Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/tmVQh_Zrc4vNnbHiXndqXjmcFIE.roa
File: tmVQh_Zrc4vNnbHiXndqXjmcFIE.roa (raw, json)
Hash identifier: yQMwq2wwKjRpZ8/s+bQHYD4lppDeT3TrWmVSZyzj5ow=
Subject key identifier: B6:65:50:87:F6:6B:73:8B:CD:9D:B1:E2:5E:77:6A:5E:39:9C:14:81
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 019426D85BE936ABDDB3072627A7869FE9D0
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/tmVQh_Zrc4vNnbHiXndqXjmcFIE.roa
Signing time: Thu 02 Jan 2025 11:48:20 +0000
ROA not before: Thu 02 Jan 2025 11:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395374
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:5b:e9:36:ab:dd:b3:07:26:27:a7:86:9f:e9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 2 11:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b6655087f66b738bcd9db1e25e776a5e399c1481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7d:c5:b0:0b:9d:bf:8c:e0:4a:36:71:9c:3b:
68:b2:e8:19:6a:b0:c7:5a:5d:2c:98:79:04:8b:2e:
4a:db:67:7c:d1:d0:35:8e:44:7e:0d:71:2d:8e:7f:
02:fa:63:c0:3e:98:05:af:5d:36:b2:00:74:32:b0:
0e:e0:d1:71:ab:8a:a2:0d:b3:1e:25:85:6c:85:8b:
6e:3c:39:96:51:f9:60:fd:48:e6:fb:7a:1a:0b:e8:
c1:6d:5a:f2:e3:42:5d:97:d7:5a:d3:ba:85:e6:b2:
81:85:4d:b8:72:6b:c9:db:eb:32:06:91:cd:0b:70:
7d:98:45:42:df:15:ad:65:3f:e8:d8:02:a7:24:83:
87:09:ac:e1:92:d2:42:33:bb:90:70:c1:bb:c9:db:
30:62:3f:a2:57:82:b5:36:f9:20:28:55:0e:f0:42:
b8:79:fe:19:88:00:7d:31:ae:c2:6a:07:cb:0f:e9:
03:74:ae:87:25:e6:97:47:eb:31:a3:7c:16:e4:51:
de:75:88:f8:55:28:58:d8:9e:78:41:64:83:30:59:
58:6b:bc:a4:1f:c3:28:96:cb:ba:02:d5:72:c5:07:
04:4b:b8:c0:b5:83:c9:55:40:1e:3d:32:4f:89:d8:
2e:71:81:3c:a6:0d:4b:ea:2e:b6:74:00:91:ab:f7:
e1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:65:50:87:F6:6B:73:8B:CD:9D:B1:E2:5E:77:6A:5E:39:9C:14:81
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/tmVQh_Zrc4vNnbHiXndqXjmcFIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ea:5c:08:55:08:2e:98:c2:15:26:5b:d2:31:b4:a9:23:4f:
8d:19:cc:e2:58:bf:4a:a5:c2:28:e4:35:a5:f0:49:76:6e:ce:
34:b8:97:4a:d9:bd:82:73:9f:8f:c8:d6:34:69:5b:80:07:c5:
67:cb:30:c6:df:19:9d:5e:db:c9:ed:f9:f1:5e:8f:47:60:8e:
c6:c4:b9:ac:18:9e:72:7d:b7:26:0d:95:2c:60:65:d2:cb:f9:
df:6a:42:0e:3a:a9:c6:89:08:36:cb:c7:5d:0a:4c:b7:73:35:
fb:21:b2:1b:f8:40:51:37:bc:b1:f2:04:f5:23:fb:f4:d8:13:
01:75:eb:15:49:2c:92:6a:b6:8c:52:ad:51:dc:ff:d4:9f:44:
6a:84:8e:dc:8d:79:75:3a:9a:3f:0f:4d:41:0a:08:bb:0f:c2:
23:2d:cb:8b:fe:35:38:ec:db:db:a3:c0:fa:33:5f:d5:6b:32:
db:cd:9c:fa:48:59:89:37:37:21:f4:e4:22:4c:27:0f:74:a8:
a6:a3:29:3c:32:e3:9a:ea:5d:61:a3:a6:de:73:6f:62:7b:42:
a8:b9:b3:4a:eb:2c:03:5d:3d:9d:bf:55:09:08:39:0b:45:72:
4d:a0:3a:9d:87:43:8e:03:0f:b0:5a:1f:45:5e:1c:d1:e0:6f:
93:46:ff:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:36:10 2025 by rpki-client