Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/6959c2-ee0b-42bd-b42d-bf7fdc29be6d/1/5cXH1Zdjzt4UWV3M8kKev5Fg5cA.roa
File: 5cXH1Zdjzt4UWV3M8kKev5Fg5cA.roa (raw, json)
Hash identifier: 6LiBOe4/98+6aExPPN7VHVjwCOMWSM/7pN2m92hE5vI=
Subject key identifier: E5:C5:C7:D5:97:63:CE:DE:14:59:5D:CC:F2:42:9E:BF:91:60:E5:C0
Certificate issuer: /CN=9caf9a0d78a6811cd1686deb117788af866c8091
Certificate serial: 018511A26392F1CCDFCB224E01D042CB1A01
Authority key identifier: 9C:AF:9A:0D:78:A6:81:1C:D1:68:6D:EB:11:77:88:AF:86:6C:80:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nK-aDXimgRzRaG3rEXeIr4ZsgJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/6959c2-ee0b-42bd-b42d-bf7fdc29be6d/1/5cXH1Zdjzt4UWV3M8kKev5Fg5cA.roa
Signing time: Wed 14 Dec 2022 17:15:33 +0000
ROA not before: Wed 14 Dec 2022 17:15:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12494
IP address blocks: 46.148.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:a2:63:92:f1:cc:df:cb:22:4e:01:d0:42:cb:1a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9caf9a0d78a6811cd1686deb117788af866c8091
Validity
Not Before: Dec 14 17:15:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5c5c7d59763cede14595dccf2429ebf9160e5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:15:d7:e4:80:de:5a:8d:8a:87:2e:89:94:af:
2c:73:b5:a8:9b:db:4e:72:d8:e7:c2:49:8a:88:e3:
e9:8d:fa:53:ed:33:27:9e:03:6c:78:46:23:30:9d:
39:f8:46:2a:16:6b:ee:93:a4:92:5b:e5:0d:6a:5b:
ce:eb:af:32:50:4d:5d:41:92:99:9b:ad:2b:37:0b:
53:78:d7:42:a2:d5:c8:40:89:5d:60:64:43:30:d7:
38:c4:db:21:fe:f9:16:df:ff:b9:f2:b6:79:71:73:
c8:46:ed:fd:42:61:c8:1a:2f:c1:f6:54:1d:70:3e:
06:3b:35:00:af:16:08:77:b8:a9:94:5b:83:ed:98:
59:11:8b:76:c2:4d:dd:f0:8f:72:3e:6e:52:50:bf:
c0:2a:79:2b:7d:36:ad:4e:31:5e:2c:d5:03:6c:28:
a3:61:06:10:17:18:2d:a8:88:d7:76:63:4d:75:71:
b4:76:b8:1f:ac:35:08:80:ca:98:49:55:d9:bd:bc:
f6:01:73:31:1d:8f:62:f3:b3:1b:bf:10:09:f3:76:
d3:69:aa:8b:ce:7e:22:25:f5:6d:78:61:ad:77:9e:
fb:d8:0e:4f:14:e8:a1:54:6e:51:83:a1:40:b2:b1:
0d:b4:99:e2:2f:1f:e8:06:eb:bd:16:6e:9f:e0:cd:
c5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C5:C7:D5:97:63:CE:DE:14:59:5D:CC:F2:42:9E:BF:91:60:E5:C0
X509v3 Authority Key Identifier:
keyid:9C:AF:9A:0D:78:A6:81:1C:D1:68:6D:EB:11:77:88:AF:86:6C:80:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nK-aDXimgRzRaG3rEXeIr4ZsgJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6959c2-ee0b-42bd-b42d-bf7fdc29be6d/1/5cXH1Zdjzt4UWV3M8kKev5Fg5cA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6959c2-ee0b-42bd-b42d-bf7fdc29be6d/1/nK-aDXimgRzRaG3rEXeIr4ZsgJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.212.0/22
Signature Algorithm: sha256WithRSAEncryption
30:fa:8e:0e:44:6e:62:77:57:d4:f9:bc:24:4c:98:84:ec:18:
22:00:a9:6e:3e:6d:74:98:5d:c0:6c:26:35:e1:cf:6b:8f:c8:
fa:e8:d3:28:4a:03:57:e0:04:7a:70:17:f9:ec:13:0f:fc:f5:
d3:12:22:4e:f0:c0:1c:7d:44:40:97:73:9e:16:4d:c4:7d:f0:
4e:75:4b:ed:b9:64:e7:f2:2a:b4:56:62:eb:3c:f1:60:78:4a:
8e:fa:b5:fe:64:f9:ff:55:51:23:ee:da:14:09:8c:28:d7:df:
8c:be:72:81:6d:96:09:2d:13:56:b0:9e:66:6e:bf:9c:ff:7c:
22:5e:f2:a0:91:0d:00:58:ca:64:d3:31:5a:e3:b6:46:2e:82:
5a:0b:99:76:8a:a1:ef:4e:25:8b:82:87:8b:4c:d3:29:97:96:
98:0f:a4:5a:82:10:b9:a7:2c:3d:65:82:5e:c3:ff:04:33:50:
f0:9e:c8:b3:a8:16:e8:68:6f:28:e3:90:50:68:93:6b:a6:e6:
e4:ad:2b:79:4a:b7:b6:a3:0a:2b:42:a3:25:53:69:9e:c6:78:
45:64:71:e5:ac:6d:ef:05:9f:10:d3:ca:4c:13:77:f5:4b:8c:
41:38:1b:e2:a3:36:8c:ea:dc:24:25:b3:33:78:fb:ba:21:84:
8f:15:fb:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:36:38 2025 by rpki-client