Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Y51duMvjV_OQZmOCJBSIZCmhcrk.roa
File: Y51duMvjV_OQZmOCJBSIZCmhcrk.roa (raw, json)
Hash identifier: Q0RhIzzfhASN7KdMAgmx0KpJTYttwJFhhPb1OGIDnNA=
Subject key identifier: 63:9D:5D:B8:CB:E3:57:F3:90:66:63:82:24:14:88:64:29:A1:72:B9
Certificate issuer: /CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Certificate serial: 0194266B383FD7D8C59401B8BD50A587B9A4
Authority key identifier: 77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Y51duMvjV_OQZmOCJBSIZCmhcrk.roa
Signing time: Thu 02 Jan 2025 09:49:08 +0000
ROA not before: Thu 02 Jan 2025 09:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39438
IP address blocks: 46.226.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:38:3f:d7:d8:c5:94:01:b8:bd:50:a5:87:b9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e3c2900b599754283f27f3b4e8d7f6c4510972
Validity
Not Before: Jan 2 09:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=639d5db8cbe357f3906663822414886429a172b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:65:ef:cc:c8:e0:da:b2:fa:ab:5f:8b:a4:
d2:bb:39:ab:e9:71:ef:f0:87:fa:05:14:d7:49:f2:
ea:12:bb:ff:75:a1:c3:22:12:5c:7e:ae:7d:b3:57:
d7:f1:42:31:be:ec:1a:d9:5f:63:c4:fc:d3:ef:8a:
49:44:5f:49:b6:00:5d:fc:41:c9:52:53:e9:e1:31:
46:55:dd:06:3d:29:6d:91:96:0a:47:5d:23:5f:8f:
96:40:03:07:35:9d:e5:5c:df:a9:6a:76:03:37:ae:
f2:83:3a:b6:a3:7d:ab:7a:25:e4:21:80:6b:dd:2d:
c2:75:da:6e:f7:0e:50:e4:73:60:3d:ca:82:22:e4:
ec:ff:6f:71:2d:16:51:d1:4d:30:39:d0:5c:2f:0d:
73:8b:d0:e6:23:c6:a7:84:6d:bc:4e:1d:b9:88:a0:
6b:2e:57:00:01:0d:9f:fa:9c:eb:a7:8d:a6:2c:49:
bc:d3:5b:8b:77:5f:c3:10:be:b3:0d:15:26:4f:44:
f6:74:8e:7e:9f:a5:18:e2:09:b1:49:19:42:ad:5b:
1f:3c:06:5f:84:ab:29:c7:77:03:39:ee:21:7a:9f:
75:7f:71:48:eb:f6:4e:b1:a0:50:4e:fe:9c:49:2e:
45:81:44:f5:db:41:7b:c3:e6:57:10:03:98:df:3f:
46:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9D:5D:B8:CB:E3:57:F3:90:66:63:82:24:14:88:64:29:A1:72:B9
X509v3 Authority Key Identifier:
keyid:77:E3:C2:90:0B:59:97:54:28:3F:27:F3:B4:E8:D7:F6:C4:51:09:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-PCkAtZl1QoPyfztOjX9sRRCXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/Y51duMvjV_OQZmOCJBSIZCmhcrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ef2b49-035f-40a4-ae51-d3c55d4fda9d/1/d-PCkAtZl1QoPyfztOjX9sRRCXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.208.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c9:98:12:74:5d:d0:e3:2f:82:9c:8f:36:e8:66:9f:68:e7:
ac:a5:26:82:e5:f0:cf:81:49:97:99:08:4c:e0:26:47:4a:f1:
ac:87:29:1b:ec:b8:16:4e:d0:f1:03:23:98:f0:0c:0d:60:71:
76:21:0d:fa:ec:fe:18:87:d1:ed:81:1b:d2:df:71:31:9e:46:
46:6a:10:03:c7:6c:77:b1:c6:66:fa:b2:9a:89:a0:8b:79:0c:
bd:dd:17:d0:01:66:05:c9:88:27:cd:4c:d3:76:04:e9:d5:ba:
e4:8d:c9:b5:6f:80:67:22:d0:84:31:bc:db:4e:c5:84:1b:7b:
2c:14:45:0a:c7:1a:d8:cf:0c:f1:e0:20:bc:ac:78:c1:32:c6:
d6:72:c8:4c:db:ed:68:da:41:39:a0:ae:6b:ea:2c:28:7c:87:
69:ab:a8:9e:61:ef:b7:8d:a3:cc:fb:0f:f7:b7:72:45:47:65:
f7:ba:37:44:57:f4:67:c8:19:24:71:24:fb:3d:2a:79:de:39:
b2:75:65:54:e7:25:9c:2d:71:4b:24:be:5c:3d:5e:15:a9:5d:
df:40:23:e4:f0:bd:93:aa:dc:97:69:11:5a:0a:33:a0:84:a4:
b9:cd:e2:46:74:35:ca:f1:6a:bc:ec:13:a6:cb:43:a6:94:10:
2a:52:87:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:05 2025 by rpki-client on console.sobornost.net