Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/2KIRExbLtGmhtukhHSshDYZqZYU.roa
File: 2KIRExbLtGmhtukhHSshDYZqZYU.roa (raw, json)
Hash identifier: e/XJlDAv9fIgfof/gpzNCtKITxsPIC/gKrF0rJCVeE8=
Subject key identifier: D8:A2:11:13:16:CB:B4:69:A1:B6:E9:21:1D:2B:21:0D:86:6A:65:85
Certificate issuer: /CN=6d7701d5850491f50299ef93f2d7409b78cd6c96
Certificate serial: 0194236A1FDB1F0F381C1324589BED7A26CC
Authority key identifier: 6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/2KIRExbLtGmhtukhHSshDYZqZYU.roa
Signing time: Wed 01 Jan 2025 19:49:04 +0000
ROA not before: Wed 01 Jan 2025 19:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59643
IP address blocks: 46.175.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:1f:db:1f:0f:38:1c:13:24:58:9b:ed:7a:26:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d7701d5850491f50299ef93f2d7409b78cd6c96
Validity
Not Before: Jan 1 19:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8a2111316cbb469a1b6e9211d2b210d866a6585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:bb:3d:dc:fd:a8:c0:c4:50:a1:6b:57:ea:
98:c3:1c:57:d2:2b:46:52:58:8c:a2:08:df:97:5b:
82:9a:06:8f:f4:fe:f5:07:6e:cf:8b:92:55:75:c4:
57:ef:2d:6c:8d:7a:09:1a:a2:b0:79:2c:ca:ca:51:
56:cf:43:cd:f8:07:2d:d3:92:ef:4e:c7:69:33:1b:
ff:50:83:59:12:3b:33:0b:53:1d:e0:28:b3:73:58:
19:5c:1d:b2:11:69:3a:11:10:3e:7a:50:ea:95:bb:
2a:35:64:8b:5f:54:08:77:fa:a5:a6:9d:1d:22:6c:
02:19:6c:2f:02:eb:d6:8b:59:73:f4:d1:ea:d9:38:
47:29:d1:19:42:7c:3f:82:28:96:a1:6b:49:72:57:
62:f5:f5:9c:1b:da:92:0d:ca:15:9a:60:34:53:18:
c6:d2:7f:a0:4e:65:0e:29:f5:c7:c5:7d:2d:d5:33:
85:13:49:73:0f:e9:11:1d:32:f0:8c:de:90:f2:b3:
5c:8d:e4:8c:d9:67:58:21:35:d8:64:1e:72:00:6e:
c8:aa:da:cd:a0:f6:1e:6a:6d:bb:dd:d7:a8:e2:d2:
0e:55:48:0d:4e:89:7a:05:50:09:b4:04:f5:a6:ea:
88:23:90:ef:6e:fa:d8:d8:78:64:40:21:ec:29:48:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A2:11:13:16:CB:B4:69:A1:B6:E9:21:1D:2B:21:0D:86:6A:65:85
X509v3 Authority Key Identifier:
keyid:6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/2KIRExbLtGmhtukhHSshDYZqZYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/bXcB1YUEkfUCme-T8tdAm3jNbJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.13.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b4:81:ce:3b:1b:fd:e1:95:d7:37:79:d8:5c:28:4e:28:2e:
c6:74:54:a0:3b:dd:3f:41:87:8e:08:4b:86:0c:8b:d2:e6:61:
0e:ee:aa:ae:a9:24:b4:ba:bc:1b:a4:f5:b2:65:ec:9c:a4:86:
35:9e:84:2f:5c:e1:53:ba:94:a4:de:a0:ca:6d:4d:77:b6:4c:
e7:78:8b:f6:13:28:ea:f9:55:ff:ef:fd:fc:b9:4d:bc:cf:0c:
27:36:3c:1a:56:3a:55:8c:ab:9e:e9:53:65:3a:b3:72:80:e5:
51:3c:6f:40:59:34:53:33:e7:d7:3a:0b:2a:34:ea:79:55:93:
7e:f9:8b:b8:ab:a2:af:4e:73:a2:6f:df:ec:0e:7c:47:98:6e:
f1:08:88:85:68:fa:31:6b:38:dd:92:e5:a3:35:15:02:d5:30:
22:6f:20:c6:f2:d2:a0:c8:54:39:07:21:39:cf:27:75:69:6d:
f6:6d:dc:9f:2a:f9:9a:dc:a4:0f:99:27:09:24:8a:9a:ef:82:
f6:48:0f:4e:10:47:95:d9:07:51:73:73:39:87:ac:31:95:36:
23:ca:55:b8:10:f5:dc:de:d8:64:2c:10:2c:35:21:c3:09:27:
74:f6:16:9f:f6:80:40:84:f3:b5:19:79:64:0c:73:44:17:49:
d0:99:2d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net