Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7a9506-5ee6-4220-bdfc-649d1c18dd8c/1/S4NpqlBpA9VT-nHpiPG1rxvRaLM.roa
File: S4NpqlBpA9VT-nHpiPG1rxvRaLM.roa (raw, json)
Hash identifier: FggEJzFAR5NkdEu1itwo/zaSCvlxder74yvCrtOXXqY=
Subject key identifier: 4B:83:69:AA:50:69:03:D5:53:FA:71:E9:88:F1:B5:AF:1B:D1:68:B3
Certificate issuer: /CN=ed770674837d28ea60c2878f342cdb35f1e3b1c5
Certificate serial: 01941FFA628CCDEB5D325743BEEB8CEF99D1
Authority key identifier: ED:77:06:74:83:7D:28:EA:60:C2:87:8F:34:2C:DB:35:F1:E3:B1:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XcGdIN9KOpgwoePNCzbNfHjscU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7a9506-5ee6-4220-bdfc-649d1c18dd8c/1/S4NpqlBpA9VT-nHpiPG1rxvRaLM.roa
Signing time: Wed 01 Jan 2025 03:48:10 +0000
ROA not before: Wed 01 Jan 2025 03:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50064
IP address blocks: 46.167.56.0/21 maxlen: 21
46.167.56.0/24 maxlen: 24
46.167.57.0/24 maxlen: 24
46.167.58.0/24 maxlen: 24
46.167.59.0/24 maxlen: 24
46.167.60.0/24 maxlen: 24
46.167.61.0/24 maxlen: 24
46.167.62.0/24 maxlen: 24
46.167.63.0/24 maxlen: 24
185.51.84.0/22 maxlen: 22
185.51.84.0/24 maxlen: 24
185.51.85.0/24 maxlen: 24
185.51.86.0/24 maxlen: 24
185.51.87.0/24 maxlen: 24
2a01:b160::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:62:8c:cd:eb:5d:32:57:43:be:eb:8c:ef:99:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed770674837d28ea60c2878f342cdb35f1e3b1c5
Validity
Not Before: Jan 1 03:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b8369aa506903d553fa71e988f1b5af1bd168b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5c:9f:c8:40:a4:15:32:d2:f4:02:05:30:c6:
ee:fa:67:08:6b:e7:36:c3:5d:e0:f0:f9:d7:72:8e:
55:9a:2d:f7:5a:55:14:7d:b8:b8:d2:38:1f:b4:36:
8a:0c:4d:e5:c3:28:c0:27:1c:63:ba:ef:58:53:53:
3c:4c:c9:ab:26:e4:0c:e4:fa:21:91:10:2a:4b:7f:
50:5f:68:39:7e:2e:e6:23:81:14:cb:31:39:d7:5a:
79:82:f5:9c:7a:10:09:55:8d:86:52:5a:29:77:fd:
cf:ff:d0:a9:94:ef:71:bd:ac:3b:b2:cb:6d:d4:fd:
9e:8c:76:38:31:46:5f:b2:47:0d:16:5d:fe:d7:c1:
62:86:4c:db:aa:5d:97:d2:d8:11:2c:a8:ad:f5:52:
4b:59:ee:f0:d7:b2:2b:8a:be:87:a6:08:d9:09:6b:
5f:d8:2d:1a:db:b8:0b:95:61:b7:d9:8d:96:94:92:
64:dc:1e:50:28:3f:68:ac:6c:b3:23:fb:20:df:1b:
3d:68:6a:87:37:02:be:ba:04:9b:70:19:f9:8f:bd:
73:b8:28:cc:8e:44:b4:d9:79:01:b4:7e:29:a4:34:
a0:9f:ee:87:b9:a7:7f:83:68:79:2e:18:64:3c:9a:
1a:15:45:68:67:f2:58:43:98:e0:3e:93:bb:19:05:
b7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:83:69:AA:50:69:03:D5:53:FA:71:E9:88:F1:B5:AF:1B:D1:68:B3
X509v3 Authority Key Identifier:
keyid:ED:77:06:74:83:7D:28:EA:60:C2:87:8F:34:2C:DB:35:F1:E3:B1:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XcGdIN9KOpgwoePNCzbNfHjscU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7a9506-5ee6-4220-bdfc-649d1c18dd8c/1/S4NpqlBpA9VT-nHpiPG1rxvRaLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7a9506-5ee6-4220-bdfc-649d1c18dd8c/1/7XcGdIN9KOpgwoePNCzbNfHjscU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.167.56.0/21
185.51.84.0/22
IPv6:
2a01:b160::/32
Signature Algorithm: sha256WithRSAEncryption
82:04:8d:1b:94:6d:ff:49:00:9c:bf:53:77:93:d0:ad:02:57:
bf:b0:51:95:38:69:b1:22:27:c1:f4:8a:d2:a5:aa:e0:38:09:
53:9f:f0:78:23:0a:85:52:6d:7e:f6:99:a2:bd:f3:9c:87:ef:
21:b8:23:01:21:cb:79:71:4c:ef:e6:cd:31:1a:5b:2e:a4:cb:
88:83:87:82:2f:6b:d2:f6:71:79:f3:ac:f0:99:b1:15:ee:41:
c2:ee:7d:e6:4c:11:91:ca:5b:d6:93:f8:8d:33:eb:14:46:b7:
9c:e2:7e:df:8a:11:49:c4:57:c4:1e:e3:1a:c0:da:27:3b:3d:
6a:5c:73:11:8b:be:d1:52:6c:b8:b5:26:e1:5f:21:29:f0:20:
6a:14:bc:16:4a:d9:0d:7b:9f:c5:30:f0:3b:8c:34:49:75:46:
1c:60:23:81:81:0a:1a:c0:b8:0c:d7:25:10:f5:24:73:2f:4e:
8b:0f:40:53:29:83:a4:62:e8:19:6a:f9:78:91:83:cb:17:8b:
82:79:b1:0a:8f:82:42:49:9c:f0:38:79:c9:37:47:5a:de:f9:
82:e4:b8:e7:7f:4a:f4:03:ac:fa:17:c1:f3:51:9a:cc:98:b1:
a5:f9:73:ac:22:5f:76:32:4a:58:d4:22:a6:d0:be:02:19:e9:
76:ad:dc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:39 2025 by rpki-client