Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/T2xZGAQ2utapiNKAxRkC6LvmPaU.roa
File: T2xZGAQ2utapiNKAxRkC6LvmPaU.roa (raw, json)
Hash identifier: wOG+SGzxtaS4DLVV01zxTU+InL0GZso9vp2F1RAwi2M=
Subject key identifier: 4F:6C:59:18:04:36:BA:D6:A9:88:D2:80:C5:19:02:E8:BB:E6:3D:A5
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 0194258F33AACBBC99081E51B15E67E33689
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/T2xZGAQ2utapiNKAxRkC6LvmPaU.roa
Signing time: Thu 02 Jan 2025 05:48:49 +0000
ROA not before: Thu 02 Jan 2025 05:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207319
IP address blocks: 46.19.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:33:aa:cb:bc:99:08:1e:51:b1:5e:67:e3:36:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Jan 2 05:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4f6c59180436bad6a988d280c51902e8bbe63da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6d:3f:2e:84:1a:77:3c:34:f0:79:06:3c:16:
6f:51:b1:b5:82:b3:f6:ee:8e:70:12:e5:d5:d7:5f:
5f:4a:11:90:cf:09:80:cc:0e:a1:a8:43:29:cc:c0:
15:8a:dd:14:f5:05:60:e8:f0:a1:23:9a:ff:5d:ae:
97:11:fe:84:0b:4e:97:b2:33:1f:23:fd:87:44:07:
0f:5d:4e:ef:fd:f1:dc:26:26:65:c4:2f:a0:ef:26:
d5:db:1b:fa:e6:6e:a1:fc:ce:24:fc:3d:99:1a:a4:
32:be:92:cd:5b:28:de:a3:a8:90:95:5c:13:f1:12:
c3:3f:2b:c2:9b:13:bd:c3:ff:d3:10:b3:8b:87:3c:
1a:43:b4:5e:f1:8a:35:48:c7:d0:3c:e0:b5:e5:53:
c3:66:93:e9:68:6f:21:41:96:fb:55:3e:40:d8:b4:
f8:2f:ff:1a:3e:97:7e:fe:6e:3f:f7:8c:ac:4f:3a:
90:ab:e3:22:e1:1f:e4:0d:8d:a6:78:ee:2e:1e:2c:
ed:4b:c3:24:44:27:6c:50:f1:a1:ae:81:cb:44:35:
bf:ea:66:39:08:b4:2d:32:6c:9e:9e:96:f1:06:54:
fa:fa:7f:1b:fe:c0:04:50:59:c5:6b:6a:9c:df:38:
b9:a8:46:8b:f1:ea:f5:ce:8a:24:65:d5:d0:a3:37:
24:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6C:59:18:04:36:BA:D6:A9:88:D2:80:C5:19:02:E8:BB:E6:3D:A5
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/T2xZGAQ2utapiNKAxRkC6LvmPaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:91:01:8b:36:60:55:83:17:a7:d5:77:97:0c:63:9e:85:ed:
9a:b1:32:e9:88:b0:d9:2c:b2:3f:72:24:8a:2a:44:a6:ce:ad:
3e:1b:ee:40:3c:05:76:13:45:d3:17:b0:3b:30:d2:2d:c9:ef:
fa:a9:a1:91:28:12:12:e5:79:88:0a:9e:14:b6:32:65:9f:c7:
d8:b3:82:46:7b:43:59:9d:06:45:e4:1d:32:9c:61:e7:1d:4f:
c0:f8:39:64:8f:2f:bf:cd:99:61:cb:72:be:c3:57:9f:c3:aa:
b7:01:d4:9d:6b:83:ba:cb:1a:72:6a:dd:25:92:7d:8a:a3:76:
b5:06:a2:60:54:fd:9c:96:aa:bc:fc:40:79:68:db:40:85:bc:
73:58:16:a8:fe:05:c4:54:ba:9c:49:7f:e8:c7:6e:ca:36:5a:
1f:f0:62:11:f9:8e:04:11:30:7d:b3:c1:ec:54:23:3b:58:a1:
5b:c1:30:b3:1b:46:1d:85:32:cc:47:f0:20:aa:3d:eb:96:80:
74:2c:88:dc:6f:89:1e:5b:8e:4c:d8:1f:00:c5:e0:f9:c5:42:
75:75:cd:cb:91:30:b8:59:0b:85:ab:4a:a3:c1:24:7c:8e:87:
f5:53:1e:a9:38:3c:bc:0a:86:be:16:87:c6:b1:11:ca:21:32:
99:e7:38:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net