Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/6fU8ZMk_HGPcvTL7KcA_RzRTmqc.roa
File: 6fU8ZMk_HGPcvTL7KcA_RzRTmqc.roa (raw, json)
Hash identifier: S8MyF9wiliXsU91Zx7wrUjTXkVY8CYoX9e+19pieUOs=
Subject key identifier: E9:F5:3C:64:C9:3F:1C:63:DC:BD:32:FB:29:C0:3F:47:34:53:9A:A7
Certificate issuer: /CN=ac80ebd19a626e816e18d13eeb3bc21ae86916c5
Certificate serial: 01856FA71454D186FADB871658D489BB3B06
Authority key identifier: AC:80:EB:D1:9A:62:6E:81:6E:18:D1:3E:EB:3B:C2:1A:E8:69:16:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIDr0ZpiboFuGNE-6zvCGuhpFsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/6fU8ZMk_HGPcvTL7KcA_RzRTmqc.roa
Signing time: Sun 01 Jan 2023 23:24:58 +0000
ROA not before: Sun 01 Jan 2023 23:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24700
IP address blocks: 46.174.190.0/24 maxlen: 24
46.174.188.0/24 maxlen: 24
46.174.189.0/24 maxlen: 24
46.174.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:14:54:d1:86:fa:db:87:16:58:d4:89:bb:3b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac80ebd19a626e816e18d13eeb3bc21ae86916c5
Validity
Not Before: Jan 1 23:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9f53c64c93f1c63dcbd32fb29c03f4734539aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:2b:b7:6c:68:0b:0c:9d:bf:8d:8f:6f:ce:
70:2f:17:79:2f:7f:5e:bf:95:f7:01:33:00:2a:d7:
1f:bc:0c:72:1d:d9:e1:68:0c:f7:fa:44:3d:67:df:
be:8f:88:2c:f8:d8:14:e3:83:40:9d:d6:61:28:42:
68:71:81:2c:eb:0d:d3:ed:a7:fc:2c:27:a6:75:76:
01:71:6c:ec:6c:23:08:09:86:d9:44:9c:49:75:07:
0f:d5:03:e0:64:0a:bf:96:90:c5:4f:49:c5:ba:a0:
ba:16:56:dd:16:90:62:02:98:26:7e:8b:33:ff:8a:
db:7f:13:54:32:ed:76:62:65:7b:43:b8:dd:fa:43:
76:96:4e:75:3e:73:18:cc:1f:b5:47:5c:3e:71:95:
00:99:8b:fb:83:97:90:45:dc:f3:9e:c0:a1:df:b3:
0b:32:0b:93:c7:be:be:f5:8a:55:e6:d4:f8:78:24:
9c:93:79:09:76:61:84:be:01:a2:df:68:cb:72:08:
f4:f6:3b:01:49:11:e6:8a:bf:35:40:bd:da:26:d1:
07:9f:da:e2:c1:80:53:a7:ac:ec:75:65:ac:c8:b0:
60:b0:bb:ec:15:c1:f0:43:4b:c8:6c:c0:8c:ed:d4:
93:8a:8a:7e:49:21:73:d6:e6:d9:45:8b:d4:69:08:
e4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F5:3C:64:C9:3F:1C:63:DC:BD:32:FB:29:C0:3F:47:34:53:9A:A7
X509v3 Authority Key Identifier:
keyid:AC:80:EB:D1:9A:62:6E:81:6E:18:D1:3E:EB:3B:C2:1A:E8:69:16:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIDr0ZpiboFuGNE-6zvCGuhpFsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/6fU8ZMk_HGPcvTL7KcA_RzRTmqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/rIDr0ZpiboFuGNE-6zvCGuhpFsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.188.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:88:22:1f:c9:53:42:3a:79:43:fb:99:6c:e9:8d:81:09:8c:
