Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9kKe8tdbtZcAIm0ePTelfe-DlhU.roa
File: 9kKe8tdbtZcAIm0ePTelfe-DlhU.roa (raw, json)
Hash identifier: xqxAX6AEe9CGHYfjvMTqrfvPebN8AWJosVcmJ4Y4fWk=
Subject key identifier: F6:42:9E:F2:D7:5B:B5:97:00:22:6D:1E:3D:37:A5:7D:EF:83:96:15
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 019425FC6F9514A5F22623D4A1B4B8648049
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9kKe8tdbtZcAIm0ePTelfe-DlhU.roa
Signing time: Thu 02 Jan 2025 07:48:07 +0000
ROA not before: Thu 02 Jan 2025 07:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 46.249.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:6f:95:14:a5:f2:26:23:d4:a1:b4:b8:64:80:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 07:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f6429ef2d75bb59700226d1e3d37a57def839615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5a:a5:4e:75:45:31:ce:20:c7:e5:57:8d:54:
3c:58:b2:b4:cb:f1:bc:fa:15:2a:bf:16:2f:f5:86:
1a:5b:f8:55:af:63:65:93:18:b7:8a:3b:9e:79:32:
76:3e:b2:d3:b8:37:1b:1d:4b:e4:5e:37:8f:6f:96:
31:29:c1:4f:d7:f7:51:73:39:9f:dc:3c:59:ed:a5:
56:df:2c:13:71:1a:2b:ce:e0:d4:68:71:24:45:21:
87:27:15:57:39:70:85:c6:1c:9b:f4:b5:c5:8f:9f:
9b:b1:8f:25:a1:a9:cf:96:8d:6d:ef:03:0f:4d:15:
4d:2c:c6:9d:82:b3:36:df:e6:c3:10:50:65:06:d7:
16:1f:cf:7e:db:65:8f:83:ea:78:b0:23:7f:97:c2:
d3:6f:db:72:2e:fc:30:01:7e:a6:94:43:bd:6f:8d:
e4:a2:a0:c0:7a:2c:4e:80:36:7b:f0:18:28:f5:c6:
26:0b:86:16:81:7a:e3:e1:78:a8:f2:23:e4:6e:df:
94:1e:1c:34:88:27:f5:e0:79:e3:cd:0a:d9:95:76:
1a:ee:a1:9c:8e:08:01:db:60:d2:74:f7:8b:f4:ca:
51:3c:36:d6:9a:ea:0e:e0:f3:ab:0a:c6:14:6d:20:
6f:e0:0b:b3:56:97:26:07:39:1a:9e:d7:32:9c:a4:
c0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:42:9E:F2:D7:5B:B5:97:00:22:6D:1E:3D:37:A5:7D:EF:83:96:15
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/9kKe8tdbtZcAIm0ePTelfe-DlhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.112.0/21
Signature Algorithm: sha256WithRSAEncryption
44:26:2c:cb:9a:33:88:9f:03:58:64:88:2f:03:ea:7d:bb:98:
3e:61:e2:39:0f:5c:b6:2b:c6:98:f2:25:62:4f:c6:5e:d7:bb:
df:1e:8f:c8:9d:b2:c0:79:ae:c8:64:07:8c:66:f9:5c:40:54:
fd:b7:ec:dd:19:a5:4c:d2:f8:17:ed:00:fb:1f:63:da:f3:5d:
82:92:6a:d8:3a:7c:e4:65:14:41:4f:34:6a:c2:e1:da:94:02:
e2:97:91:42:ce:04:5a:c5:83:33:18:6a:f9:36:80:80:63:93:
0a:31:63:a9:0f:7b:30:79:01:b6:8d:55:08:d5:c6:57:82:b4:
a1:1b:f9:1a:d9:54:dd:06:20:3c:d7:72:4c:24:26:38:7c:ff:
70:41:bf:83:91:d0:3e:cc:db:75:fe:b7:9a:69:c2:22:f5:ab:
4c:34:ef:41:88:43:2b:aa:93:a7:93:d0:ab:27:c4:15:07:c9:
15:db:ac:18:20:7e:3f:62:9c:11:26:fd:9b:78:45:f0:70:1c:
6b:bc:f6:0a:ca:4c:0e:29:88:7a:48:06:4c:cb:eb:59:6a:1d:
74:c5:e9:f6:fb:08:97:67:6f:f6:47:c7:83:54:a5:55:41:92:
2e:05:5f:44:aa:6b:6d:25:51:09:41:cf:50:00:1f:d6:0a:45:
c2:be:b4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:08:48 2025 by rpki-client