Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5ceeb5-224f-423e-881f-c0ec96300316/1/zLmcwWuOBaxQBgZsSflc8lqKkqs.roa
File: zLmcwWuOBaxQBgZsSflc8lqKkqs.roa (raw, json)
Hash identifier: 5Bm+udwgVXEYlJBaWDhM6X4Lp8Pb3PcYB4TtcJcjRF4=
Subject key identifier: CC:B9:9C:C1:6B:8E:05:AC:50:06:06:6C:49:F9:5C:F2:5A:8A:92:AB
Certificate issuer: /CN=a1f2eb61f52f0a30e76d97c1a6c8aafcec86db34
Certificate serial: 01412EC7
Authority key identifier: A1:F2:EB:61:F5:2F:0A:30:E7:6D:97:C1:A6:C8:AA:FC:EC:86:DB:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofLrYfUvCjDnbZfBpsiq_OyG2zQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5ceeb5-224f-423e-881f-c0ec96300316/1/zLmcwWuOBaxQBgZsSflc8lqKkqs.roa
Signing time: Sat 01 Jan 2022 16:01:11 +0000
ROA not before: Sat 01 Jan 2022 16:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134512
IP address blocks: 46.175.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21049031 (0x1412ec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f2eb61f52f0a30e76d97c1a6c8aafcec86db34
Validity
Not Before: Jan 1 16:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb99cc16b8e05ac5006066c49f95cf25a8a92ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d6:22:3c:5d:78:9a:f4:fd:81:d0:08:4e:19:
05:fb:75:65:d9:61:a1:e9:5b:f2:f1:54:c0:23:a8:
83:91:a5:a6:a9:8e:2c:1f:65:ca:7b:ad:23:a3:3a:
31:d9:02:01:b2:7a:3d:97:c6:cf:82:92:98:30:28:
a6:2b:22:91:bc:d4:04:d4:8a:4d:1c:e3:7f:69:77:
4d:51:8b:84:72:2e:5f:d0:c9:b6:26:b3:17:a2:a0:
30:b8:a0:7f:a9:79:b5:9b:68:58:1a:60:cf:71:00:
10:7b:4b:15:aa:4d:cf:b9:d1:bc:c3:10:61:2e:29:
9b:9a:0c:7c:cc:f5:78:0f:1c:5b:f6:69:94:10:cc:
46:d6:21:3f:63:67:a3:d6:40:60:0e:81:39:c2:d2:
72:39:4d:67:fb:14:fe:35:56:2f:89:93:72:0d:b7:
07:ed:73:e7:d5:49:d1:6d:13:43:7e:0d:bf:5b:9b:
24:79:93:29:a9:6b:c1:0a:f0:07:5d:ee:39:3d:3a:
31:e2:b7:fc:1d:2e:f3:3c:0b:3a:77:52:84:8d:da:
48:86:84:9e:87:1c:8d:9a:dc:ef:9f:d5:7e:d7:47:
07:11:16:5f:b2:f9:d7:b4:0f:c8:3f:26:58:6d:e2:
ac:09:d7:7b:a4:c0:0b:b1:64:08:ed:32:d6:02:ff:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B9:9C:C1:6B:8E:05:AC:50:06:06:6C:49:F9:5C:F2:5A:8A:92:AB
X509v3 Authority Key Identifier:
keyid:A1:F2:EB:61:F5:2F:0A:30:E7:6D:97:C1:A6:C8:AA:FC:EC:86:DB:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofLrYfUvCjDnbZfBpsiq_OyG2zQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5ceeb5-224f-423e-881f-c0ec96300316/1/zLmcwWuOBaxQBgZsSflc8lqKkqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5ceeb5-224f-423e-881f-c0ec96300316/1/ofLrYfUvCjDnbZfBpsiq_OyG2zQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.129.0/24
Signature Algorithm: sha256WithRSAEncryption
69:2d:06:d2:34:18:07:81:45:22:c7:bc:2f:3c:38:38:b0:53:
36:81:f6:9b:f2:3a:79:ce:37:dc:03:75:55:46:8c:45:a6:29:
c8:f8:7b:66:4a:b4:af:d3:d7:0b:a9:e7:aa:05:be:19:85:2f:
4a:40:1e:dd:b0:ec:a7:9c:fa:58:17:af:70:fe:9e:17:da:2b:
a3:4d:e5:f9:89:70:86:64:33:cd:a1:58:9a:6a:00:12:35:ce:
cb:94:fc:1c:21:43:6d:54:10:3b:f7:ca:9c:40:d0:55:3d:d2:
15:c0:c9:4c:c2:c4:12:a0:db:b3:70:ad:3d:de:b4:75:ee:a2:
cd:ae:fe:5d:1d:5d:41:d6:e4:44:bd:11:ca:c1:c9:39:7d:00:
36:93:6b:66:5d:7c:24:fd:31:d1:d3:16:77:10:14:47:07:55:
92:b1:09:b6:75:a9:86:2f:73:9b:6c:68:a9:06:b9:a8:62:ba:
ce:1c:00:3a:16:21:11:c3:d7:e0:d7:25:6b:76:5e:14:7c:15:
90:a7:91:5d:28:49:97:48:e3:8e:86:48:77:af:ee:43:d6:34:
cf:06:68:18:d1:7e:f7:5c:b1:e2:79:8d:f1:fb:47:c1:d8:10:
00:05:c9:8b:a1:32:06:ea:8a:09:85:0f:9a:73:d1:e6:0c:2b:
99:50:d5:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:13 2025 by rpki-client