25:4a:91:77:9e:0b:d3:95:f5:22:1f:fb:c0:26:cb:b1:7d:a3:
6c:8b:bb:18:03:5d:4f:9a:78:fc:78:39:3b:0b:cb:46:15:cd:
69:b3:a8:1d:ea:d1:0d:6d:db:00:4a:88:f0:58:ce:77:52:ea:
72:ce:11:9b:6c:7d:61:b3:b7:f9:2a:96:22:59:2b:d1:ae:e6:
4c:1f:6d:ea:79:89:c1:cf:d0:e6:73:24:8b:45:4f:87:ce:8d:
41:7b:fd:2e:fc:16:4c:1c:44:4d:41:c5:34:fb:60:3d:83:2d:
b2:8c:40:67:97:a8:6c:96:e1:07:13:50:b3:96:d2:ec:2f:0a:
d8:ba:d8:76:99:da:1c:5c:81:fd:80:d1:28:40:65:ff:60:18:
8b:7b:4d:d1:57:71:46:b4:78:17:32:24:7b:5f:1b:5e:a6:e0:
03:0f:84:b1:19:c4:db:a4:ff:06:07:90:2f:bd:f9:40:b1:a5:
e9:5a:f3:d6:8b:a9:31:7c:18:f1:6d:42:d4:27:9f:06:d9:c2:
72:00:8c:a3:86:00:d1:98:36:8f:aa:ff:88:ee:7f:39:2a:41:
8d:21:4b:bb:50:5e:c3:04:3c:d9:8c:6b:85:14:7a:f7:a8:c9:
7d:8e:a3:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvpxRU0Yb624cWWNSJuzsGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjODBlYmQxOWE2MjZlODE2ZTE4ZDEzZWViM2JjMjFhZTg2
OTE2YzUwHhcNMjMwMTAxMjMyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWY1M2M2NGM5M2YxYzYzZGNiZDMyZmIyOWMwM2Y0NzM0NTM5YWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurgrt2xoCwydv42Pb85wLxd5L39e
v5X3ATMAKtcfvAxyHdnhaAz3+kQ9Z9++j4gs+NgU44NAndZhKEJocYEs6w3T7af8
LCemdXYBcWzsbCMICYbZRJxJdQcP1QPgZAq/lpDFT0nFuqC6FlbdFpBiApgmfosz
/4rbfxNUMu12YmV7Q7jd+kN2lk51PnMYzB+1R1w+cZUAmYv7g5eQRdzznsCh37ML
MguTx76+9YpV5tT4eCSck3kJdmGEvgGi32jLcgj09jsBSRHmir81QL3aJtEHn9ri
wYBTp6zsdWWsyLBgsLvsFcHwQ0vIbMCM7dSTiop+SSFz1ubZRYvUaQjkBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOn1PGTJPxxj3L0y+ynAP0c0U5qnMB8GA1UdIwQY
MBaAFKyA69GaYm6BbhjRPus7whroaRbFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcklEcjBacGlib0Z1R05FLTZ6dkNHdWhwRnNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi82MWIzZWYtZDE0MC00YWI2LTljNjAt
YWMzYzc3YjY3N2E2LzEvNmZVOFpNa19IR1BjdlRMN0tjQV9SelJUbXFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi82MWIzZWYtZDE0MC00YWI2LTljNjAtYWMzYzc3YjY3N2E2
LzEvcklEcjBacGlib0Z1R05FLTZ6dkNHdWhwRnNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLq68MA0G
CSqGSIb3DQEBCwUAA4IBAQC6iCIfyVNCOnlD+5ls6Y2BCYwlSpF3ngvTlfUiH/vA
JsuxfaNsi7sYA11Pmnj8eDk7C8tGFc1ps6gd6tENbdsASojwWM53UupyzhGbbH1h
s7f5KpYiWSvRruZMH23qeYnBz9DmcySLRU+Hzo1Be/0u/BZMHERNQcU0+2A9gy2y
jEBnl6hsluEHE1CzltLsLwrYuth2mdocXIH9gNEoQGX/YBiLe03RV3FGtHgXMiR7
XxtepuADD4SxGcTbpP8GB5AvvflAsaXpWvPWi6kxfBjxbULUJ58G2cJyAIyjhgDR
mDaPqv+I7n85KkGNIUu7UF7DBDzZjGuFFHr3qMl9jqNg
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:09 2025 by rpki-client