Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/wd0T2jlDARdpvazu9WfBcqzqFRI.roa
File: wd0T2jlDARdpvazu9WfBcqzqFRI.roa (raw, json)
Hash identifier: uy8OHigRvAXPuAD5Z6pOXMag0Udux534TcZIu/uohEw=
Subject key identifier: C1:DD:13:DA:39:43:01:17:69:BD:AC:EE:F5:67:C1:72:AC:EA:15:12
Certificate issuer: /CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Certificate serial: 0194274880E8047E42A3E935FF165B7A7173
Authority key identifier: AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/wd0T2jlDARdpvazu9WfBcqzqFRI.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205724
IP address blocks: 46.227.174.0/24 maxlen: 24
2a02:7a00:8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:80:e8:04:7e:42:a3:e9:35:ff:16:5b:7a:71:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1dd13da3943011769bdaceef567c172acea1512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:41:09:b7:f8:fb:73:f9:7a:5c:8d:9e:f7:93:
22:1c:03:85:11:35:2b:24:8c:d9:d0:23:62:28:45:
91:07:41:38:09:f7:ae:9e:7a:03:34:0f:6c:93:21:
64:59:67:09:5f:46:c7:2a:2a:2f:13:a9:91:8c:eb:
1b:68:40:c4:76:4d:21:42:c8:0b:5e:8b:3c:3e:83:
3f:9c:49:c8:6e:1a:ac:5b:8f:f9:f8:09:03:67:0e:
26:5e:3e:e2:db:b1:83:2e:7d:5c:99:74:c1:f5:3a:
4d:f5:e9:24:70:d9:0f:73:31:f8:ba:14:18:d2:a1:
8e:13:82:c1:a5:2f:d7:15:8e:72:d6:81:60:be:dd:
60:7a:84:fc:dd:75:45:64:29:18:9a:b0:b1:bc:d4:
15:5b:be:7e:19:34:37:f9:1b:9a:b2:dc:5f:6b:04:
47:8c:c5:95:7f:6f:10:b6:0e:d4:63:f0:c5:c7:1a:
f4:11:0c:a4:5f:70:d5:0a:8c:44:98:c4:80:aa:0f:
07:e3:94:cc:7d:b9:d4:f8:0c:69:e0:16:be:2d:10:
f3:1a:69:36:06:22:7d:19:08:99:c0:4c:e8:01:c4:
d5:41:77:2e:56:a3:16:0f:1a:a1:b4:5f:af:55:06:
03:b0:ad:80:7a:c5:68:bb:d6:38:40:2b:4a:ed:92:
ff:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DD:13:DA:39:43:01:17:69:BD:AC:EE:F5:67:C1:72:AC:EA:15:12
X509v3 Authority Key Identifier:
keyid:AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/wd0T2jlDARdpvazu9WfBcqzqFRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.174.0/24
IPv6:
2a02:7a00:8::/48
Signature Algorithm: sha256WithRSAEncryption
0a:23:01:b0:a8:be:76:c6:c2:b3:fb:96:9c:1d:53:fc:54:1b:
61:23:c5:5d:52:75:e1:ee:62:25:5f:f4:57:48:41:c2:9b:c7:
51:72:72:09:41:4b:e9:f8:38:56:37:6c:53:fb:97:70:c9:99:
e5:15:d8:ba:5c:fe:a9:1e:58:bc:8f:f2:8a:b5:26:f1:f5:28:
90:a0:44:22:00:71:96:bf:83:41:8b:45:87:64:44:51:3d:db:
d5:68:2d:34:9a:bf:1e:fb:1c:18:68:30:c3:f7:e5:a8:d7:a0:
26:1a:e4:c0:88:24:76:8c:ba:ee:43:83:39:4f:47:6b:70:fb:
67:2c:ac:1c:4a:5e:22:44:5a:fb:56:0c:36:67:5d:04:0a:ea:
11:51:fe:a2:d7:3b:14:3a:e9:ed:f2:4e:a1:c8:d6:20:76:12:
e0:9b:d6:f9:38:7a:89:86:9a:9d:9f:c7:58:fe:d8:24:1e:79:
e2:fb:1b:00:50:88:1a:53:5c:63:16:06:37:22:e6:e6:cd:1e:
e7:54:66:69:b8:69:af:24:cf:b0:21:68:2d:bb:9d:40:2a:df:
00:a5:d4:f9:5c:81:f0:bb:5d:00:ff:83:d1:a3:84:44:f4:8a:
05:be:c5:6b:4c:71:60:0a:00:be:40:05:3e:30:3c:99:68:fe:
9e:85:6a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net