Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Cb6J009YjAvsHt-cOCzoq6COu2s.roa
File: Cb6J009YjAvsHt-cOCzoq6COu2s.roa (raw, json)
Hash identifier: JYhIxuAiCqYa3GuMgLHcVZPog+Htt4sx2nx2FFqwMk8=
Subject key identifier: 09:BE:89:D3:4F:58:8C:0B:EC:1E:DF:9C:38:2C:E8:AB:A0:8E:BB:6B
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0190B8411A57B1B4F7601A96AB36298372B2
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Cb6J009YjAvsHt-cOCzoq6COu2s.roa
Signing time: Mon 15 Jul 2024 21:16:32 +0000
ROA not before: Mon 15 Jul 2024 21:16:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47959
IP address blocks: 46.23.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b8:41:1a:57:b1:b4:f7:60:1a:96:ab:36:29:83:72:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jul 15 21:16:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09be89d34f588c0bec1edf9c382ce8aba08ebb6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:de:77:c0:f1:3f:18:f9:e1:26:bd:5a:5d:
ca:37:e9:88:d2:bd:dc:68:50:5f:64:73:2a:44:18:
c2:10:53:9b:f5:1a:3e:56:9e:fb:8a:5f:86:38:48:
3b:e5:e7:e0:d0:b9:48:9f:13:86:2a:59:31:ff:75:
58:d4:8b:3c:09:30:53:81:ec:ec:16:35:2b:99:4d:
6d:86:21:3f:9e:4a:21:f2:f5:9b:05:f8:c7:6a:2a:
a8:a0:10:26:1c:9a:84:33:e6:4f:d7:d6:b5:68:86:
93:ac:a1:52:68:99:42:4c:db:39:b8:31:9c:58:95:
ad:f6:ba:8a:e6:7e:4c:e4:88:5c:5d:53:9d:67:d3:
c6:88:bc:86:0f:3b:88:ed:a1:f9:56:26:19:a5:3d:
cf:4d:86:dc:8c:72:02:db:71:72:54:2f:74:d6:4b:
95:c0:20:64:9c:07:5b:c7:14:4d:c7:99:6a:08:3d:
02:1e:e7:48:ff:40:d3:be:0f:51:10:aa:5d:9e:81:
d5:a6:b2:33:b3:4e:eb:1f:ac:3d:2f:0e:9e:db:07:
cc:99:2f:6e:55:05:e4:e0:bf:bd:f3:bf:a0:53:88:
2f:72:6c:4d:8d:46:da:e7:a9:99:dc:ae:82:17:16:
b6:94:ae:88:50:11:9c:7c:c8:fc:d2:5d:df:d2:44:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BE:89:D3:4F:58:8C:0B:EC:1E:DF:9C:38:2C:E8:AB:A0:8E:BB:6B
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Cb6J009YjAvsHt-cOCzoq6COu2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
Signature Algorithm: sha256WithRSAEncryption
41:78:13:50:09:48:4e:89:bd:45:15:b9:50:2e:8c:3a:76:a2:
92:73:7f:4c:e8:41:d4:82:f7:f4:63:be:99:7c:ac:cc:17:5f:
7e:68:48:34:84:e1:3f:21:3f:66:50:b6:35:81:e3:9d:4b:d0:
b9:61:fe:5d:16:dc:00:c5:8f:63:73:52:5e:c3:62:65:9e:f3:
cd:13:66:bb:9c:6c:c5:bd:f3:65:db:28:da:77:a8:e6:05:d4:
1f:b3:5e:8f:79:68:47:72:22:7f:e1:d7:4b:c3:c4:0b:51:90:
68:e8:dc:3f:27:8e:37:4d:70:08:cc:95:4d:e3:d0:e4:3c:ca:
cc:89:1d:ff:e5:39:99:cb:ec:4d:00:62:0e:ac:14:67:ce:eb:
16:37:92:15:bb:38:01:4d:12:e0:d5:93:50:26:74:18:3c:4f:
db:32:3c:bb:a9:e8:5a:39:49:fb:d8:53:cf:aa:11:1b:47:66:
af:18:85:47:19:66:99:8c:91:f7:96:75:e5:e3:a0:da:5d:04:
34:95:52:aa:a9:e5:c9:3a:ec:cd:91:de:e2:06:cb:42:08:44:
a4:4d:4a:a1:82:2e:fa:aa:d8:d3:58:28:4e:61:0a:5d:78:c0:
01:0b:36:08:49:2b:25:b0:14:98:9e:49:cf:0b:2d:22:54:f5:
d9:24:8a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:52 2025 by rpki-client