Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/U-OiEmWZ9z8miHqEHXBmrT4jsTo.roa
File: U-OiEmWZ9z8miHqEHXBmrT4jsTo.roa (raw, json)
Hash identifier: E2j4LTMV4mu+oyeqsc6rjCTcYovffcIk1UyHRE3SFKA=
Subject key identifier: 53:E3:A2:12:65:99:F7:3F:26:88:7A:84:1D:70:66:AD:3E:23:B1:3A
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 019428282D3A73D7AB60F0F162D3F97F63E0
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/U-OiEmWZ9z8miHqEHXBmrT4jsTo.roa
Signing time: Thu 02 Jan 2025 17:55:09 +0000
ROA not before: Thu 02 Jan 2025 17:55:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203723
IP address blocks: 212.36.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:2d:3a:73:d7:ab:60:f0:f1:62:d3:f9:7f:63:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53e3a2126599f73f26887a841d7066ad3e23b13a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:03:76:d2:0b:15:b9:d1:49:c4:df:d6:fc:fe:
20:5a:41:6e:49:7e:b5:dc:b3:d5:b5:16:1e:7e:66:
d7:35:b3:1f:c6:c9:ba:d2:af:98:09:03:71:e6:78:
56:ac:91:fb:e3:9d:35:a1:14:65:82:6e:26:53:be:
a3:73:ad:0b:95:f7:96:b0:cc:71:6e:d1:95:b4:38:
51:84:54:d2:91:dc:5c:1e:4e:ab:ce:3d:5c:74:f4:
4b:9f:65:56:da:51:ec:21:9f:4f:b8:25:1e:f7:ec:
bc:c5:c1:a5:1f:b6:21:29:96:40:89:a4:ec:cd:37:
ad:e6:c4:cb:85:d9:39:36:dc:fe:60:f4:77:51:04:
39:9d:bd:d6:eb:72:0b:d5:34:f9:43:25:fd:d2:85:
c8:d8:f0:55:65:ba:73:4f:93:59:d0:d6:69:9a:6e:
ef:50:29:9f:33:c9:bf:b7:c5:39:5d:7c:f0:b2:d2:
cd:a8:6c:7e:41:69:d9:e0:02:0d:09:ab:ee:c8:84:
61:d0:81:6c:d9:5d:fc:39:18:65:8b:5a:97:95:bb:
6d:9b:03:99:f5:bb:4f:9b:3b:ac:97:01:a9:fb:fa:
26:6a:99:1c:93:81:6d:e1:b5:87:4e:5d:fb:d4:71:
0a:55:07:77:32:e5:b3:a8:51:d7:54:d8:85:10:ca:
6e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E3:A2:12:65:99:F7:3F:26:88:7A:84:1D:70:66:AD:3E:23:B1:3A
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/U-OiEmWZ9z8miHqEHXBmrT4jsTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.36.18.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:6f:ef:f1:85:64:f3:44:bc:21:c0:a9:fd:62:bc:8d:f1:c6:
9b:95:e4:e9:0a:3c:94:45:95:f8:14:f2:7c:3e:80:30:3c:42:
6a:b7:a2:47:06:1c:56:25:77:4d:97:08:b1:c2:84:a2:9c:5f:
92:43:94:67:5b:6b:df:75:21:01:10:de:c1:57:2b:fa:94:67:
d4:6c:5c:2a:85:76:4e:2f:27:81:b9:90:3b:a2:1b:56:b2:09:
3c:7c:0a:46:a8:0f:a4:a2:f8:ee:d6:06:0e:79:20:4c:f1:9f:
ef:de:8a:d7:5a:2f:3e:f5:c8:46:99:f4:e9:69:f6:a1:95:b0:
dc:d1:82:35:7c:af:91:b5:73:01:85:07:c8:aa:98:a7:65:fb:
2f:72:24:b7:ba:ad:34:6f:ab:fc:25:6b:39:09:43:53:5f:0c:
b8:8d:ea:39:a4:9d:ab:4b:a3:17:72:1f:cf:0c:0b:5b:13:f3:
b7:14:d3:05:9b:b6:47:1a:a9:d3:b7:57:6c:16:ed:d1:84:0b:
d0:f1:f1:04:42:7e:e0:72:65:ee:43:41:57:8c:97:c0:05:72:
72:a3:94:e6:66:41:a1:84:94:b4:a5:80:b3:64:d5:ed:3c:5f:
53:4f:dd:0e:51:36:e6:e9:dc:76:64:f5:52:0f:b8:eb:f3:25:
97:89:cf:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:33:48 2025 by rpki-client