Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/M3Ha07iuSnJt99v-sGLNUx8BBLI.roa
File: M3Ha07iuSnJt99v-sGLNUx8BBLI.roa (raw, json)
Hash identifier: IIpH3NsZ7PItLDv9GEILJ6qdrVTgVESMLfrKLW1hfuA=
Subject key identifier: 33:71:DA:D3:B8:AE:4A:72:6D:F7:DB:FE:B0:62:CD:53:1F:01:04:B2
Certificate issuer: /CN=7e2cb3d0a641769c7801c481612015c2ccb3b655
Certificate serial: 0194221FE3EDBA7FBAA1A18E51371CC6A630
Authority key identifier: 7E:2C:B3:D0:A6:41:76:9C:78:01:C4:81:61:20:15:C2:CC:B3:B6:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiyz0KZBdpx4AcSBYSAVwsyztlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/M3Ha07iuSnJt99v-sGLNUx8BBLI.roa
Signing time: Wed 01 Jan 2025 13:48:22 +0000
ROA not before: Wed 01 Jan 2025 13:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 46.255.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e3:ed:ba:7f:ba:a1:a1:8e:51:37:1c:c6:a6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2cb3d0a641769c7801c481612015c2ccb3b655
Validity
Not Before: Jan 1 13:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3371dad3b8ae4a726df7dbfeb062cd531f0104b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:be:8c:7d:be:b5:c9:91:45:ec:31:b0:1c:3e:
32:64:dd:fb:1d:02:67:cf:6b:0d:9c:d7:53:33:fc:
56:42:fb:83:1c:3c:5f:df:42:dc:54:41:5a:a4:e1:
f5:6d:be:48:88:68:f4:55:cd:32:22:8d:81:ac:7c:
1f:ce:d4:77:06:3c:f9:76:09:b7:40:88:ed:e5:51:
3c:e9:b1:4d:7a:cd:7e:7a:1b:5f:b4:dd:27:21:06:
92:20:b9:13:69:6a:80:99:d9:dd:dc:14:8d:5e:38:
30:22:c7:22:b6:73:05:0e:b8:c3:ba:49:d6:ab:ca:
99:3e:ee:89:b5:f4:c3:a3:a9:6b:96:7c:6f:0c:6d:
82:48:e8:b0:e5:fa:fc:22:d2:7f:5f:d7:37:49:9e:
5f:87:9a:f4:55:11:f9:aa:60:ed:95:e1:06:df:7d:
d5:2f:20:89:c4:a9:e7:9d:9e:74:45:10:e1:aa:cf:
4c:2b:54:18:1d:a7:c3:1f:25:af:25:d8:06:5a:ce:
4f:41:aa:e8:57:50:3e:96:15:20:7b:04:13:3a:01:
b4:99:2e:24:51:f6:b1:09:7a:c9:4b:49:0f:ec:a7:
de:08:a8:51:c2:cf:80:64:41:0a:ad:7d:2d:94:75:
4c:8d:d0:54:b5:3b:c4:7f:69:8a:8d:57:fe:fd:8a:
ec:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:71:DA:D3:B8:AE:4A:72:6D:F7:DB:FE:B0:62:CD:53:1F:01:04:B2
X509v3 Authority Key Identifier:
keyid:7E:2C:B3:D0:A6:41:76:9C:78:01:C4:81:61:20:15:C2:CC:B3:B6:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiyz0KZBdpx4AcSBYSAVwsyztlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/M3Ha07iuSnJt99v-sGLNUx8BBLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/431df1-09f4-475c-a045-f5bb2843c89e/1/fiyz0KZBdpx4AcSBYSAVwsyztlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.76.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:84:47:0e:10:7b:64:ab:b1:92:2d:e6:e5:3a:6b:73:c4:88:
41:ee:a9:c1:a9:ad:17:8f:2c:91:d8:1d:ba:c1:da:cb:d3:5e:
21:9b:d5:85:a6:7b:21:b8:76:c1:ef:57:54:3e:45:cb:c2:6e:
2d:ef:a1:c4:d4:cb:6d:ab:3f:78:c6:71:79:12:98:e0:11:07:
86:40:83:22:4b:04:45:18:2a:17:a1:83:e4:89:63:53:93:60:
54:ae:b6:04:a5:24:74:40:9d:57:d4:b8:c6:e9:8b:ec:30:b0:
08:c5:10:fb:ff:53:a4:1c:fa:c6:2d:c6:a7:3e:50:e6:2d:ee:
89:e2:a8:b0:d6:09:f3:bd:f5:bb:46:c6:42:a1:62:41:b6:ac:
96:d7:e6:38:0f:6f:d6:52:9e:4f:b3:14:0f:bd:bd:db:c4:b0:
d5:fc:cd:1f:15:40:08:c4:09:3a:73:7c:42:3a:b6:93:23:bd:
44:9c:bf:0f:b6:98:62:a4:e1:4f:f0:43:fa:9f:52:6f:6a:55:
fa:b5:40:7d:93:be:4f:f4:a0:38:ef:99:da:78:66:ed:b1:12:
e3:b0:76:26:2c:8b:5d:37:bb:38:35:90:05:c5:cd:44:19:7e:
87:86:d0:b9:3a:65:fc:f7:16:90:58:d2:9a:23:d0:68:b7:fa:
95:81:06:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:40:06 2025 by rpki-client