Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e8bbd2-1361-41a3-90f0-5334e6b8c5fe/1/mPhBEESpSSmoxdu-n5OAjI6sC_I.roa
File: mPhBEESpSSmoxdu-n5OAjI6sC_I.roa (raw, json)
Hash identifier: 6Dj5yn1/ctkVobyO+cPsteiP8qKS3BhAZ1jJUQtNU9w=
Subject key identifier: 98:F8:41:10:44:A9:49:29:A8:C5:DB:BE:9F:93:80:8C:8E:AC:0B:F2
Certificate issuer: /CN=b011022187e3395a1524fa1a7541ea793285afc2
Certificate serial: 019422200C8BFC742A414C1DBC39DA093E10
Authority key identifier: B0:11:02:21:87:E3:39:5A:15:24:FA:1A:75:41:EA:79:32:85:AF:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBECIYfjOVoVJPoadUHqeTKFr8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e8bbd2-1361-41a3-90f0-5334e6b8c5fe/1/mPhBEESpSSmoxdu-n5OAjI6sC_I.roa
Signing time: Wed 01 Jan 2025 13:48:33 +0000
ROA not before: Wed 01 Jan 2025 13:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34636
IP address blocks: 46.21.90.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0c:8b:fc:74:2a:41:4c:1d:bc:39:da:09:3e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b011022187e3395a1524fa1a7541ea793285afc2
Validity
Not Before: Jan 1 13:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98f8411044a94929a8c5dbbe9f93808c8eac0bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:aa:86:fd:9e:ae:84:c9:81:9b:fd:da:f7:2a:
fa:89:10:bb:0e:69:b8:b6:fb:67:73:0f:f9:7f:9f:
88:b9:73:f4:c1:70:5e:69:d6:2e:e7:ad:bb:37:bc:
5e:11:1f:d2:33:31:1d:fe:99:ff:5d:45:19:6a:d6:
f5:d2:48:a3:8b:56:1a:35:56:9f:6b:87:aa:0c:3e:
9d:f5:75:a7:76:42:79:f2:b5:76:16:17:97:3e:62:
fc:7a:16:16:90:e0:b1:0c:46:40:ef:a1:22:5b:11:
0f:ae:45:59:78:96:14:d8:09:ad:81:21:76:e7:d1:
3a:07:f1:f8:33:06:29:c2:c1:e3:b7:d7:f5:fb:c4:
52:13:56:61:0f:a4:e5:2b:6d:e5:53:7a:a7:27:ee:
7a:81:89:4c:9e:31:25:84:d9:04:a1:b7:9f:0f:b4:
32:c7:89:40:fa:7e:d5:96:fc:da:aa:1d:fb:f9:f9:
b0:9a:62:97:64:b5:bf:bc:19:f6:43:a9:9e:aa:32:
22:9d:dc:1a:04:26:d6:44:0e:a4:5c:60:0b:2e:37:
5c:56:67:86:42:bd:a4:37:17:df:ef:65:7a:28:fc:
27:59:f4:1f:6a:6a:60:3f:e8:18:7d:00:1d:1a:b1:
ae:7d:d7:34:88:43:cd:81:f3:1d:da:9e:97:54:66:
bf:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F8:41:10:44:A9:49:29:A8:C5:DB:BE:9F:93:80:8C:8E:AC:0B:F2
X509v3 Authority Key Identifier:
keyid:B0:11:02:21:87:E3:39:5A:15:24:FA:1A:75:41:EA:79:32:85:AF:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBECIYfjOVoVJPoadUHqeTKFr8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e8bbd2-1361-41a3-90f0-5334e6b8c5fe/1/mPhBEESpSSmoxdu-n5OAjI6sC_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e8bbd2-1361-41a3-90f0-5334e6b8c5fe/1/sBECIYfjOVoVJPoadUHqeTKFr8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.90.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:1c:6b:aa:c7:8a:84:d6:6a:21:f5:83:23:79:23:7b:32:ff:
cd:90:70:d6:30:ae:b9:c2:20:4d:85:2b:c4:c6:63:0a:85:8b:
95:2a:e5:4b:97:8b:76:dc:03:07:f4:8d:ff:e6:65:18:1e:b0:
7d:ff:b6:4a:4e:5d:a8:6e:fb:3a:fb:43:7c:34:96:ad:0f:b5:
c6:a4:5b:f2:87:55:ff:be:7c:37:e9:5b:f9:bb:b9:6d:48:e6:
ed:26:a3:33:7a:bd:62:f9:bf:7d:a7:32:59:c9:9c:4d:5f:de:
2c:51:df:7c:91:f0:5d:0f:db:cc:0f:1e:8b:f1:75:95:fc:86:
1c:1e:0d:be:be:42:ea:f5:72:bc:a5:67:95:7d:52:a6:cb:ad:
37:56:15:44:99:f6:25:00:f5:3a:89:26:ca:8d:31:2e:d9:f4:
24:d0:73:fa:fc:26:ee:d6:fd:32:bd:05:08:7e:d5:bf:4d:03:
96:b4:f1:2b:38:90:87:22:1e:63:40:44:ae:61:2a:c0:ec:d4:
d6:e7:ff:a6:94:d3:58:03:62:59:11:2d:cb:ed:a2:75:8d:3f:
c9:bf:95:39:9c:83:7f:a9:5b:62:53:e8:e9:c8:09:67:f7:73:
22:7d:4b:7f:60:15:75:89:83:c5:2b:30:7f:10:2b:37:e5:3b:
af:e9:89:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:58 2025 by rpki-client on console.sobornost.net