Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CjWKPScUzdIpwnEWP9VxH1ls4Vo.roa
File: CjWKPScUzdIpwnEWP9VxH1ls4Vo.roa (raw, json)
Hash identifier: suEYPoCHUVQv/J+xfYw+QuNy88aNuIV4HRDvXOK40HM=
Subject key identifier: 0A:35:8A:3D:27:14:CD:D2:29:C2:71:16:3F:D5:71:1F:59:6C:E1:5A
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 0193FD7FEAF70B36EBBB0BD01E411FE12272
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CjWKPScUzdIpwnEWP9VxH1ls4Vo.roa
Signing time: Wed 25 Dec 2024 11:07:19 +0000
ROA not before: Wed 25 Dec 2024 11:07:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 46.3.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:fd:7f:ea:f7:0b:36:eb:bb:0b:d0:1e:41:1f:e1:22:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Dec 25 11:07:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a358a3d2714cdd229c271163fd5711f596ce15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:3b:aa:6e:c1:45:2f:52:9d:f1:f9:7b:53:
14:d0:f7:1b:7e:fa:dc:3d:9e:c2:9a:94:6a:9e:b8:
8c:d3:de:7b:ee:60:11:fa:d9:5a:30:f2:60:31:99:
1a:3a:e9:83:d7:12:ac:a7:53:f6:cb:8b:eb:e7:06:
d3:c7:97:ec:d9:3d:51:e6:8b:de:35:b7:47:11:32:
ca:e1:ec:b0:ba:a5:69:d2:b8:16:a4:cc:fe:63:a0:
55:ff:6f:da:34:95:25:d0:e6:99:6e:dc:7f:d3:f7:
07:63:90:ba:c6:a6:93:4a:41:92:c4:16:13:eb:8d:
7a:ec:fb:b2:b3:ab:e8:c6:93:11:d9:20:8f:60:1f:
cd:b3:6d:5f:50:2b:a3:11:c1:fd:94:12:b2:77:1a:
c3:80:b8:5f:d2:3e:2d:06:d3:e9:a9:74:ff:34:4e:
7c:cb:da:b6:b8:2f:8c:54:ff:d4:3c:b8:c4:64:a3:
e0:a4:be:64:47:28:14:31:a9:e1:e1:af:bc:17:f5:
8c:d8:80:91:68:36:e6:d6:16:7b:67:01:5f:8f:03:
25:c3:24:f5:10:6d:0a:86:61:ef:0c:75:93:64:7a:
59:d1:cd:c8:c4:c6:b4:16:c1:6c:43:e0:63:a5:36:
c4:bb:64:54:cb:29:8b:c0:5b:2a:44:db:89:83:04:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:35:8A:3D:27:14:CD:D2:29:C2:71:16:3F:D5:71:1F:59:6C:E1:5A
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/CjWKPScUzdIpwnEWP9VxH1ls4Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.117.0/24
Signature Algorithm: sha256WithRSAEncryption
77:61:f2:40:86:6a:e1:d2:82:b5:f5:7a:14:83:bd:7a:75:28:
32:09:65:28:a5:f8:7e:39:8e:b6:4f:6d:2c:da:a9:db:94:ac:
c6:ce:bf:a1:db:8c:ae:b2:b5:26:81:f2:35:51:04:bf:02:f9:
39:ee:67:23:20:21:54:76:48:c1:00:23:ae:5e:44:f7:5e:50:
4d:88:8c:9d:a0:c5:47:e5:49:10:db:58:f0:96:d0:60:32:da:
f7:33:d4:d4:f8:39:46:92:94:fc:c8:f1:20:f3:f2:82:81:77:
3c:66:2a:da:5f:7b:97:32:12:b0:20:e1:92:01:20:9b:1a:48:
09:05:5f:ad:22:05:a6:ca:9f:a4:34:ac:71:8f:be:f6:78:35:
40:54:9a:72:ef:f8:de:90:13:2e:83:76:f8:24:ac:53:3f:9e:
a9:79:a5:d5:7a:9c:72:ad:52:02:d5:f2:99:27:51:c2:7e:68:
de:2f:a7:7e:97:38:b6:9f:ee:4c:8d:74:a6:af:8d:0e:98:4e:
1c:8b:69:1d:0d:68:c5:16:54:40:cb:39:52:28:a4:e0:90:16:
6b:49:bb:ca:50:73:bc:b2:c2:e7:c5:8a:03:12:d7:14:4b:40:
27:2b:0d:64:23:2f:29:e1:cf:83:e7:13:af:8f:72:6f:fb:96:
d2:58:78:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:20 2025 by rpki-client