Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/975947-9928-4768-a4cc-cdf168ba4b58/1/HoOVSCa6Bs5aMKjZgKYv4-rfODQ.roa
File: HoOVSCa6Bs5aMKjZgKYv4-rfODQ.roa (raw, json)
Hash identifier: riYJStDqrFGzf40CGIqgbrRG0rCT5ouE3nq9Fp20PH8=
Subject key identifier: 1E:83:95:48:26:BA:06:CE:5A:30:A8:D9:80:A6:2F:E3:EA:DF:38:34
Certificate issuer: /CN=34f33f4713e80cb33ee331397f17f05b6800ce8e
Certificate serial: 01877E2FE850D72768D17842F142D12413BF
Authority key identifier: 34:F3:3F:47:13:E8:0C:B3:3E:E3:31:39:7F:17:F0:5B:68:00:CE:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPM_RxPoDLM-4zE5fxfwW2gAzo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/975947-9928-4768-a4cc-cdf168ba4b58/1/HoOVSCa6Bs5aMKjZgKYv4-rfODQ.roa
Signing time: Fri 14 Apr 2023 05:14:41 +0000
ROA not before: Fri 14 Apr 2023 05:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.31.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7e:2f:e8:50:d7:27:68:d1:78:42:f1:42:d1:24:13:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f33f4713e80cb33ee331397f17f05b6800ce8e
Validity
Not Before: Apr 14 05:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e83954826ba06ce5a30a8d980a62fe3eadf3834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:03:85:28:5e:8e:2d:bd:1d:91:90:28:d6:
83:28:7b:94:d0:c9:f9:7f:32:6e:f1:7c:b7:b8:75:
39:0a:0e:f2:b4:f4:35:d0:26:2e:b0:f8:e5:03:93:
2a:eb:fd:c2:ae:98:fb:43:49:16:98:2b:3b:15:2c:
83:38:ea:1c:c3:54:ce:74:50:e9:2e:81:ed:d1:c2:
db:2d:b6:2a:3a:78:a7:31:ff:0a:9f:8b:2e:04:d9:
01:68:0f:2a:b6:44:1c:7f:9c:54:02:12:cd:d7:72:
bd:64:40:83:d4:5a:50:da:4d:8a:2e:32:f0:28:a1:
b8:15:7b:89:e1:a7:74:3c:82:f4:03:18:16:cc:fe:
da:9e:58:36:e7:f0:d3:d1:37:67:fe:7a:82:59:38:
0b:7c:bc:9e:7b:4a:ff:aa:b7:b2:f1:51:dd:8f:00:
39:09:fb:c7:24:86:91:b0:92:21:06:57:8a:01:2d:
81:78:b3:30:ce:0d:96:9b:f1:78:2a:45:ea:94:5d:
56:7c:5b:55:b9:5d:dd:13:69:8c:ef:26:75:84:fa:
c7:25:2e:71:3b:d0:5e:9e:b6:6c:59:c6:ea:39:66:
99:d9:fc:43:0b:a2:4a:90:b5:c4:ed:74:77:84:f0:
b9:84:69:0c:fe:94:1f:f7:a2:01:79:8e:4e:7d:5d:
e4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:83:95:48:26:BA:06:CE:5A:30:A8:D9:80:A6:2F:E3:EA:DF:38:34
X509v3 Authority Key Identifier:
keyid:34:F3:3F:47:13:E8:0C:B3:3E:E3:31:39:7F:17:F0:5B:68:00:CE:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPM_RxPoDLM-4zE5fxfwW2gAzo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/975947-9928-4768-a4cc-cdf168ba4b58/1/HoOVSCa6Bs5aMKjZgKYv4-rfODQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/975947-9928-4768-a4cc-cdf168ba4b58/1/NPM_RxPoDLM-4zE5fxfwW2gAzo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.66.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a2:9b:43:d2:09:67:63:0f:09:a0:51:34:9b:1f:b2:a6:97:
