Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/Xd8H7uVNDL51ed4Oq_HvJ22OpPQ.roa
File: Xd8H7uVNDL51ed4Oq_HvJ22OpPQ.roa (raw, json)
Hash identifier: 4NgEnnhnf136EJjCMsSbZEgbQK+ojDJtfBKT9bYHAcE=
Subject key identifier: 5D:DF:07:EE:E5:4D:0C:BE:75:79:DE:0E:AB:F1:EF:27:6D:8E:A4:F4
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 0194221F346599BBDF6AE9FB571DF35F1D69
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/Xd8H7uVNDL51ed4Oq_HvJ22OpPQ.roa
Signing time: Wed 01 Jan 2025 13:47:37 +0000
ROA not before: Wed 01 Jan 2025 13:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41811
IP address blocks: 46.8.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:34:65:99:bb:df:6a:e9:fb:57:1d:f3:5f:1d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Jan 1 13:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5ddf07eee54d0cbe7579de0eabf1ef276d8ea4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:71:64:6d:6a:87:54:c4:dc:57:e1:ad:27:5b:
d2:f2:13:fa:74:f8:9d:c6:bc:10:82:62:18:52:21:
45:bd:e7:0a:76:93:93:65:2c:4c:c8:2c:e7:ba:0c:
78:4d:3e:f6:3f:05:8d:88:ea:1e:45:0d:88:9c:8e:
f9:20:52:34:59:7f:13:1b:36:5e:b5:44:7a:fb:3b:
a7:5f:cd:19:1a:4d:e2:85:22:a2:cd:d4:51:da:46:
7a:62:b1:c5:87:1a:0e:49:d1:a7:5c:75:a8:f2:47:
6b:8a:06:3a:77:a2:4d:13:78:d2:24:70:33:b8:f6:
4f:73:63:4c:8a:bd:db:88:9f:30:c8:3b:b6:28:9d:
e4:3c:fc:df:22:36:1c:92:e4:72:12:16:13:f7:1f:
66:03:2b:e4:f1:01:99:c7:ef:10:da:8a:41:ef:3a:
7b:07:0e:a2:77:b6:87:90:88:aa:c6:5f:e9:65:82:
7a:4e:b1:95:ac:97:08:9b:c5:d9:22:38:fd:96:84:
38:12:a7:d8:f8:16:32:3b:e1:3f:f2:57:a8:6c:c8:
42:77:26:03:b3:80:72:d2:e1:a8:86:96:e7:af:12:
c7:1b:27:ea:82:e7:66:a2:c7:b5:f0:9e:d6:f9:53:
7a:c3:bd:26:fe:c2:f9:14:99:97:37:e5:e7:86:49:
a4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DF:07:EE:E5:4D:0C:BE:75:79:DE:0E:AB:F1:EF:27:6D:8E:A4:F4
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/Xd8H7uVNDL51ed4Oq_HvJ22OpPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.197.0/24
Signature Algorithm: sha256WithRSAEncryption
56:0e:25:2d:bb:d9:6a:4d:56:3f:dd:70:38:98:07:e5:51:db:
eb:37:85:12:d1:62:1f:3b:7b:e8:3a:51:83:07:e4:ea:1f:e6:
12:10:40:d9:c8:69:0c:21:00:61:e4:8d:8c:76:af:7d:26:b7:
c2:4e:f5:c2:06:bc:a6:c6:5d:ac:29:3d:fe:1e:47:2e:52:81:
01:63:d2:52:a9:39:d0:ea:15:cc:3d:9c:44:ab:c7:e4:de:4a:
91:0e:df:f7:5e:f8:84:e3:c4:39:ec:27:19:d9:f1:37:6f:ed:
49:96:34:e0:f0:72:b5:bc:be:db:57:9f:d4:27:57:1a:e1:35:
e3:07:ba:4b:1a:3c:9e:5b:8b:ae:1b:56:cb:00:51:1a:90:72:
cb:1a:60:f3:ca:a4:31:42:ec:de:5a:af:8d:82:aa:e2:bc:27:
41:4c:af:90:b6:21:26:3c:ee:b7:5d:19:18:4a:12:af:f9:25:
35:b0:bb:cd:61:19:c5:77:53:2d:c5:2f:ed:03:6f:a4:05:85:
59:e3:3a:cc:3e:6f:ff:ff:66:6b:60:52:0f:78:10:6e:9d:bc:
6a:91:6c:43:e1:d2:64:4e:f4:5c:84:f1:25:e4:0f:9b:a5:23:
d9:1d:e0:c0:bc:5a:b4:64:ba:d4:63:8c:ee:23:4a:71:9c:ed:
58:7c:94:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiHzRlmbvfaun7Vx3zXx1pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Mzc1ODE0MzQ0ZGYwYmY2ZDAxNzczM2FjZGM0ODhmMDAy
NjMxYjIwHhcNMjUwMTAxMTM0NzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGRmMDdlZWU1NGQwY2JlNzU3OWRlMGVhYmYxZWYyNzZkOGVhNGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXFkbWqHVMTcV+GtJ1vS8hP6dPid
xrwQgmIYUiFFvecKdpOTZSxMyCznugx4TT72PwWNiOoeRQ2InI75IFI0WX8TGzZe
tUR6+zunX80ZGk3ihSKizdRR2kZ6YrHFhxoOSdGnXHWo8kdrigY6d6JNE3jSJHAz
uPZPc2NMir3biJ8wyDu2KJ3kPPzfIjYckuRyEhYT9x9mAyvk8QGZx+8Q2opB7zp7
Bw6id7aHkIiqxl/pZYJ6TrGVrJcIm8XZIjj9loQ4EqfY+BYyO+E/8leobMhCdyYD
s4By0uGohpbnrxLHGyfqgudmose18J7W+VN6w70m/sL5FJmXN+XnhkmkEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF3fB+7lTQy+dXneDqvx7ydtjqT0MB8GA1UdIwQY
MBaAFNQ3WBQ0TfC/bQF3M6zcSI8AJjGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2Yt
MzY3MWQ2N2ViOWY4LzEvWGQ4SDd1Vk5ETDUxZWQ0T3FfSHZKMjJPcFBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2YtMzY3MWQ2N2ViOWY4
LzEvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgjFMA0G
CSqGSIb3DQEBCwUAA4IBAQBWDiUtu9lqTVY/3XA4mAflUdvrN4US0WIfO3voOlGD
B+TqH+YSEEDZyGkMIQBh5I2Mdq99JrfCTvXCBrymxl2sKT3+HkcuUoEBY9JSqTnQ
6hXMPZxEq8fk3kqRDt/3XviE48Q57CcZ2fE3b+1JljTg8HK1vL7bV5/UJ1ca4TXj
B7pLGjyeW4uuG1bLAFEakHLLGmDzyqQxQuzeWq+NgqrivCdBTK+QtiEmPO63XRkY
ShKv+SU1sLvNYRnFd1MtxS/tA2+kBYVZ4zrMPm///2ZrYFIPeBBunbxqkWxD4dJk
TvRchPEl5A+bpSPZHeDAvFq0ZLrUY4zuI0pxnO1YfJTl
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:37 2025 by rpki-client