Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O1z_w2_OZnHOzUyqFbNMHVmOVBU.roa
File: O1z_w2_OZnHOzUyqFbNMHVmOVBU.roa (raw, json)
Hash identifier: erajumgn+d3q23rnn/4VdAdzAuIzN2mtjMO7Wh91B8Y=
Subject key identifier: 3B:5C:FF:C3:6F:CE:66:71:CE:CD:4C:AA:15:B3:4C:1D:59:8E:54:15
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03A17E0B
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O1z_w2_OZnHOzUyqFbNMHVmOVBU.roa
Signing time: Tue 17 May 2022 06:30:04 +0000
ROA not before: Tue 17 May 2022 06:30:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 46.23.98.0/24 maxlen: 24
46.23.96.0/24 maxlen: 24
46.23.99.0/24 maxlen: 24
46.23.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60915211 (0x3a17e0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 17 06:30:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b5cffc36fce6671cecd4caa15b34c1d598e5415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0d:c8:c1:ff:b8:c3:e6:52:07:a3:b2:1d:99:
fb:3b:df:9e:19:be:eb:2c:97:1d:31:19:00:25:9f:
08:8a:e7:f9:28:96:e9:81:af:47:93:76:b7:22:9d:
49:e7:da:8b:8d:64:f7:3a:6f:55:0a:c3:bd:45:4f:
a3:64:40:01:ee:10:b7:38:b2:04:e4:3b:b7:df:28:
7a:7f:ad:a0:18:29:25:ca:89:37:c7:82:02:01:02:
b1:e3:f1:ec:20:a4:51:c3:95:a9:a5:2c:cc:2c:bd:
72:b8:bb:03:56:67:f9:3e:48:07:67:cc:e7:55:9a:
54:a5:bf:10:38:11:3a:42:90:76:54:0d:85:bf:86:
92:66:cd:bd:b0:68:4b:97:ce:77:5d:8f:1d:77:64:
e5:23:80:eb:d7:a9:f4:45:06:d4:83:bd:60:b7:2a:
d4:9f:c9:5e:09:78:79:3c:5a:d5:74:5a:67:c9:56:
a9:91:b9:f0:84:f7:3c:8e:41:59:bd:8d:ae:21:67:
74:80:4f:a1:23:23:93:4e:ff:e5:f1:d1:2a:f0:9f:
48:d4:6b:28:4c:3e:4e:39:3b:47:7c:00:63:03:22:
1b:97:86:17:b2:00:9c:19:5d:c4:4f:f8:a7:67:7f:
9b:46:ef:ad:f3:52:44:e2:36:65:38:3a:00:12:9e:
11:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5C:FF:C3:6F:CE:66:71:CE:CD:4C:AA:15:B3:4C:1D:59:8E:54:15
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/O1z_w2_OZnHOzUyqFbNMHVmOVBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.96.0/24
46.23.98.0/23
46.23.111.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:0e:bd:7b:64:33:99:a2:91:89:d1:3e:1d:9f:e9:38:0b:f8:
8b:f8:ca:1f:55:c3:1f:07:e7:b2:48:20:d6:28:d8:cc:b7:be:
2e:39:38:6a:10:77:06:cd:7d:f3:59:7a:e8:d7:68:24:53:7c:
db:01:4e:d3:a0:a0:fb:c1:84:1b:44:e6:2f:71:d4:d1:e5:38:
60:52:ce:fd:a2:a8:ea:06:e0:d9:87:2c:6b:2f:18:24:bd:dc:
1a:85:e4:f6:dd:fe:b1:52:22:0b:c3:f5:ed:f7:5f:70:c6:54:
18:bc:bf:4e:cc:0e:8c:7a:4e:e1:e1:47:9d:81:f7:3a:ba:15:
01:84:ae:45:8d:a5:77:e7:a6:a4:a8:5e:69:f7:ad:be:ff:dd:
28:45:ce:40:b8:5a:50:5d:aa:73:1f:fd:d8:74:9a:f2:9b:eb:
d6:33:51:fb:62:9a:e6:d5:90:b6:21:0e:d4:52:cb:e2:2f:e5:
2e:77:2b:10:71:db:f7:c1:5e:62:dc:26:dd:f2:b0:13:eb:f9:
ce:00:bf:99:cc:43:26:0a:48:e1:61:0d:89:77:15:da:a0:8e:
a1:48:20:f6:fc:5a:80:8a:3f:e3:4b:d6:c5:52:cc:40:c2:8a:
ee:c0:b3:94:d3:2a:ac:40:c7:10:27:89:36:04:33:e3:e2:82:
2e:30:4e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:17 2025 by rpki-client