Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/iVIbS2LxmtBFtz1_IM2nGzPQpUE.roa
File: iVIbS2LxmtBFtz1_IM2nGzPQpUE.roa (raw, json)
Hash identifier: tzf09d7UopXNcvR8NL3fhh4Pys9GVj3aQxT6Ly8ih98=
Subject key identifier: 89:52:1B:4B:62:F1:9A:D0:45:B7:3D:7F:20:CD:A7:1B:33:D0:A5:41
Certificate issuer: /CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Certificate serial: 0194228D6A7722A507B33376A95A57B31174
Authority key identifier: 8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/iVIbS2LxmtBFtz1_IM2nGzPQpUE.roa
Signing time: Wed 01 Jan 2025 15:48:00 +0000
ROA not before: Wed 01 Jan 2025 15:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209386
IP address blocks: 46.231.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:6a:77:22:a5:07:b3:33:76:a9:5a:57:b3:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Validity
Not Before: Jan 1 15:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89521b4b62f19ad045b73d7f20cda71b33d0a541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:df:9f:b1:16:a4:8b:a5:15:b1:cf:59:42:89:
84:1b:02:e4:27:5a:bc:8c:13:6e:40:65:39:41:ea:
59:5c:a9:24:8c:32:55:f8:3d:83:c7:34:da:fc:69:
0d:b6:b8:2d:7b:fa:7e:d3:79:b9:03:a4:d5:c7:58:
56:d9:f7:ef:72:57:02:db:67:69:25:fc:f8:f2:3c:
a4:54:a3:c9:a8:cd:42:e4:b5:54:c1:57:de:1a:61:
24:5b:de:89:ea:72:2c:d7:e0:27:85:cd:d3:7b:1a:
ad:db:59:c4:d1:19:05:3d:0f:c6:7e:1e:8c:59:fd:
3e:c8:dd:98:5b:fb:59:a1:dc:c6:f0:c9:58:13:9c:
43:39:c5:0a:89:c3:9b:0e:f1:cf:a0:a3:fd:ff:8e:
92:95:bd:9e:d9:43:0c:a3:40:42:d1:8c:ab:6d:a4:
0a:0a:6d:c2:18:3e:02:c8:68:c0:ee:26:a5:ef:bc:
be:ce:8b:b6:ab:3b:42:af:9d:42:04:01:e8:c0:0d:
dc:d5:03:d9:fb:67:24:17:67:bc:7d:e9:1b:ec:1e:
ed:3a:11:05:22:85:62:2f:35:93:df:f4:f4:64:f1:
7a:b4:7c:fe:5d:29:85:76:04:7f:b2:21:f5:93:c7:
12:3a:63:bf:ed:5b:49:12:7d:77:b8:99:aa:ff:41:
da:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:52:1B:4B:62:F1:9A:D0:45:B7:3D:7F:20:CD:A7:1B:33:D0:A5:41
X509v3 Authority Key Identifier:
keyid:8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/iVIbS2LxmtBFtz1_IM2nGzPQpUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/jjUN1thC69Td0IytQdj_gWv9__g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.52.0/22
Signature Algorithm: sha256WithRSAEncryption
80:4e:de:9d:52:0e:51:03:dc:ef:33:d8:62:cd:07:af:db:b3:
d8:e0:96:96:e1:de:66:ce:e6:7e:28:5c:cc:0b:05:a9:04:67:
e2:5d:7f:71:7c:a2:ee:63:c4:fa:bf:c9:d0:c3:3f:9f:a0:b0:
15:b8:6e:ab:f5:df:98:d4:4a:4e:7d:46:db:dc:9a:18:37:29:
f9:3b:fb:79:88:ce:e3:97:f6:fc:b1:5a:f2:fc:64:fc:f6:ef:
64:e3:dc:98:0c:cc:d7:f0:8a:34:37:db:87:b8:28:2d:a3:56:
b9:51:cc:1a:bd:af:d3:5b:d2:6c:12:79:c7:cc:f0:c4:a2:0b:
f1:b6:44:c2:ea:17:07:85:7a:e4:a8:5b:e1:34:e6:64:7f:50:
ef:ca:29:69:03:3c:73:a8:b0:dd:c4:92:eb:29:4e:10:c7:d4:
0a:db:f1:ef:c4:7a:04:ad:37:af:0c:62:fa:b0:24:cc:20:a3:
65:cd:8d:22:14:5a:61:59:db:e9:6b:7d:00:f8:f7:77:d8:8a:
d7:bc:b0:e6:94:7b:4d:c2:ab:43:c9:64:c3:85:ca:99:34:45:
6e:c5:a7:dd:59:00:84:c8:34:c5:fa:44:72:b7:04:67:72:96:
71:97:f1:54:90:e1:23:f4:e2:d5:03:04:c2:91:1f:8f:c3:9e:
04:99:f2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:35:53 2025 by rpki-client