Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/hkegV0Kum1mAJu57n_JJFyiZJEM.roa
File: hkegV0Kum1mAJu57n_JJFyiZJEM.roa (raw, json)
Hash identifier: EH4uxoMzl9kvWoGvYMp3e5yjenoltn5iU6mQWKeFhwA=
Subject key identifier: 86:47:A0:57:42:AE:9B:59:80:26:EE:7B:9F:F2:49:17:28:99:24:43
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 018D6B3F234FAB3EB00F93926D65DD754970
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/hkegV0Kum1mAJu57n_JJFyiZJEM.roa
Signing time: Fri 02 Feb 2024 19:15:16 +0000
ROA not before: Fri 02 Feb 2024 19:15:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52103
IP address blocks: 46.174.64.0/22 maxlen: 22
46.174.68.0/24 maxlen: 24
46.174.69.0/24 maxlen: 24
46.174.70.0/24 maxlen: 24
46.174.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:3f:23:4f:ab:3e:b0:0f:93:92:6d:65:dd:75:49:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Feb 2 19:15:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8647a05742ae9b598026ee7b9ff2491728992443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6a:47:f2:00:8c:d0:94:d3:7b:61:b2:42:9f:
06:f3:63:17:de:8a:a2:47:45:71:24:86:da:b9:ee:
e8:fe:c2:5d:fc:79:3e:74:aa:59:cb:03:a5:8e:3c:
57:e2:8e:5a:3f:13:a0:fc:5d:3d:26:c8:96:ba:18:
1f:d8:b7:f8:75:e8:4f:87:ce:a1:77:2d:3d:d9:6f:
81:cb:89:aa:71:c2:8b:bb:5d:98:f4:54:7a:8d:3f:
93:a1:70:59:1f:db:2d:92:2f:a8:80:fa:ef:6c:00:
a7:a4:ee:59:d9:bd:01:53:8b:50:14:44:ac:49:3f:
9d:80:91:55:2e:ed:81:d5:77:5c:fa:9d:ef:19:f5:
e2:a8:ab:fc:38:54:8f:61:24:4f:bf:f5:a3:d7:1c:
20:8f:8c:f4:67:a7:2e:99:28:22:cf:85:ba:05:c5:
cd:8e:4f:02:b0:94:b9:fc:53:16:b9:65:f6:35:20:
bf:2a:24:ef:e0:7b:90:0f:9a:fc:fb:71:8e:50:a3:
62:30:9a:58:eb:a9:0e:0d:da:45:9a:58:aa:b4:46:
e0:53:e7:75:85:0c:7e:45:d7:68:77:da:16:53:13:
a1:cd:90:7c:d7:4b:17:e6:7a:d9:0b:a1:97:a8:20:
eb:f0:da:dc:c5:ee:11:ae:10:9e:e1:36:62:7e:68:
67:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:47:A0:57:42:AE:9B:59:80:26:EE:7B:9F:F2:49:17:28:99:24:43
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/hkegV0Kum1mAJu57n_JJFyiZJEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.64.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:81:30:b6:6f:e0:26:2e:0f:e8:a5:33:02:86:b3:14:cd:e6:
7e:38:af:e1:9a:fa:7e:43:27:ca:b5:48:40:00:bb:c7:4c:00:
01:da:b1:59:36:79:82:13:68:89:1a:2f:b8:6c:18:9c:dd:1b:
d4:70:ad:c0:aa:03:94:5b:1e:24:40:f4:4a:70:a0:3a:c1:9f:
b5:6f:b6:5a:8d:90:2f:c9:91:d1:5a:00:33:29:e3:e2:ef:bc:
47:00:b1:2c:e8:3c:dd:06:b1:36:b9:5d:bb:0c:a5:19:00:c4:
cf:ec:3d:0a:bc:28:9b:fe:ec:f7:d6:44:df:41:92:c1:2d:a9:
c9:30:ae:75:a1:82:f4:e4:fa:61:9f:8d:6b:1c:3b:9b:13:12:
95:81:ac:ca:fe:c5:8a:ac:5c:0d:29:64:ce:ea:31:e5:26:35:
bc:ec:d0:a8:d2:27:50:8b:68:81:7d:9d:51:4c:71:18:91:79:
85:04:4a:78:39:28:37:5a:74:25:f0:b7:84:d6:bc:e8:49:b8:
62:c6:fa:2b:6a:47:92:cf:a4:e9:64:a5:62:be:b0:8d:a4:64:
b2:8b:43:f5:06:63:fc:5d:9c:ec:d0:5f:f2:a9:2c:01:0c:f7:
42:d0:cd:fe:b3:6a:4d:24:4d:a6:e1:4c:eb:68:f0:f6:bc:1c:
58:e4:04:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1rPyNPqz6wD5OSbWXddUlwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3
YWQwZTEwHhcNMjQwMjAyMTkxNTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjQ3YTA1NzQyYWU5YjU5ODAyNmVlN2I5ZmYyNDkxNzI4OTkyNDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimpH8gCM0JTTe2GyQp8G82MX3oqi
R0VxJIbaue7o/sJd/Hk+dKpZywOljjxX4o5aPxOg/F09JsiWuhgf2Lf4dehPh86h
dy092W+By4mqccKLu12Y9FR6jT+ToXBZH9stki+ogPrvbACnpO5Z2b0BU4tQFESs
ST+dgJFVLu2B1Xdc+p3vGfXiqKv8OFSPYSRPv/Wj1xwgj4z0Z6cumSgiz4W6BcXN
jk8CsJS5/FMWuWX2NSC/KiTv4HuQD5r8+3GOUKNiMJpY66kODdpFmliqtEbgU+d1
hQx+Rddod9oWUxOhzZB810sX5nrZC6GXqCDr8Nrcxe4RrhCe4TZifmhnxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIZHoFdCrptZgCbue5/ySRcomSRDMB8GA1UdIwQY
MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt
ZDY5YzAxMzRmNWE4LzEvaGtlZ1YwS3VtMW1BSnU1N25fSkpGeWlaSkVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4
LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLq5AMA0G
CSqGSIb3DQEBCwUAA4IBAQClgTC2b+AmLg/opTMChrMUzeZ+OK/hmvp+QyfKtUhA
ALvHTAAB2rFZNnmCE2iJGi+4bBic3RvUcK3AqgOUWx4kQPRKcKA6wZ+1b7ZajZAv
yZHRWgAzKePi77xHALEs6DzdBrE2uV27DKUZAMTP7D0KvCib/uz31kTfQZLBLanJ
MK51oYL05Pphn41rHDubExKVgazK/sWKrFwNKWTO6jHlJjW87NCo0idQi2iBfZ1R
THEYkXmFBEp4OSg3WnQl8LeE1rzoSbhixvorakeSz6TpZKVivrCNpGSyi0P1BmP8
XZzs0F/yqSwBDPdC0M3+s2pNJE2m4UzraPD2vBxY5ATj
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:07 2024 by rpki-client on console.sobornost.net