Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/659064-157b-46ed-abe0-1c805d603343/1/QFx2IDftlhN1WBo137bzF6wbX_w.roa
File: QFx2IDftlhN1WBo137bzF6wbX_w.roa (raw, json)
Hash identifier: 1MD7imLWoAueY1SrF7PEae9TSfetnym9pUS5W73oxcc=
Subject key identifier: 40:5C:76:20:37:ED:96:13:75:58:1A:35:DF:B6:F3:17:AC:1B:5F:FC
Certificate issuer: /CN=fe0b3e321ff93f31632eb9928f55c80de242efc5
Certificate serial: 01856FA6D6127C24C374F4A95DCC98A69D44
Authority key identifier: FE:0B:3E:32:1F:F9:3F:31:63:2E:B9:92:8F:55:C8:0D:E2:42:EF:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_gs-Mh_5PzFjLrmSj1XIDeJC78U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/659064-157b-46ed-abe0-1c805d603343/1/QFx2IDftlhN1WBo137bzF6wbX_w.roa
Signing time: Sun 01 Jan 2023 23:24:42 +0000
ROA not before: Sun 01 Jan 2023 23:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 46.226.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:d6:12:7c:24:c3:74:f4:a9:5d:cc:98:a6:9d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe0b3e321ff93f31632eb9928f55c80de242efc5
Validity
Not Before: Jan 1 23:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=405c762037ed961375581a35dfb6f317ac1b5ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e7:fc:70:cd:a6:55:72:7d:71:36:0f:6e:d6:
07:83:61:61:08:03:00:88:b2:85:90:13:c5:35:1d:
35:6a:d0:eb:78:b0:10:93:84:33:68:d0:ab:74:2a:
15:f5:3c:ea:66:eb:43:cf:d6:2e:6e:b1:4a:5f:a5:
d3:8d:4a:9d:5c:2a:1a:8a:7c:59:f6:31:27:ef:0e:
4a:10:64:73:7a:48:e9:cf:e2:00:2b:10:83:37:43:
e7:05:f7:b5:ea:b7:01:1d:71:5e:41:c3:77:fe:8e:
eb:db:19:8b:51:03:e6:de:33:fd:58:ab:a7:0c:27:
29:64:79:54:ff:ab:c9:ac:fe:50:87:a9:5e:34:59:
e2:9f:18:06:b8:d4:ad:4b:0b:a1:8c:67:a7:d1:69:
ff:06:32:2b:70:5c:79:36:8a:23:12:76:27:32:c3:
c8:69:b1:31:b1:0a:1c:a3:dd:a3:04:d5:4b:91:d8:
f3:45:c5:1b:07:40:fe:0c:c7:69:8a:89:23:69:cb:
98:56:62:b5:2d:1e:da:77:87:39:e8:7a:a0:c3:cd:
e1:76:69:eb:76:6d:a7:28:a6:6c:56:a2:0c:f8:ca:
f2:b4:80:47:37:bd:ae:02:83:64:54:9f:7a:b2:f4:
d8:ae:b5:bf:2f:ee:b7:b7:26:2c:11:f7:e4:f0:96:
5a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5C:76:20:37:ED:96:13:75:58:1A:35:DF:B6:F3:17:AC:1B:5F:FC
X509v3 Authority Key Identifier:
keyid:FE:0B:3E:32:1F:F9:3F:31:63:2E:B9:92:8F:55:C8:0D:E2:42:EF:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_gs-Mh_5PzFjLrmSj1XIDeJC78U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/659064-157b-46ed-abe0-1c805d603343/1/QFx2IDftlhN1WBo137bzF6wbX_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/659064-157b-46ed-abe0-1c805d603343/1/_gs-Mh_5PzFjLrmSj1XIDeJC78U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.121.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a6:52:e7:da:2a:54:c3:bb:98:c1:3b:e3:01:b8:18:2a:7c:
c2:e7:19:ca:e3:3c:37:7c:b5:10:b8:a7:d6:50:8a:2d:df:68:
21:94:92:04:ee:2f:ac:99:07:13:08:ca:62:5d:6d:f1:5a:27:
8f:be:da:57:23:51:ca:d3:a2:6d:ed:6d:92:24:2b:e3:72:6d:
a8:55:e7:43:01:2e:d6:22:4c:db:85:0a:f3:86:dc:b9:99:c9:
9f:56:b6:12:33:6a:08:77:98:73:25:11:60:fc:73:a4:61:ac:
67:21:91:2d:54:b7:59:81:d9:c4:7a:e5:92:1f:e2:16:20:d7:
cd:03:e5:b2:4d:4a:cc:a0:98:ec:58:78:ce:9c:2d:30:68:19:
ad:b9:17:fb:5a:80:8c:5b:a5:b6:28:70:02:c0:49:d9:85:8c:
ec:75:bb:d1:91:e4:68:0d:4f:4b:21:d3:3d:05:9b:63:6c:20:
97:d5:47:7e:96:dd:df:f6:eb:12:d5:0d:12:f3:84:fc:3a:fc:
1b:6e:8f:e1:20:37:85:71:de:01:de:e8:72:23:fe:54:90:27:
31:e6:e9:87:11:f2:a0:ee:5e:6e:eb:1d:8f:d4:8c:68:b2:10:
0f:7a:3d:7f:47:34:15:aa:32:ac:7d:b0:8b:13:f0:7f:a9:9f:
e5:8f:fd:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:37:44 2025 by rpki-client