Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/376653-72d6-4117-87ec-20ef057adae0/1/8NpZnazh1RrdaqJXqgbi4qG5fbM.roa
File: 8NpZnazh1RrdaqJXqgbi4qG5fbM.roa (raw, json)
Hash identifier: TSCJt3vCHbwAVMMMQeLRmzL08T3Sb+ytBdWNBcESpGk=
Subject key identifier: F0:DA:59:9D:AC:E1:D5:1A:DD:6A:A2:57:AA:06:E2:E2:A1:B9:7D:B3
Certificate issuer: /CN=d4081eee3b2ee3325b53e7f4d6d89b6401e25221
Certificate serial: 01834025B4DBB917E39E8011BF922D84512A
Authority key identifier: D4:08:1E:EE:3B:2E:E3:32:5B:53:E7:F4:D6:D8:9B:64:01:E2:52:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Age7jsu4zJbU-f01tibZAHiUiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/376653-72d6-4117-87ec-20ef057adae0/1/8NpZnazh1RrdaqJXqgbi4qG5fbM.roa
Signing time: Thu 15 Sep 2022 07:55:56 +0000
ROA not before: Thu 15 Sep 2022 07:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60064
IP address blocks: 212.46.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:25:b4:db:b9:17:e3:9e:80:11:bf:92:2d:84:51:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4081eee3b2ee3325b53e7f4d6d89b6401e25221
Validity
Not Before: Sep 15 07:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0da599dace1d51add6aa257aa06e2e2a1b97db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:d4:53:55:aa:90:3e:32:c9:45:a0:b7:a2:
bb:2d:4d:4e:7a:2e:50:d7:9f:38:c4:47:61:4b:d1:
cf:81:b6:a0:8c:2c:07:ae:ce:16:3c:c2:3e:a3:0b:
a8:5b:e1:ec:71:c8:0b:37:8c:6c:55:14:9f:6f:af:
50:95:52:e1:6c:11:4d:e6:4c:a3:85:55:8a:02:70:
b4:bc:09:a7:75:af:ad:8e:7d:c1:58:ae:a6:cc:38:
a6:eb:7f:8e:65:51:36:12:65:00:0e:9a:17:f5:ca:
8a:63:0d:d2:52:b0:f3:9f:d4:d3:9e:58:93:08:a0:
ca:67:9d:66:d5:7a:9f:6f:eb:ea:6c:43:e2:7d:ee:
58:4d:23:6b:5a:3f:d0:7a:4c:d5:6b:7b:5e:31:58:
c5:88:4e:a5:be:29:60:b9:24:6b:37:e0:e6:c0:4e:
fc:7b:c0:f4:62:f6:cd:01:87:17:64:c0:8d:07:a2:
ce:c8:f2:ea:3c:4b:0d:41:d9:a4:de:18:ef:2d:05:
7f:25:ba:9e:83:3b:54:5d:03:f6:a3:42:3b:ca:34:
68:86:bf:e5:cd:40:f9:5c:85:16:37:59:81:65:ac:
48:09:6d:71:5f:bb:86:8f:b9:97:55:85:ad:91:73:
08:94:25:c5:11:b5:ca:ff:0c:66:a9:9f:e5:28:2e:
1f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:DA:59:9D:AC:E1:D5:1A:DD:6A:A2:57:AA:06:E2:E2:A1:B9:7D:B3
X509v3 Authority Key Identifier:
keyid:D4:08:1E:EE:3B:2E:E3:32:5B:53:E7:F4:D6:D8:9B:64:01:E2:52:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Age7jsu4zJbU-f01tibZAHiUiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/376653-72d6-4117-87ec-20ef057adae0/1/8NpZnazh1RrdaqJXqgbi4qG5fbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/376653-72d6-4117-87ec-20ef057adae0/1/1Age7jsu4zJbU-f01tibZAHiUiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.43.0/24
Signature Algorithm: sha256WithRSAEncryption
16:7f:f8:5e:0e:9d:1e:d0:5a:ba:63:c1:0f:1b:a4:d4:ea:0a:
f1:cb:9e:86:35:84:34:05:7d:6b:b4:58:7f:6c:88:4d:28:87:
46:4f:c9:fb:01:d4:f3:02:58:09:fe:35:b7:41:79:77:27:9c:
07:08:88:c6:2a:99:98:0b:03:c6:7a:b4:fb:25:52:3a:82:45:
a5:09:4f:88:52:e7:45:da:ac:57:ae:1d:46:06:a2:6d:23:96:
2d:a4:72:db:33:3e:8f:47:38:6d:63:b0:01:f2:af:5b:86:e0:
f5:f4:38:8e:75:63:77:e5:91:88:b2:fc:07:86:8b:5d:1b:18:
6f:8c:4f:b7:e2:8f:b6:02:ae:2f:2f:90:fa:b9:b6:fc:02:ef:
d7:15:84:35:31:a1:02:59:a8:51:40:ca:de:c9:16:05:e4:60:
52:b9:87:da:25:8b:d6:c2:22:d4:93:e6:a6:69:5f:98:94:5d:
e1:df:1b:21:88:de:f8:96:2f:28:9d:c3:54:c4:5f:9b:84:7f:
2c:d9:ba:a7:3c:2b:06:04:19:f0:9f:db:7a:ea:1f:fd:df:45:
a3:26:91:18:7c:7b:ed:15:de:b0:0e:56:80:6d:d7:83:1c:cf:
66:ce:cd:cb:bb:bd:86:da:10:96:1a:fb:e0:7a:00:52:e1:1f:
af:30:89:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:18:19 2025 by rpki-client