Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa
File: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (raw, json)
Hash identifier: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=
Subject key identifier: 43:00:7F:27:82:01:8E:BF:E4:C2:96:74:0D:26:6D:EE:32:F2:15:4C
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019425218AAE2437318D819F3295186CE2BF
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa
Signing time: Thu 02 Jan 2025 03:49:02 +0000
ROA not before: Thu 02 Jan 2025 03:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207821
IP address blocks: 46.252.2.0/24 maxlen: 24
46.252.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:8a:ae:24:37:31:8d:81:9f:32:95:18:6c:e2:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jan 2 03:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43007f2782018ebfe4c296740d266dee32f2154c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8b:f4:10:2b:ac:db:f1:7b:72:98:60:82:f5:
cb:5d:cc:1f:0e:ac:60:52:51:0d:44:c4:04:8b:90:
17:4e:3e:20:4f:f0:42:82:ba:2e:4e:7d:07:ef:f9:
ec:e5:48:f9:83:88:44:69:4d:37:b3:bd:c5:fd:f3:
46:ca:94:4a:34:78:e5:25:8a:93:96:4d:cc:16:9c:
56:08:c0:28:63:ac:86:f5:90:c5:0a:7e:a2:1c:b3:
7c:8f:9d:98:27:7f:88:6e:89:57:50:ac:7e:c9:86:
b9:26:1e:1e:be:d1:bb:14:e8:80:51:c8:71:bd:e1:
97:64:49:dc:50:51:2b:75:8a:41:11:9b:8e:0a:a4:
05:e4:cc:1e:f7:3d:b9:26:65:66:4b:3b:b4:ea:e7:
be:79:42:83:4d:5b:62:d1:53:df:48:e3:e8:63:7d:
57:f5:6e:b6:46:83:07:7b:ad:5a:b0:80:16:e5:eb:
39:cf:31:bd:20:86:b5:c6:44:a6:58:aa:ad:17:3d:
46:4f:16:1b:48:4f:b2:8a:67:10:6b:f2:24:13:5c:
a1:4a:38:3c:44:9f:3b:25:0d:a0:c4:b5:ff:ea:da:
af:51:52:a1:fe:81:20:08:f5:75:d2:c5:ec:61:8a:
e9:1c:51:3f:43:34:92:1b:06:7b:b9:64:19:f6:dd:
d6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:00:7F:27:82:01:8E:BF:E4:C2:96:74:0D:26:6D:EE:32:F2:15:4C
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.2.0/24
46.252.11.0/24
Signature Algorithm: sha256WithRSAEncryption
59:db:eb:f4:be:de:89:2a:74:a1:cd:a5:c6:e6:4d:27:e8:60:
2c:23:08:86:e4:08:ff:48:8d:07:85:d2:08:2d:50:10:ff:c9:
7e:76:8b:a7:8b:e2:2f:8b:7f:8a:58:25:05:ae:13:e4:52:28:
8f:00:89:de:8f:44:6c:ba:fa:38:b0:89:41:11:cb:ac:72:e8:
07:0a:13:94:88:b6:f1:1e:16:56:03:8a:4a:81:57:61:ec:00:
94:44:7d:b4:54:94:97:24:96:10:69:9c:a4:76:f2:68:c4:2e:
e2:8f:2c:e3:de:c2:0b:3f:3d:c8:44:b6:24:fa:b4:88:ff:7c:
68:c8:5d:74:1d:ac:36:e2:a0:e2:47:fc:88:31:32:9e:ca:6f:
d1:84:d6:bc:af:b6:10:84:a4:1a:d6:e9:b5:09:d0:49:7f:ea:
e7:cc:29:d7:cf:05:51:1e:cc:5d:35:48:d1:43:75:49:a8:8e:
38:47:c9:2f:10:15:83:e8:e9:fb:b7:dd:26:68:87:54:e2:c7:
eb:4b:93:1c:b5:ba:62:8a:f1:84:d4:a1:00:3d:7f:8c:94:97:
6b:15:aa:6a:34:a4:1e:23:47:08:be:ad:17:fe:ca:82:1d:42:
6b:81:1e:90:ac:20:f6:c7:e8:af:ea:9a:e4:5e:84:1f:e8:83:
b4:e0:a1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net