Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/1S5NGl_9XzrIZlMPmsHgEW4H8RI.roa
File: 1S5NGl_9XzrIZlMPmsHgEW4H8RI.roa (raw, json)
Hash identifier: ZQeIY/xttmXPutXEtut0kcab8CenHX3mGEuBNFgJJJE=
Subject key identifier: D5:2E:4D:1A:5F:FD:5F:3A:C8:66:53:0F:9A:C1:E0:11:6E:07:F1:12
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 019421B1CF68E3F809C2CA9EBC501D003FBD
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/1S5NGl_9XzrIZlMPmsHgEW4H8RI.roa
Signing time: Wed 01 Jan 2025 11:48:08 +0000
ROA not before: Wed 01 Jan 2025 11:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 46.148.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cf:68:e3:f8:09:c2:ca:9e:bc:50:1d:00:3f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Jan 1 11:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d52e4d1a5ffd5f3ac866530f9ac1e0116e07f112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3c:cd:bf:3b:a9:45:cc:b8:26:e8:5d:0f:95:
d4:2c:4d:5c:c7:fd:80:7a:c5:01:d3:88:c4:7f:a0:
63:23:93:be:ef:af:6f:95:0e:b8:93:d4:8d:86:a4:
4e:1f:f9:73:f7:77:d6:39:68:80:60:ba:89:e4:cf:
d7:58:72:93:d9:f5:53:8e:df:96:f5:4d:8d:61:83:
c0:e5:a2:d6:ec:0b:00:46:26:1d:b6:6e:a8:cd:3a:
a2:c6:6f:73:83:5f:df:59:ff:e8:66:a6:a8:dc:4e:
4a:9f:4f:36:eb:9d:0d:e0:0f:26:0a:79:9d:7d:f9:
65:98:f1:ba:d9:94:95:06:4e:23:bf:cb:ff:e4:be:
8f:9f:30:5b:3d:39:5f:a7:16:7c:65:8d:0c:e8:61:
e9:ee:a8:c9:6e:11:27:9e:5e:ff:72:d6:6f:ab:fc:
08:55:e1:8a:bd:9b:84:5e:dc:53:5e:79:8d:8d:47:
6c:7a:c2:07:8e:60:ed:6f:fb:2f:8e:2d:c3:73:f4:
ad:99:a6:4f:63:21:bb:95:38:ca:fa:e2:80:ee:d7:
20:f7:a8:e6:cd:cf:64:da:9e:0d:84:fa:b7:b7:15:
71:f5:2d:f6:a1:64:53:67:dc:db:56:49:7a:bc:23:
2a:22:fb:98:27:19:6b:ee:f1:c9:9e:ae:3b:b7:03:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2E:4D:1A:5F:FD:5F:3A:C8:66:53:0F:9A:C1:E0:11:6E:07:F1:12
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/1S5NGl_9XzrIZlMPmsHgEW4H8RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.40.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:4a:90:b5:ea:10:74:83:cd:fd:82:22:82:dc:b4:d0:05:0b:
20:95:a2:1f:be:0b:3c:2a:ae:5c:f5:36:6b:1d:9e:10:84:ff:
0b:c8:e6:90:e3:92:27:a9:af:0f:cb:db:7f:4d:ab:8d:4d:7f:
5c:66:60:23:4f:79:74:74:63:56:50:1d:0a:5b:7f:ae:d3:4a:
3b:e1:71:e7:ad:06:81:6a:9a:28:bf:64:fa:3f:c5:8c:bf:59:
09:9a:26:38:51:0b:ee:e6:1f:09:d8:69:1c:ed:c1:22:72:20:
96:92:ff:bb:a6:4e:b9:d9:5b:a8:e9:f8:34:25:f5:4b:ee:63:
f7:26:a4:79:32:f6:b0:24:b3:c4:df:0a:76:2e:35:df:6e:5e:
a5:74:f2:d6:5a:a4:9f:0b:9e:fb:dc:63:1d:45:27:18:f0:95:
96:41:00:9c:7f:ae:5f:b9:20:67:65:73:fd:38:cc:9f:7c:6b:
93:24:5a:b3:0a:86:3c:2e:a7:82:74:d4:0c:97:c7:f4:cd:cd:
a4:ff:6b:80:b6:6c:8b:84:b5:8a:76:12:77:53:2d:a8:3e:be:
98:3c:26:fe:b0:a6:6a:11:98:34:2d:29:60:72:7b:4e:75:80:
02:d4:74:6a:70:12:e4:7c:bf:7a:8a:65:81:fe:88:82:8d:5e:
48:84:ea:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:08:10 2025 by rpki-client