Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/UZksQP3Q62oe9gBeBZkO5tKKkEA.roa
File: UZksQP3Q62oe9gBeBZkO5tKKkEA.roa (raw, json)
Hash identifier: Gi/5ZryQExqKUwP2IOUV1L++GG0+MMsz25VrAlR2Ug4=
Subject key identifier: 51:99:2C:40:FD:D0:EB:6A:1E:F6:00:5E:05:99:0E:E6:D2:8A:90:40
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 019428281645409E8A3881001819706E890C
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/UZksQP3Q62oe9gBeBZkO5tKKkEA.roa
Signing time: Thu 02 Jan 2025 17:55:03 +0000
ROA not before: Thu 02 Jan 2025 17:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43651
IP address blocks: 82.147.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:16:45:40:9e:8a:38:81:00:18:19:70:6e:89:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51992c40fdd0eb6a1ef6005e05990ee6d28a9040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7b:b7:d2:ff:02:df:7d:98:c8:dd:0c:90:5c:
93:7a:dc:ac:39:c4:cc:e1:99:00:81:7d:d8:e0:c8:
2f:52:1c:23:61:dc:8c:1c:b5:a1:f8:4d:59:04:90:
b5:61:42:21:51:56:f2:8e:3c:06:2f:95:a6:97:87:
f4:d2:b1:5c:59:3a:67:c2:f8:0a:25:44:c1:66:87:
c5:9d:2e:5f:38:83:a3:f5:a9:4d:c4:56:a1:4d:e5:
b4:56:1c:02:33:5f:1e:9e:e7:64:83:94:d9:c0:d8:
de:06:ce:96:91:06:82:20:01:d6:93:8c:51:2b:21:
76:c2:db:e0:b3:a1:47:cc:bc:e7:18:d6:a4:b3:1d:
d8:a8:18:c3:53:88:d7:f3:0d:8a:c1:1a:7c:96:a0:
d5:a8:3d:f7:f0:f5:19:94:78:cc:ce:b3:0a:c8:20:
2c:bb:1a:05:4a:06:c2:97:99:f8:8c:f6:0c:97:97:
b3:a9:49:32:10:7c:4f:00:63:d9:b7:d6:20:68:58:
a0:fa:25:f0:eb:f3:55:9b:db:92:92:43:15:71:a6:
d8:7f:20:db:60:3f:65:e4:bb:09:5f:c1:8f:01:9d:
bf:4a:9e:fe:4d:cb:f1:3b:fa:90:31:99:e9:04:ab:
38:37:6b:e1:b4:f4:6f:f7:78:21:53:c5:be:5b:19:
87:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:99:2C:40:FD:D0:EB:6A:1E:F6:00:5E:05:99:0E:E6:D2:8A:90:40
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/UZksQP3Q62oe9gBeBZkO5tKKkEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.147.134.0/24
Signature Algorithm: sha256WithRSAEncryption
11:d7:27:0e:59:71:66:30:be:3f:34:7d:5f:d9:d8:55:2f:e9:
db:e3:11:9b:06:f4:63:9d:6b:c1:54:c7:18:8b:3a:ba:b4:5a:
f6:66:37:5f:dc:fb:6e:27:5e:71:c8:fb:51:67:0a:b8:06:95:
58:f8:28:61:9e:b5:d6:a4:e1:71:72:08:e9:54:0c:a1:8b:6e:
28:2a:1a:9c:3f:32:21:f1:e9:b5:c5:97:9e:c3:f4:d3:10:ff:
ac:37:f9:d8:66:e9:4e:02:7b:e4:bd:6e:7d:e7:02:86:db:8f:
94:57:37:0d:43:0c:82:c5:b1:9b:5e:f9:f5:2d:b7:b6:b1:1b:
07:c8:58:a4:27:3c:59:36:ae:a6:26:86:f0:2b:1e:6c:dd:12:
db:45:07:0c:bb:16:aa:79:fa:16:3d:57:4a:05:8c:5e:01:ac:
1c:1e:b2:2a:6b:f5:8a:c5:49:5e:d1:80:54:4e:b5:a4:97:02:
4b:59:dd:97:66:47:5a:44:d0:7a:68:23:56:cf:26:70:13:c4:
ca:f9:de:43:ae:80:77:7f:6f:ef:7e:57:53:8b:87:80:d3:18:
d9:17:79:c6:be:c1:6f:de:9b:0e:6b:bf:b4:44:09:c7:11:0e:
3d:6a:b7:6b:b4:cd:12:58:8a:d7:92:56:e4:f3:55:de:67:78:
40:fe:e9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:58:38 2025 by rpki-client