3c:51:07:2b:1a:9c:5f:5b:44:99:bb:09:75:b2:a3:c6:eb:a5:
71:55:40:0d:ac:5a:bc:4a:e0:62:09:4e:09:d9:4f:8e:45:45:
6f:53:12:d5:e2:d5:3f:45:65:a5:2a:f1:43:cb:d4:94:35:08:
52:c6:66:84:37:8a:77:39:a8:f2:82:aa:0b:df:62:72:59:c9:
d7:b4:7d:ea:cb:eb:87:90:12:d3:6e:54:15:8f:7a:2b:fd:81:
e3:0d:dd:56:39:fa:1f:17:75:c3:87:4b:f8:8a:e1:aa:80:a2:
0a:f7:d7:9d:20:3f:d4:3c:e7:d3:62:21:c1:15:91:31:22:97:
92:03:cc:07:da:73:d0:7f:bd:4a:b3:6a:53:5a:f0:ef:8d:3b:
35:88:e8:b8:64:ff:9b:c7:f7:5b:a6:cd:ab:66:9d:c7:53:3c:
63:f9:e5:24:0d:46:c3:fb:24:cc:79:ac:07:b2:ae:59:86:63:
18:97:ad:2f:83:55:a6:46:10:62:5f:9e:0f:11:98:96:36:3e:
4d:e7:07:d1:a8:b7:f2:99:57:d3:a6:5b:2b:51:30:63:17:c4:
ae:61:51:47:ae:26:a1:fa:65:13:5c:0e:38:8f:cb:95:9f:f2:
41:54:c9:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd+L+hQ1ydo0XhC8ULRJBO/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZjMzZjQ3MTNlODBjYjMzZWUzMzEzOTdmMTdmMDViNjgw
MGNlOGUwHhcNMjMwNDE0MDUxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTgzOTU0ODI2YmEwNmNlNWEzMGE4ZDk4MGE2MmZlM2VhZGYzODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnscDhSheji29HZGQKNaDKHuU0Mn5
fzJu8Xy3uHU5Cg7ytPQ10CYusPjlA5Mq6/3Crpj7Q0kWmCs7FSyDOOocw1TOdFDp
LoHt0cLbLbYqOninMf8Kn4suBNkBaA8qtkQcf5xUAhLN13K9ZECD1FpQ2k2KLjLw
KKG4FXuJ4ad0PIL0AxgWzP7anlg25/DT0Tdn/nqCWTgLfLyee0r/qrey8VHdjwA5
CfvHJIaRsJIhBleKAS2BeLMwzg2Wm/F4KkXqlF1WfFtVuV3dE2mM7yZ1hPrHJS5x
O9BenrZsWcbqOWaZ2fxDC6JKkLXE7XR3hPC5hGkM/pQf96IBeY5OfV3ktwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB6DlUgmugbOWjCo2YCmL+Pq3zg0MB8GA1UdIwQY
MBaAFDTzP0cT6AyzPuMxOX8X8FtoAM6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlBNX1J4UG9ETE0tNHpFNWZ4ZndXMmdBem80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS85NzU5NDctOTkyOC00NzY4LWE0Y2Mt
Y2RmMTY4YmE0YjU4LzEvSG9PVlNDYTZCczVhTUtqWmdLWXY0LXJmT0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS85NzU5NDctOTkyOC00NzY4LWE0Y2MtY2RmMTY4YmE0YjU4
LzEvTlBNX1J4UG9ETE0tNHpFNWZ4ZndXMmdBem80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALh9CMA0G
CSqGSIb3DQEBCwUAA4IBAQBUoptD0glnYw8JoFE0mx+yppc8UQcrGpxfW0SZuwl1
sqPG66VxVUANrFq8SuBiCU4J2U+ORUVvUxLV4tU/RWWlKvFDy9SUNQhSxmaEN4p3
OajygqoL32JyWcnXtH3qy+uHkBLTblQVj3or/YHjDd1WOfofF3XDh0v4iuGqgKIK
99edID/UPOfTYiHBFZExIpeSA8wH2nPQf71Ks2pTWvDvjTs1iOi4ZP+bx/dbps2r
Zp3HUzxj+eUkDUbD+yTMeawHsq5ZhmMYl60vg1WmRhBiX54PEZiWNj5N5wfRqLfy
mVfTplsrUTBjF8SuYVFHriah+mUTXA44j8uVn/JBVMni
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:07 2025 by rpki-client