Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/541538-1642-4532-93ad-143044d2d906/1/bKOrMw6XNYXYtyR9DU1_ROu_JeU.roa
File: bKOrMw6XNYXYtyR9DU1_ROu_JeU.roa (raw, json)
Hash identifier: UIVuWkw0k0UQdn4pkCivYBqL9FY6w2eN6DnYKgaytNo=
Subject key identifier: 6C:A3:AB:33:0E:97:35:85:D8:B7:24:7D:0D:4D:7F:44:EB:BF:25:E5
Certificate issuer: /CN=5b8f821f65ca86d3b5c745776b5a308b6cc5864d
Certificate serial: 0183EC3CD0EA7865FC00EEFE1AE18889748D
Authority key identifier: 5B:8F:82:1F:65:CA:86:D3:B5:C7:45:77:6B:5A:30:8B:6C:C5:86:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W4-CH2XKhtO1x0V3a1owi2zFhk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/541538-1642-4532-93ad-143044d2d906/1/bKOrMw6XNYXYtyR9DU1_ROu_JeU.roa
Signing time: Tue 18 Oct 2022 17:55:52 +0000
ROA not before: Tue 18 Oct 2022 17:55:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41957
IP address blocks: 46.253.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:3c:d0:ea:78:65:fc:00:ee:fe:1a:e1:88:89:74:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8f821f65ca86d3b5c745776b5a308b6cc5864d
Validity
Not Before: Oct 18 17:55:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca3ab330e973585d8b7247d0d4d7f44ebbf25e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:52:3f:18:29:90:d0:e3:7d:d9:e9:68:19:2d:
5c:b9:f9:22:22:f8:ad:55:ed:96:dc:1b:b3:12:70:
ec:68:f2:86:5a:2b:b5:59:db:52:8e:f5:b3:26:cb:
a3:bc:2c:5d:92:c1:2e:bc:cb:9d:be:94:ce:4f:a9:
18:0a:1b:f0:76:55:b2:89:49:4a:67:9a:47:5d:bb:
ff:10:6a:16:e5:ca:bf:76:e4:9e:61:32:d9:a1:84:
68:bb:f9:34:68:d0:b2:40:a5:75:d1:1a:60:dc:58:
2d:08:39:1d:c5:97:3a:3f:eb:c5:7d:f6:24:7f:d2:
4c:4c:8f:a9:9e:57:3b:ec:f8:bf:36:bf:0b:60:6d:
d8:c7:a9:78:a7:3a:70:75:09:62:c7:ee:4a:79:b9:
5f:f9:a3:ac:f1:dc:1a:7c:20:cf:3e:4f:b2:e7:58:
77:f3:29:43:fb:d7:e8:d3:08:c6:ca:ef:f6:d6:c6:
b8:e4:b6:42:0d:92:34:33:4f:fe:1f:a8:ee:21:1a:
53:25:2e:c5:9f:19:b6:09:94:04:78:9e:1f:87:f9:
0b:9a:36:56:13:ca:4f:74:a3:42:8e:ce:77:90:8b:
b5:92:ab:83:ee:c4:03:81:20:dd:2d:a9:5d:57:93:
29:b2:21:0c:54:8b:df:e5:e8:5e:5f:3b:58:f6:53:
52:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A3:AB:33:0E:97:35:85:D8:B7:24:7D:0D:4D:7F:44:EB:BF:25:E5
X509v3 Authority Key Identifier:
keyid:5B:8F:82:1F:65:CA:86:D3:B5:C7:45:77:6B:5A:30:8B:6C:C5:86:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W4-CH2XKhtO1x0V3a1owi2zFhk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/541538-1642-4532-93ad-143044d2d906/1/bKOrMw6XNYXYtyR9DU1_ROu_JeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/541538-1642-4532-93ad-143044d2d906/1/W4-CH2XKhtO1x0V3a1owi2zFhk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.128.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:f2:fa:b3:d3:d2:46:4b:48:01:8a:a1:8f:d5:33:65:fe:50:
8d:43:82:2c:d3:c0:f0:2f:b7:7b:52:cc:9c:9b:9f:2b:61:6e:
e6:f8:57:ca:71:f2:a7:d4:b5:97:35:7f:10:cb:65:be:30:d6:
82:6a:3f:f1:3d:d5:aa:55:2f:17:70:26:02:6e:54:b3:64:5d:
68:d6:f9:c0:93:6f:ab:a4:e3:5e:1d:4b:ab:ae:ca:95:30:8d:
4e:c6:4e:44:51:4d:03:ef:5c:57:8c:e9:9e:c2:9c:e6:7c:6b:
68:dc:a8:89:b8:47:d4:78:15:a9:4c:e2:58:50:6e:55:65:9c:
ae:ac:36:de:90:ff:7f:aa:2b:5a:d7:99:f2:f6:0a:f4:91:00:
5c:8c:a5:b2:ba:6a:f2:4c:0f:ad:1c:ee:7b:85:29:30:eb:d0:
ee:1e:2e:6a:42:28:94:35:bf:3a:58:cf:64:7f:13:cc:26:e6:
9a:f2:53:c0:d0:d4:ab:c0:4a:34:f3:dd:48:3d:18:8c:4c:f8:
ab:90:82:86:a0:93:11:25:ff:bb:2a:a7:f2:a0:08:5c:e9:26:
72:df:fb:bc:7a:ba:63:a1:f2:34:43:3e:08:76:e1:71:8c:6c:
14:30:3a:1b:61:26:83:26:c5:a2:cd:e7:6a:6c:cf:d9:47:4f:
08:89:9f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:31 2025 by rpki-client