Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/h3E3zuaVe9Fd-K2eeSfreUoqzxE.roa
File: h3E3zuaVe9Fd-K2eeSfreUoqzxE.roa (raw, json)
Hash identifier: zkBB1N0MG6XqITCSMbDyxtWFtXhvrbfgV/J1jxkBcRM=
Subject key identifier: 87:71:37:CE:E6:95:7B:D1:5D:F8:AD:9E:79:27:EB:79:4A:2A:CF:11
Certificate issuer: /CN=c56d2154ed53b629d872b2a38d9cd041bdb4b128
Certificate serial: 019425214859D3340F944ADB6C1CE5F35792
Authority key identifier: C5:6D:21:54:ED:53:B6:29:D8:72:B2:A3:8D:9C:D0:41:BD:B4:B1:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xW0hVO1TtinYcrKjjZzQQb20sSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/h3E3zuaVe9Fd-K2eeSfreUoqzxE.roa
Signing time: Thu 02 Jan 2025 03:48:45 +0000
ROA not before: Thu 02 Jan 2025 03:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49798
IP address blocks: 46.228.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:48:59:d3:34:0f:94:4a:db:6c:1c:e5:f3:57:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c56d2154ed53b629d872b2a38d9cd041bdb4b128
Validity
Not Before: Jan 2 03:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=877137cee6957bd15df8ad9e7927eb794a2acf11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5d:1a:73:72:6a:44:b8:97:33:d5:3c:61:5f:
cd:d5:7f:1d:32:02:eb:79:a4:6b:60:5f:ff:61:74:
90:d4:99:b1:35:29:40:b2:09:45:09:bd:58:7e:7a:
69:aa:68:a2:15:67:22:e9:5b:28:78:5c:e0:ec:8c:
3e:4a:0d:db:6d:d2:8c:9e:17:c9:e5:d4:a6:12:ce:
d1:cd:ce:bd:0f:da:12:53:a9:8d:01:89:a6:b0:be:
18:32:93:96:65:38:96:43:fd:c3:fc:a9:19:d8:b5:
1b:d1:bb:52:bc:b2:0d:f6:18:ea:0c:a7:fc:ac:0c:
54:ba:19:28:7f:53:90:06:ae:f6:39:75:5e:10:1a:
54:0d:ea:10:64:a3:b4:52:25:bb:04:2a:5b:c8:7e:
21:3f:41:25:f2:5f:4c:62:1e:31:88:ab:cd:e1:d9:
2f:d8:ef:55:9d:fd:d6:3a:4c:8b:36:bf:ce:f9:6c:
29:1c:bf:f9:94:66:de:a9:58:72:5f:ed:5b:24:e3:
2c:5e:2f:67:be:30:e3:84:09:7a:82:52:f7:f2:37:
cc:a1:49:94:a5:ab:5b:8e:c1:94:46:bf:37:e7:48:
9e:76:04:85:92:d4:13:00:c1:82:ff:28:7a:75:0a:
8c:74:da:2b:b7:f4:76:14:8c:83:c6:b0:01:6b:74:
81:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:71:37:CE:E6:95:7B:D1:5D:F8:AD:9E:79:27:EB:79:4A:2A:CF:11
X509v3 Authority Key Identifier:
keyid:C5:6D:21:54:ED:53:B6:29:D8:72:B2:A3:8D:9C:D0:41:BD:B4:B1:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xW0hVO1TtinYcrKjjZzQQb20sSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/h3E3zuaVe9Fd-K2eeSfreUoqzxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/xW0hVO1TtinYcrKjjZzQQb20sSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.228.222.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d5:3c:1c:55:c0:01:f4:48:c3:a5:11:14:99:0c:3b:e0:3c:
66:d1:d4:4b:d9:e2:e1:78:f4:91:e9:37:84:2c:54:ec:ca:84:
ca:33:12:1f:1e:8b:39:86:d9:25:9e:1f:ad:d9:33:e9:32:f8:
71:81:d8:df:45:e9:d8:dd:08:ba:83:58:03:ff:e5:ce:76:c4:
96:bb:84:3e:24:68:ba:93:bd:97:3c:77:c5:6b:17:fa:61:5d:
d5:bc:eb:f9:29:bf:f1:c5:8c:0d:85:30:ec:96:00:03:b1:33:
34:3f:2a:21:09:fa:ed:5d:05:e7:ef:56:dc:51:99:e3:7b:f2:
40:52:df:fa:0b:bc:dc:7e:ce:9f:9f:81:65:43:b1:c5:be:c6:
bf:31:7c:27:d9:6c:a3:de:ff:fe:a4:39:3c:61:cc:64:00:ee:
74:49:ae:7a:5c:dc:fa:d3:51:2f:d2:6e:68:86:de:f3:bb:47:
a0:2e:fa:90:36:6d:75:3a:b3:6c:36:97:81:77:27:24:33:6c:
5b:b0:f4:9b:52:71:e5:92:2e:f2:e0:da:bc:78:a2:a7:92:82:
b0:d6:77:68:93:13:ed:1d:cb:df:ad:d3:0f:45:bc:48:f3:84:
46:80:f4:b5:9e:11:35:ec:62:d4:fa:87:ca:c3:8c:8f:ec:66:
5b:bf:4e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net