Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/znIVaHKYkyKBEQBVptVbnSPMRT0.roa
File: znIVaHKYkyKBEQBVptVbnSPMRT0.roa (raw, json)
Hash identifier: g4EHnnn85toCFef30TdaJ5KqFEtNZHscTK/ZYfzTE6w=
Subject key identifier: CE:72:15:68:72:98:93:22:81:11:00:55:A6:D5:5B:9D:23:CC:45:3D
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 019421B1D07483A2F3E48FD3677C467B60E3
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/znIVaHKYkyKBEQBVptVbnSPMRT0.roa
Signing time: Wed 01 Jan 2025 11:48:08 +0000
ROA not before: Wed 01 Jan 2025 11:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43395
IP address blocks: 46.148.35.0/24 maxlen: 24
46.148.36.0/24 maxlen: 24
46.148.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d0:74:83:a2:f3:e4:8f:d3:67:7c:46:7b:60:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Jan 1 11:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce7215687298932281110055a6d55b9d23cc453d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6a:fd:d4:d3:11:6b:69:26:e2:a1:43:8a:d0:
46:5a:a1:44:6d:ba:94:09:19:45:1d:ae:7d:28:17:
88:5c:fd:fb:53:76:52:c2:d8:87:53:35:15:2b:3e:
cc:b1:8a:76:85:d9:5b:28:47:d6:92:00:f5:85:83:
68:5e:1c:d1:fa:3b:5a:b8:4f:68:e4:a8:eb:b5:e5:
30:6b:ff:31:6b:fd:e4:41:2e:58:08:50:6f:16:2e:
4c:2b:34:2b:84:0b:0a:94:ba:25:6e:fd:f1:9f:68:
cf:b9:a7:84:7d:ca:73:70:27:df:bf:33:e9:49:56:
b4:38:66:d0:ae:ff:e9:84:6b:7b:4b:5e:d3:8d:2a:
56:64:60:38:61:fc:8d:91:45:c3:68:80:05:70:ed:
11:9e:13:5f:18:db:83:d8:b4:75:37:95:e3:db:63:
7e:66:33:8a:b7:07:7e:32:81:90:f3:cc:f5:c2:24:
f4:73:f3:90:0b:08:cc:b1:c0:da:9e:28:0c:18:85:
a9:86:01:35:ab:81:48:d9:b6:3d:74:22:2a:7d:30:
a2:ce:cd:6b:a1:81:e8:df:60:13:33:3d:fa:78:98:
88:d5:9a:38:f6:c8:c5:b9:84:bb:5c:b8:8e:b5:29:
90:8e:ce:ff:56:b8:8a:3d:f7:1c:b7:3c:63:0e:54:
ed:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:72:15:68:72:98:93:22:81:11:00:55:A6:D5:5B:9D:23:CC:45:3D
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/znIVaHKYkyKBEQBVptVbnSPMRT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.35.0-46.148.36.255
46.148.45.0/24
Signature Algorithm: sha256WithRSAEncryption
58:77:e4:b2:98:8c:12:3c:0b:e6:18:b0:d9:f2:fe:ca:82:11:
63:14:61:36:b0:3c:ea:43:5a:28:6e:3d:0d:6d:2f:bf:9b:cb:
4c:1b:cc:30:fc:fb:c0:3a:b9:c0:dd:05:2c:55:cd:db:de:43:
40:c0:cf:8e:ec:ea:18:d6:6d:98:8e:55:80:15:99:de:f0:30:
bc:4f:09:d3:24:31:2c:a8:ed:bf:16:da:7a:ae:f3:ef:6c:fa:
92:0e:48:c3:6a:b4:8f:b6:74:91:c5:6a:d7:0f:bd:dc:94:4c:
45:33:d1:62:f9:0f:82:14:d8:36:fc:2a:f5:b3:da:e8:5b:47:
b9:5d:23:50:d2:23:8e:93:63:74:a5:55:f7:c3:51:60:97:5d:
8a:5f:af:19:97:45:cb:b6:0c:0c:a3:9f:99:dd:bf:f9:5b:cb:
dc:ad:9b:4b:1c:70:cf:87:30:72:d1:e2:12:f3:57:59:df:4d:
a7:62:07:b3:fc:38:d1:5a:65:b0:d4:bb:19:9e:59:c6:6b:f1:
c7:69:5d:a0:86:f3:9b:3c:2e:b6:13:c4:4c:26:c4:71:6b:57:
be:fb:a8:a8:50:22:ce:cc:d5:12:2b:97:f5:da:d2:bf:b7:84:
16:0e:f1:bd:e1:bc:08:fb:c7:1c:45:52:76:6c:c2:66:eb:62:
a8:b4:ee:5a
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZQhsdB0g6Lz5I/TZ3xGe2DjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4OWMyY2M0ODllYmU0OGY0OTA1ODRhYzg2NmZlMzYyYzQx
MTdlNzUwHhcNMjUwMTAxMTE0ODA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTcyMTU2ODcyOTg5MzIyODExMTAwNTVhNmQ1NWI5ZDIzY2M0NTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWr91NMRa2km4qFDitBGWqFEbbqU
CRlFHa59KBeIXP37U3ZSwtiHUzUVKz7MsYp2hdlbKEfWkgD1hYNoXhzR+jtauE9o
5KjrteUwa/8xa/3kQS5YCFBvFi5MKzQrhAsKlLolbv3xn2jPuaeEfcpzcCffvzPp
SVa0OGbQrv/phGt7S17TjSpWZGA4YfyNkUXDaIAFcO0RnhNfGNuD2LR1N5Xj22N+
ZjOKtwd+MoGQ88z1wiT0c/OQCwjMscDanigMGIWphgE1q4FI2bY9dCIqfTCizs1r
oYHo32ATMz36eJiI1Zo49sjFuYS7XLiOtSmQjs7/VriKPfcctzxjDlTtDQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFM5yFWhymJMigREAVabVW50jzEU9MB8GA1UdIwQY
MBaAFMicLMSJ6+SPSQWErIZv42LEEX51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEt
YWYyY2ZhNjIyZDE4LzEvem5JVmFIS1lreUtCRVFCVnB0VmJuU1BNUlQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hMDBiZTItODc3ZC00MGU3LThhOGEtYWYyY2ZhNjIyZDE4
LzEveUp3c3hJbnI1STlKQllTc2htX2pZc1FSZm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAAulCMD
BAAulCQDBAAulC0wDQYJKoZIhvcNAQELBQADggEBAFh35LKYjBI8C+YYsNny/sqC
EWMUYTawPOpDWihuPQ1tL7+by0wbzDD8+8A6ucDdBSxVzdveQ0DAz47s6hjWbZiO
VYAVmd7wMLxPCdMkMSyo7b8W2nqu8+9s+pIOSMNqtI+2dJHFatcPvdyUTEUz0WL5
D4IU2Db8KvWz2uhbR7ldI1DSI46TY3SlVffDUWCXXYpfrxmXRcu2DAyjn5ndv/lb
y9ytm0sccM+HMHLR4hLzV1nfTadiB7P8ONFaZbDUuxmeWcZr8cdpXaCG85s8LrYT
xEwmxHFrV777qKhQIs7M1RIrl/Xa0r+3hBYO8b3hvAj7xxxFUnZswmbrYqi07lo=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:35 2025 by rpki-client