Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/aplc2MlkwecX6XE6_xLuwP57K7k.roa
File: aplc2MlkwecX6XE6_xLuwP57K7k.roa (raw, json)
Hash identifier: PyKK0kuRlWYP2C+1SQ729hY6psf8gVmJRqbdI9oxT34=
Subject key identifier: 6A:99:5C:D8:C9:64:C1:E7:17:E9:71:3A:FF:12:EE:C0:FE:7B:2B:B9
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 01939372BBD02E60CA642DF42EBE2B19ADD9
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/aplc2MlkwecX6XE6_xLuwP57K7k.roa
Signing time: Wed 04 Dec 2024 20:53:10 +0000
ROA not before: Wed 04 Dec 2024 20:53:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197442
IP address blocks: 46.183.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:93:72:bb:d0:2e:60:ca:64:2d:f4:2e:be:2b:19:ad:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Dec 4 20:53:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a995cd8c964c1e717e9713aff12eec0fe7b2bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1a:ea:6e:1c:dd:ce:a0:d6:f3:c7:b0:18:95:
84:ed:9b:1d:33:e4:e1:ca:36:9c:6f:a3:ff:7d:cc:
6e:48:9a:87:ce:18:d7:e9:5d:86:37:6b:95:21:0b:
5c:e5:d9:a5:7c:7d:fb:f2:0b:4b:44:8b:0a:f4:a4:
38:35:49:19:5f:cc:8f:70:11:73:88:62:4d:11:65:
f1:3a:75:99:f0:10:c2:78:1c:46:a2:16:75:2b:3b:
2a:ef:cd:15:63:d0:9d:92:be:10:43:18:e0:c4:b0:
77:a6:e7:36:1b:65:fd:8d:cf:f3:30:e1:2a:f9:c1:
1b:49:26:e7:5b:52:21:42:b1:90:ab:fc:b2:23:8f:
bf:98:f2:37:5e:40:34:a8:54:f8:2f:bb:e8:33:02:
fc:fa:46:ac:55:ca:53:48:6b:f6:22:6a:da:be:c3:
5a:9e:3b:20:6a:c4:22:8d:5c:3c:8f:68:4f:85:24:
15:17:5b:ec:5b:51:ec:32:eb:ed:51:50:c5:32:34:
c0:28:14:8e:85:e5:aa:78:a9:57:55:a3:eb:b7:cf:
46:53:1d:fc:aa:11:5e:c5:11:95:09:ae:9b:ec:5d:
ee:38:3d:50:f8:1b:97:a2:67:25:64:02:95:23:18:
fc:d8:c5:95:95:61:13:56:68:87:b2:f5:47:ec:77:
ab:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:99:5C:D8:C9:64:C1:E7:17:E9:71:3A:FF:12:EE:C0:FE:7B:2B:B9
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/aplc2MlkwecX6XE6_xLuwP57K7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.56.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:ab:be:fe:2e:a7:8c:c3:9d:e7:91:4b:8c:7e:e4:2c:b3:09:
e4:30:53:c4:9c:0b:44:29:f3:4a:0d:aa:55:4a:c2:68:f3:f7:
d8:5d:49:ec:1a:2a:06:a8:d5:94:2b:42:b5:d6:30:27:9f:d5:
91:3e:94:61:ab:45:80:46:ac:04:79:15:51:cc:24:0a:23:4b:
92:45:2b:68:e4:39:d9:6a:c0:b9:60:e2:8a:23:24:73:11:65:
b2:26:26:7e:8d:f6:f3:5a:28:9c:0e:87:98:39:0f:fc:c7:a2:
3b:21:1f:cb:2f:4f:a2:b6:f0:47:2a:ea:23:e9:e1:17:4a:b2:
36:24:93:d9:00:2c:1b:ad:f9:cd:7d:d3:df:c5:d2:8d:53:08:
d8:94:79:cc:35:67:24:e4:8c:e7:ac:d7:d2:e9:b1:fc:7d:dc:
1b:2e:21:49:90:e4:f2:88:8c:01:5d:38:ac:60:36:2d:93:91:
4a:2a:46:a3:21:38:26:b6:16:66:a6:8f:d5:f4:14:73:fb:67:
b0:de:75:ff:f9:42:8a:03:64:50:38:f3:54:89:43:9b:92:76:
85:f9:f3:3c:03:d4:51:e4:b4:2d:c6:60:61:80:41:24:61:c0:
c2:ce:0c:4d:a8:61:f3:1b:45:17:4e:90:25:fa:d8:7c:68:08:
50:07:89:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:57:05 2025 by rpki-client