Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/qV47vrOmJpC0E3AIgR0Rd-FmmXI.roa
File: qV47vrOmJpC0E3AIgR0Rd-FmmXI.roa (raw, json)
Hash identifier: 0bsKH2Uxs/JSk0HxmmNTjKlLljh2qKfWQ6cxAP2zo3w=
Subject key identifier: A9:5E:3B:BE:B3:A6:26:90:B4:13:70:08:81:1D:11:77:E1:66:99:72
Certificate issuer: /CN=46ca4dc9c70661f721d68ce53601d3d5f9aa8c32
Certificate serial: 018CC3B6FD6D89D067641D9D9BE45B535D3F
Authority key identifier: 46:CA:4D:C9:C7:06:61:F7:21:D6:8C:E5:36:01:D3:D5:F9:AA:8C:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RspNyccGYfch1ozlNgHT1fmqjDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/qV47vrOmJpC0E3AIgR0Rd-FmmXI.roa
Signing time: Mon 01 Jan 2024 06:29:58 +0000
ROA not before: Mon 01 Jan 2024 06:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20648
IP address blocks: 212.34.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:fd:6d:89:d0:67:64:1d:9d:9b:e4:5b:53:5d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ca4dc9c70661f721d68ce53601d3d5f9aa8c32
Validity
Not Before: Jan 1 06:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a95e3bbeb3a62690b4137008811d1177e1669972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c9:ce:28:5f:41:2a:46:24:8b:fe:b0:e9:66:
02:e8:2b:0f:ea:be:93:cc:19:e1:85:6e:c7:ab:64:
3d:85:97:de:55:84:19:56:e6:ae:22:25:bd:c6:20:
fa:61:1f:3b:5d:4a:58:24:bc:c0:65:90:47:2e:0f:
05:dd:5c:34:7f:f7:bb:87:a1:6f:11:b6:00:67:34:
6f:21:f7:a6:65:57:bd:50:8f:12:6f:45:ce:d7:2d:
43:a2:1c:47:c3:2a:a3:ff:40:3e:a8:08:c4:4b:e5:
15:5e:a6:66:03:5f:a5:ac:17:c0:08:8f:97:02:17:
92:7e:42:03:6c:e9:77:44:47:c9:ac:7b:a9:b7:b3:
8b:7f:14:6b:67:95:1f:54:40:6b:e2:45:b0:e2:4c:
d4:81:c2:6a:71:89:93:07:fe:db:93:78:4c:19:ea:
29:ed:fd:16:4b:12:a9:d7:2a:89:37:e1:b3:bf:a8:
4f:af:3b:16:14:0c:17:42:cf:63:a3:dd:d1:5e:e3:
62:1d:02:83:38:44:6f:3d:2a:eb:d3:c8:e2:f3:5a:
54:42:bc:df:28:83:6c:ce:d7:be:db:07:68:e8:fd:
03:47:c6:0f:92:cf:e2:a0:57:d4:91:71:f3:cb:25:
f2:d4:19:d1:12:f2:dd:07:d9:48:f7:9c:a1:68:c6:
b3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5E:3B:BE:B3:A6:26:90:B4:13:70:08:81:1D:11:77:E1:66:99:72
X509v3 Authority Key Identifier:
keyid:46:CA:4D:C9:C7:06:61:F7:21:D6:8C:E5:36:01:D3:D5:F9:AA:8C:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RspNyccGYfch1ozlNgHT1fmqjDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/qV47vrOmJpC0E3AIgR0Rd-FmmXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/00b15a-30af-42ca-ae87-a07a4fc7b45c/1/RspNyccGYfch1ozlNgHT1fmqjDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.34.128.0/20
Signature Algorithm: sha256WithRSAEncryption
03:0a:e4:84:2d:40:db:8b:c4:aa:36:b7:60:73:47:12:8b:f1:
46:4a:44:d2:8b:bb:f7:65:95:29:88:00:2c:09:80:ef:45:02:
99:e0:08:33:dd:b1:af:f5:c0:cb:ef:a4:30:e7:ee:e2:1b:8b:
36:9a:e2:87:4c:45:ec:7d:06:f6:02:63:f3:85:56:58:cd:30:
e4:39:4d:e9:26:e4:49:10:f7:a1:6d:da:5e:78:15:53:7c:81:
27:d3:cc:f0:4c:ec:d4:08:f8:80:48:cc:e6:dd:85:39:ce:05:
e9:a4:ee:14:5e:92:1c:a1:50:7d:f0:40:40:05:fd:37:a3:0a:
47:f2:67:33:c3:43:fa:9f:be:36:ee:e5:18:96:71:cf:db:71:
9a:12:7c:50:2f:5c:17:72:5f:15:02:ba:f5:bd:78:1f:e5:66:
00:e7:41:3a:c9:99:16:39:d6:d3:9e:2f:88:17:02:57:0a:02:
87:9f:7c:e8:cd:ea:09:60:af:04:dc:c0:20:7c:fb:af:24:b8:
dd:93:1a:8d:64:2f:1f:f0:c3:75:ce:cd:79:9e:21:4c:9c:61:
89:5a:62:f9:54:16:37:35:05:62:15:20:7f:80:d4:80:de:7a:
f3:4a:36:45:9e:34:d4:04:6c:21:6b:2d:d0:f8:df:bf:1d:2b:
37:b0:8f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:13 2025 by rpki-client