oSmCive20LAN9lHdxSx+psU3LYFTCf2X+2Pv
DzVYdAHbhMt8mVcYJ6uJ+9QZN8tGeZ1oGTyBfQ59r2Ck
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:01:11 2025 by rpki-client