Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/a183ef-ab60-4d59-b5dd-9ae5db28c7e2/1/o5MRSPYUCWJQvc84ln7q1HW7Xdg.roa
File: o5MRSPYUCWJQvc84ln7q1HW7Xdg.roa (raw, json)
Hash identifier: hDdkcaM7R4GYEx3PoPIV+gFKHrb2UyT+PQdf6TFSlCk=
Subject key identifier: A3:93:11:48:F6:14:09:62:50:BD:CF:38:96:7E:EA:D4:75:BB:5D:D8
Certificate issuer: /CN=9fe8f68fd828704e8d70796c783327dcde9b0c8e
Certificate serial: 01854FFE918AB27FB221F19A7A247986CFD3
Authority key identifier: 9F:E8:F6:8F:D8:28:70:4E:8D:70:79:6C:78:33:27:DC:DE:9B:0C:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n-j2j9gocE6NcHlseDMn3N6bDI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/a183ef-ab60-4d59-b5dd-9ae5db28c7e2/1/o5MRSPYUCWJQvc84ln7q1HW7Xdg.roa
Signing time: Mon 26 Dec 2022 19:52:41 +0000
ROA not before: Mon 26 Dec 2022 19:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56681
IP address blocks: 46.229.241.0/24 maxlen: 24
46.229.242.0/24 maxlen: 24
46.229.250.0/24 maxlen: 24
46.229.247.0/24 maxlen: 24
46.229.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:fe:91:8a:b2:7f:b2:21:f1:9a:7a:24:79:86:cf:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fe8f68fd828704e8d70796c783327dcde9b0c8e
Validity
Not Before: Dec 26 19:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3931148f614096250bdcf38967eead475bb5dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:21:f5:78:98:8b:57:c4:75:86:cc:ca:48:d6:
71:bc:1e:f9:a6:74:fb:ae:49:96:93:f7:8b:3c:cc:
c2:34:e1:eb:ea:ee:0f:9c:2d:7a:88:1d:7c:88:48:
c5:60:6d:86:f4:91:e6:dc:8d:9c:1b:78:61:fe:80:
b1:bf:b7:cf:f9:85:43:eb:eb:85:d6:53:2a:04:30:
c2:90:a3:fd:ab:b9:2a:91:50:96:13:6f:2f:b4:32:
56:76:79:f5:ca:32:99:7a:5b:b7:ca:2b:8b:a1:c2:
65:66:dc:73:06:db:48:eb:20:a9:91:a1:62:8f:9f:
70:02:58:82:28:d2:9e:5d:9c:da:9d:4d:fa:51:cc:
4a:01:4f:f7:b2:a4:f1:53:88:25:e6:eb:b7:bb:03:
c1:bc:63:70:0a:a3:17:40:bd:c6:89:97:63:1b:2c:
63:fe:dc:97:7c:6d:2c:7d:23:0b:8d:a1:5e:94:ee:
9e:d9:0b:34:0d:01:4c:eb:70:3d:49:6b:5e:02:31:
70:44:15:f4:52:c3:02:72:95:42:6e:bd:f3:96:b6:
5b:47:0d:fb:89:00:3c:bd:d5:2b:21:86:ee:15:a1:
2b:15:e1:29:bc:af:da:29:1f:59:87:57:4e:6d:b6:
88:2b:e6:7d:7c:e6:d6:2b:2e:60:8d:4a:52:f9:f5:
0f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:93:11:48:F6:14:09:62:50:BD:CF:38:96:7E:EA:D4:75:BB:5D:D8
X509v3 Authority Key Identifier:
keyid:9F:E8:F6:8F:D8:28:70:4E:8D:70:79:6C:78:33:27:DC:DE:9B:0C:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n-j2j9gocE6NcHlseDMn3N6bDI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a183ef-ab60-4d59-b5dd-9ae5db28c7e2/1/o5MRSPYUCWJQvc84ln7q1HW7Xdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a183ef-ab60-4d59-b5dd-9ae5db28c7e2/1/n-j2j9gocE6NcHlseDMn3N6bDI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.241.0-46.229.242.255
46.229.247.0/24
46.229.250.0/23
Signature Algorithm: sha256WithRSAEncryption
84:04:b7:9a:2a:44:80:42:64:6e:da:96:42:25:ad:1a:13:cb:
33:99:24:36:37:da:e7:86:e5:bd:4e:35:4a:03:13:a5:43:2d:
27:84:b5:1a:5c:63:90:96:be:01:3a:9a:8b:0e:11:e8:7f:db:
e8:63:fd:81:0f:17:f4:9a:db:64:13:7d:d7:e5:c6:26:01:06:
73:2c:8b:29:76:28:c8:7b:44:46:96:65:48:35:16:d3:9a:a3:
bf:3b:ea:58:1a:56:32:f3:d1:f8:3e:cd:a7:d0:e5:d6:c3:42:
99:59:1d:1d:d6:06:e5:e2:96:32:46:b2:2e:35:b9:fc:f6:4a:
8a:32:a8:4d:26:31:34:82:79:24:58:e9:d1:01:05:4c:93:57:
43:8b:2a:f5:80:e4:5e:1c:33:65:bb:72:b7:b1:88:4b:69:27:
c7:ba:15:a4:58:17:a3:df:dd:97:6d:64:e5:df:7b:5c:80:4e:
27:b3:da:7d:54:86:fa:0c:28:45:ce:5e:37:7c:e7:e2:9f:96:
ef:8d:0b:c7:01:5d:2d:6f:9d:ba:18:f9:a5:68:25:6e:37:77:
2f:63:19:a7:68:5d:d7:23:13:ff:43:58:c9:c0:80:b7:76:ee:
ba:1b:af:e2:66:0e:87:63:1f:85:b1:65:9a:11:7d:37:ae:bc:
b2:d3:75:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:23 2025 by rpki-client