Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/SgPyWwZqgDNPA8owk5q0U1El74Y.roa
File: SgPyWwZqgDNPA8owk5q0U1El74Y.roa (raw, json)
Hash identifier: 2WD/wZDaJwBT3f8KDVnzNeXbI0E4vbABGDS2AFap2t4=
Subject key identifier: 4A:03:F2:5B:06:6A:80:33:4F:03:CA:30:93:9A:B4:53:51:25:EF:86
Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial: 01945262C284D9F79F88986B157C653DE0BF
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/SgPyWwZqgDNPA8owk5q0U1El74Y.roa
Signing time: Fri 10 Jan 2025 22:43:11 +0000
ROA not before: Fri 10 Jan 2025 22:43:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197450
IP address blocks: 46.36.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:52:62:c2:84:d9:f7:9f:88:98:6b:15:7c:65:3d:e0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Validity
Not Before: Jan 10 22:43:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a03f25b066a80334f03ca30939ab4535125ef86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:74:a4:de:af:b5:c6:54:a3:0b:46:bb:f8:15:
87:66:f2:4a:1f:3a:51:3e:bd:2c:fa:43:54:d0:2a:
67:15:7f:38:d1:f3:a6:ec:39:47:c3:9b:82:4b:cd:
af:70:ce:87:5e:66:a5:83:d2:16:5f:0c:e9:2b:eb:
08:47:02:1c:99:56:b8:08:1e:93:91:19:ed:e9:a3:
74:04:15:96:06:97:30:87:e5:10:9b:8e:df:0a:6f:
bb:89:31:4c:37:f4:3b:e8:92:54:c2:9d:bf:03:bb:
36:cb:b4:aa:08:fe:e9:e9:e4:28:92:f6:8a:58:6c:
b9:0f:1d:0c:ba:52:b8:71:86:81:b2:1f:ea:d6:64:
bd:cf:a7:60:8b:bf:a5:68:ac:ab:f9:fb:e7:40:24:
bc:a0:fa:f8:71:37:7b:d6:e8:07:32:c7:e7:f8:e4:
be:c4:41:2c:8a:e0:37:0c:d5:ea:58:cb:cf:9e:b2:
10:d3:c5:78:bf:1b:48:d1:4a:45:ab:3b:1e:7c:fe:
ca:cd:8b:21:b3:c7:eb:36:97:d6:d9:25:58:ff:45:
2c:88:dd:d3:a7:64:67:04:c8:7f:3b:32:9c:96:90:
bf:12:53:f0:54:5f:f3:ec:a5:75:ee:c0:54:15:16:
dc:13:f7:7c:8f:6a:0e:87:e1:c6:01:2d:fc:03:37:
c4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:03:F2:5B:06:6A:80:33:4F:03:CA:30:93:9A:B4:53:51:25:EF:86
X509v3 Authority Key Identifier:
keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/SgPyWwZqgDNPA8owk5q0U1El74Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.200.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:28:82:fb:c1:76:91:fb:5e:6f:be:ba:0d:5a:af:0a:02:62:
58:53:c9:27:8e:f2:c8:f7:15:60:ec:c6:6e:bc:86:68:cc:78:
f1:d8:a8:23:f4:a7:86:1b:6d:3d:ef:0a:d9:9c:cd:44:b8:b7:
70:03:bd:d7:7c:e4:37:84:06:46:67:ba:4c:61:09:2e:b7:82:
d2:8f:4a:4c:c2:6a:47:3d:cf:5f:43:05:95:5e:02:3e:f8:7f:
5e:ed:15:c7:24:47:cf:f0:63:ba:d2:5c:2c:b0:be:81:85:f8:
6e:03:ff:b8:b8:92:34:2c:b8:fa:fa:f8:fb:83:c8:8b:cc:8b:
74:b3:df:1a:2c:41:92:f9:3a:c4:06:8d:17:70:66:ff:22:d0:
64:fe:8b:21:14:60:ed:f9:af:9e:8a:e3:5f:f0:ec:37:24:2d:
41:fe:0f:8f:c4:43:92:39:5d:d7:a7:7b:8f:0d:a8:d5:60:c3:
51:6c:70:b5:72:75:42:d8:eb:5a:3c:3a:b7:06:aa:79:04:4d:
ce:99:7b:ff:42:08:9f:ed:2d:68:a4:0f:1f:2c:fa:54:0c:db:
71:91:83:c0:36:10:15:ac:7e:eb:66:1d:64:30:8c:e8:df:8e:
d0:2c:8b:dd:16:6e:32:9f:be:1a:f7:ab:d3:1c:55:e7:18:43:
ef:0a:1a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:36:30 2025 by rpki-client