Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/drdL02MmNzHMMHIF4yacPWU2kg0.roa
File: drdL02MmNzHMMHIF4yacPWU2kg0.roa (raw, json)
Hash identifier: KhAY+4DUpLSPm7dfV38gtwL9yM7jnqqyzPFAlnLXewY=
Subject key identifier: 76:B7:4B:D3:63:26:37:31:CC:30:72:05:E3:26:9C:3D:65:36:92:0D
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 01942369768D3AA03B53FB2B8115D19C6B68
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/drdL02MmNzHMMHIF4yacPWU2kg0.roa
Signing time: Wed 01 Jan 2025 19:48:21 +0000
ROA not before: Wed 01 Jan 2025 19:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197615
IP address blocks: 46.22.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:76:8d:3a:a0:3b:53:fb:2b:81:15:d1:9c:6b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 19:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76b74bd363263731cc307205e3269c3d6536920d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:bb:3d:33:7f:7e:b4:c7:07:78:43:e4:a3:
af:bc:4a:f9:14:b1:a9:65:07:ff:c3:72:81:65:11:
36:88:4b:9d:55:cf:9d:10:6d:83:c6:c8:ab:db:ac:
10:7a:b0:1a:06:72:a8:cb:fd:3a:0e:00:4a:4b:9e:
5b:c1:67:61:dd:c9:ad:34:40:5a:e1:76:6d:0a:d4:
be:79:a2:61:0d:03:88:45:49:09:97:20:55:7a:be:
77:06:e5:56:5c:c5:3e:0f:cc:01:b0:55:ea:2e:67:
cf:40:76:34:0f:eb:8d:4c:70:a1:28:9e:0a:a9:ef:
1d:76:f5:26:b8:87:42:54:10:b2:3c:b1:83:9c:ac:
d1:ef:7d:65:ce:71:22:4a:ec:33:45:a1:4a:89:12:
82:cf:db:4b:d8:b5:48:c6:8e:fd:f9:21:98:a3:40:
9e:c8:b0:38:f1:2e:7d:b1:f8:57:2f:4a:9b:60:96:
16:0f:89:2a:7a:44:2c:53:36:dd:c7:d7:63:e7:6f:
5a:16:f1:28:b3:d4:98:91:c4:86:3b:63:36:4e:89:
06:f6:56:c6:e3:06:78:36:08:fc:22:39:9d:62:b9:
f1:dd:a4:c6:cc:08:a4:af:98:ed:3d:29:14:0a:62:
5a:3d:b3:26:34:ac:c1:12:12:8e:27:5e:60:3d:51:
e1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B7:4B:D3:63:26:37:31:CC:30:72:05:E3:26:9C:3D:65:36:92:0D
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/drdL02MmNzHMMHIF4yacPWU2kg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.166.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6e:f7:af:fc:d8:7a:b2:ba:c8:c6:3d:55:58:04:87:bf:b0:
95:11:55:27:87:ef:92:96:ee:d4:e6:2a:1e:dc:05:2e:91:33:
f5:d2:b9:1e:85:1d:2f:54:c5:d5:5a:44:06:a4:46:89:6b:0b:
48:96:77:1e:a1:5c:83:e9:5e:45:ea:8c:4f:ba:62:49:1a:f1:
87:e5:f9:9b:f0:3b:46:7a:cd:b4:02:66:9b:ab:8c:df:30:eb:
04:aa:59:ee:10:26:eb:e1:78:18:97:5c:c0:1c:f3:e2:f1:38:
75:d8:3d:5c:1b:40:4c:ee:54:4a:45:1e:4f:c5:13:97:b7:2d:
b2:f0:51:b1:62:86:a6:24:3c:df:a9:7e:c1:58:cd:2f:62:70:
de:a4:fc:e1:71:d5:bb:94:d5:96:54:fc:3b:d2:38:73:cf:b6:
61:19:35:ca:43:dd:8a:86:b2:7c:9d:f1:e7:a7:fb:d4:a4:bb:
31:2d:d3:0a:bf:3a:bf:eb:bf:94:85:4d:6e:9f:bd:49:cd:db:
d9:5f:94:33:ee:70:95:00:a1:e0:76:08:4e:1d:3c:f9:82:99:
d2:98:34:7e:05:26:6c:24:cf:ff:62:01:58:be:bc:65:02:22:
a0:b4:3c:c4:be:63:48:f7:1e:91:d2:2e:8a:f0:63:ed:d1:17:
2a:1c:66:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:35:35 2025 by rpki-client