Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/gDiAmuSfPQTuxCRIvggtH8HdjXc.roa
File: gDiAmuSfPQTuxCRIvggtH8HdjXc.roa (raw, json)
Hash identifier: 23oEz6Z3K/nAXex5gW0969mF1LlqvR3gx9pD3B260wk=
Subject key identifier: 80:38:80:9A:E4:9F:3D:04:EE:C4:24:48:BE:08:2D:1F:C1:DD:8D:77
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0194244542ABE1198B1820DF22E8E3A63AE0
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/gDiAmuSfPQTuxCRIvggtH8HdjXc.roa
Signing time: Wed 01 Jan 2025 23:48:26 +0000
ROA not before: Wed 01 Jan 2025 23:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 46.34.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:42:ab:e1:19:8b:18:20:df:22:e8:e3:a6:3a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jan 1 23:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8038809ae49f3d04eec42448be082d1fc1dd8d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:e4:32:18:5f:59:b9:34:51:32:74:5b:10:
26:5d:85:c2:b3:e0:af:79:b2:81:dc:bb:09:0b:31:
c0:71:42:8a:c3:9b:9a:b0:75:81:f2:0c:61:c0:1a:
54:63:0f:ef:ed:77:00:07:98:30:b3:fd:36:8b:d1:
3b:c4:4f:69:4d:2d:f3:f8:ef:55:01:d7:11:07:a6:
ab:ba:52:f4:a1:78:07:f0:0e:53:35:a9:bb:4e:b5:
43:ba:77:c0:7e:7e:8a:7b:a9:ce:b2:d6:50:d4:d3:
98:2e:f9:98:f2:34:c7:4b:c1:83:0d:fa:e3:39:dd:
d8:2e:10:9a:a9:bb:74:ca:a9:75:1e:2f:34:1d:9f:
37:6d:c1:e4:d7:74:b3:0d:61:e4:cf:e6:db:7a:b8:
3e:7a:b5:30:64:48:ac:1f:dc:36:3b:c0:87:62:04:
3f:34:44:67:14:28:f2:41:9e:a8:b8:49:2c:8b:68:
e3:15:13:23:ce:2b:8e:df:f0:13:77:41:6e:1e:87:
58:2f:b0:c6:ab:2d:12:c1:51:3c:0a:9d:fc:75:eb:
8f:be:a7:f8:f6:0b:fd:e6:47:f1:3a:dc:ea:7d:4c:
86:aa:60:d8:a7:21:0d:86:d5:bb:3c:29:c7:6a:45:
f8:de:ee:2c:54:cb:12:61:3e:10:a8:e4:a9:a6:98:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:38:80:9A:E4:9F:3D:04:EE:C4:24:48:BE:08:2D:1F:C1:DD:8D:77
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/gDiAmuSfPQTuxCRIvggtH8HdjXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.62.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f1:dc:7d:bc:e8:07:a4:11:4e:1f:54:09:b0:52:2c:97:0a:
68:fc:3d:e3:c5:8c:87:d5:a1:2b:93:14:af:33:a5:ae:45:be:
9e:bf:fb:aa:54:1e:9c:6f:4f:c3:d4:66:5b:60:15:cf:e0:e4:
13:4e:fa:1b:33:50:0a:d0:7a:4d:92:46:11:7a:02:99:a7:96:
5b:c6:2c:43:ba:5b:06:77:08:a2:67:04:16:c8:d8:a9:8d:37:
a8:28:94:75:e0:dc:dc:db:1f:20:6b:d5:d9:30:f1:7f:72:e6:
43:86:c9:0b:db:3c:f0:0e:67:ab:d4:50:db:95:d8:d3:76:a0:
c4:24:aa:22:83:40:f7:9d:63:6b:9e:90:1b:4e:42:19:26:68:
dd:07:37:71:2b:98:ca:6c:b0:aa:15:df:a5:b3:dc:26:25:cc:
1e:c4:d6:89:d0:3f:a0:3e:94:c8:70:2c:6a:82:78:ca:f9:ab:
7f:b0:40:50:4b:17:64:67:e1:6a:0b:92:5f:e2:ec:a6:78:fb:
2c:61:b9:c2:14:33:58:a1:7f:b7:cd:eb:70:db:b2:60:b8:0c:
27:d7:af:e5:08:b2:9e:9e:6d:c2:57:43:a1:6b:a5:9f:9b:3f:
d9:5b:7e:73:6b:a8:21:98:e4:11:5e:e5:d9:47:49:b0:5a:13:
48:7f:36:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 22:16:30 2025 by rpki-client on console.sobornost.net