Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G-1D3RsmJXKPn4_d9xUiGldgwS0.roa
File: G-1D3RsmJXKPn4_d9xUiGldgwS0.roa (raw, json)
Hash identifier: CJ1XRW3iJAzoPh/DtIvgM3pgQobBgjOexoSUfJ71ctI=
Subject key identifier: 1B:ED:43:DD:1B:26:25:72:8F:9F:8F:DD:F7:15:22:1A:57:60:C1:2D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01945FD266C4F8912589E3B159D859769F92
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G-1D3RsmJXKPn4_d9xUiGldgwS0.roa
Signing time: Mon 13 Jan 2025 13:20:11 +0000
ROA not before: Mon 13 Jan 2025 13:20:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62403
IP address blocks: 5.231.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:d2:66:c4:f8:91:25:89:e3:b1:59:d8:59:76:9f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 13 13:20:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1bed43dd1b2625728f9f8fddf715221a5760c12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cf:ac:02:fe:42:04:94:8c:e6:d7:fb:2f:c0:
39:75:da:6c:d0:40:c9:9b:01:1b:27:60:33:ec:4c:
84:b4:2a:9b:da:7f:0a:88:f5:fd:6f:b5:e1:4f:d2:
7d:c8:20:c7:51:8c:1e:b6:63:66:0c:fb:4f:f5:c4:
bb:03:0f:0e:b1:3f:32:39:c2:fd:67:35:c3:90:b3:
6d:5c:b0:a8:c5:0c:17:ab:df:9b:2f:08:33:5f:95:
c8:d3:ac:9d:05:d8:fc:c4:ed:f3:54:18:bb:8a:c9:
3f:8e:3c:84:f6:20:ca:b0:fc:e1:aa:4b:e7:c4:ac:
5f:e1:c8:a0:d5:06:b7:1e:d7:52:cf:4c:f8:05:63:
a8:39:60:6a:da:28:e1:d3:64:8b:26:92:f8:5e:f2:
b0:db:92:57:ef:92:6c:bf:c4:e6:3a:48:0b:fc:de:
39:21:fc:24:08:97:83:46:45:b2:f9:95:1f:99:3f:
c9:55:c0:db:53:14:c2:2d:4b:2a:70:4b:9e:83:19:
8b:f3:f4:97:98:e3:94:56:e3:28:97:e4:94:52:68:
16:1b:e4:4b:bc:31:2d:9f:18:5a:66:c3:b0:a2:ec:
44:25:5f:89:1f:24:4b:73:17:57:84:9c:ab:46:04:
de:05:f2:f9:29:c6:7b:20:95:35:2d:14:dd:06:17:
01:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:ED:43:DD:1B:26:25:72:8F:9F:8F:DD:F7:15:22:1A:57:60:C1:2D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G-1D3RsmJXKPn4_d9xUiGldgwS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.46.0/24
Signature Algorithm: sha256WithRSAEncryption
12:d2:0f:c2:9d:25:5c:1e:4f:60:54:e5:4d:e4:18:a7:84:ad:
af:5f:14:8e:24:78:0f:a3:d7:77:46:b4:c5:c1:28:85:b9:3f:
f0:e4:03:a2:3d:f3:8c:c9:ac:5e:bc:ba:a2:98:31:8b:39:ed:
c2:c4:02:03:ff:f4:85:26:e3:e0:70:e0:4a:7d:42:85:c9:32:
89:56:76:e4:d1:5c:bd:7a:b4:87:4b:02:10:ec:3f:78:b0:d4:
a5:80:08:fc:ed:4d:59:9e:43:08:d8:20:10:bd:e3:ab:54:37:
fe:13:c6:fe:c0:70:48:a2:e3:58:5d:1b:aa:2d:3c:af:4a:10:
7f:7a:41:f3:9c:61:b9:4e:fd:96:3c:45:97:44:84:8e:77:33:
00:82:40:9b:ec:a7:32:05:72:ca:c9:27:73:0b:e6:a5:4f:d3:
3a:60:b2:ab:7a:32:18:90:5a:86:fe:6a:ee:9b:5d:1f:16:db:
0f:2b:65:80:20:86:49:47:c1:5b:36:01:d3:43:a1:af:74:22:
ac:c0:8d:e7:64:f8:b6:2e:a6:ba:fd:1f:22:f5:6e:c2:c6:cd:
5e:54:b9:2c:0a:35:60:e3:24:41:13:18:70:37:69:57:69:08:
df:53:6b:ef:a5:00:ea:34:34:85:6f:98:8b:7c:2e:78:d8:26:
4f:a8:e0:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRf0mbE+JElieOxWdhZdp+SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTEzMTMyMDExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYmVkNDNkZDFiMjYyNTcyOGY5ZjhmZGRmNzE1MjIxYTU3NjBjMTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8+sAv5CBJSM5tf7L8A5ddps0EDJ
mwEbJ2Az7EyEtCqb2n8KiPX9b7XhT9J9yCDHUYwetmNmDPtP9cS7Aw8OsT8yOcL9
ZzXDkLNtXLCoxQwXq9+bLwgzX5XI06ydBdj8xO3zVBi7isk/jjyE9iDKsPzhqkvn
xKxf4cig1Qa3HtdSz0z4BWOoOWBq2ijh02SLJpL4XvKw25JX75Jsv8TmOkgL/N45
IfwkCJeDRkWy+ZUfmT/JVcDbUxTCLUsqcEuegxmL8/SXmOOUVuMol+SUUmgWG+RL
vDEtnxhaZsOwouxEJV+JHyRLcxdXhJyrRgTeBfL5KcZ7IJU1LRTdBhcBQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBvtQ90bJiVyj5+P3fcVIhpXYMEtMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvRy0xRDNSc21KWEtQbjRfZDl4VWlHbGRnd1MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABecuMA0G
CSqGSIb3DQEBCwUAA4IBAQAS0g/CnSVcHk9gVOVN5BinhK2vXxSOJHgPo9d3RrTF
wSiFuT/w5AOiPfOMyaxevLqimDGLOe3CxAID//SFJuPgcOBKfUKFyTKJVnbk0Vy9
erSHSwIQ7D94sNSlgAj87U1ZnkMI2CAQveOrVDf+E8b+wHBIouNYXRuqLTyvShB/
ekHznGG5Tv2WPEWXRISOdzMAgkCb7KcyBXLKySdzC+alT9M6YLKrejIYkFqG/mru
m10fFtsPK2WAIIZJR8FbNgHTQ6GvdCKswI3nZPi2Lqa6/R8i9W7Cxs1eVLksCjVg
4yRBExhwN2lXaQjfU2vvpQDqNDSFb5iLfC542CZPqODj
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:34 2025 by rpki-client