Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/XpnMl8i-2n3ThNBWUYoTWCIaKK4.roa
File: XpnMl8i-2n3ThNBWUYoTWCIaKK4.roa (raw, json)
Hash identifier: lMn0ua5YWS7eGj2pvUP6EJfypU9oxZT5s1/vgnS/O5Y=
Subject key identifier: 5E:99:CC:97:C8:BE:DA:7D:D3:84:D0:56:51:8A:13:58:22:1A:28:AE
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01942828236039011ABFC8908390FA1540B4
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/XpnMl8i-2n3ThNBWUYoTWCIaKK4.roa
Signing time: Thu 02 Jan 2025 17:55:06 +0000
ROA not before: Thu 02 Jan 2025 17:55:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198003
IP address blocks: 82.103.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:23:60:39:01:1a:bf:c8:90:83:90:fa:15:40:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e99cc97c8beda7dd384d056518a1358221a28ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:59:9e:a8:08:ae:2a:9f:b9:35:bb:42:93:b3:
85:23:58:68:dd:58:8c:05:74:be:6c:bd:4f:b3:92:
d9:ba:52:da:2e:d5:2d:be:88:3d:6d:66:90:e5:ec:
91:c8:f6:6f:3c:56:b9:43:2f:79:79:fb:b8:df:4e:
c6:81:f7:51:f8:d5:89:68:01:42:2f:13:68:26:f9:
7a:71:f0:a8:87:30:52:5b:82:4d:d6:29:59:81:50:
f6:b0:af:85:d3:a8:78:47:1c:20:27:fd:6d:c4:6e:
47:13:ce:09:85:c7:af:e6:a3:58:9e:39:58:b7:e9:
71:d7:4e:ad:38:7d:82:3e:ac:a5:fa:58:3e:74:78:
1d:ee:4c:20:c0:e5:c5:4a:74:33:31:b5:5a:83:87:
e8:27:70:71:2d:3c:ce:6d:35:9e:e9:ff:1a:56:c5:
5d:2a:d0:24:f1:0f:82:1c:de:02:7b:95:dc:23:79:
f7:0a:09:d6:78:45:25:93:81:20:d8:28:60:c8:b3:
4c:6a:bb:f6:f1:29:f0:df:b8:01:a3:7b:56:e7:bb:
db:6e:16:32:05:8d:8c:6b:74:35:58:e6:0f:b5:f7:
8b:72:64:ec:4d:d7:98:f1:e5:a2:42:8a:96:89:c7:
48:7d:ce:8a:f8:d6:5b:37:06:50:32:9f:6e:9a:d5:
b7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:99:CC:97:C8:BE:DA:7D:D3:84:D0:56:51:8A:13:58:22:1A:28:AE
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/XpnMl8i-2n3ThNBWUYoTWCIaKK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.125.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:18:66:37:d9:77:af:ac:2b:02:43:d4:20:20:a8:bd:a4:31:
07:1f:59:63:62:8a:c3:45:5b:e6:57:4b:22:63:e0:4b:18:b4:
fe:91:10:de:81:4f:96:f9:e7:46:a2:5c:10:40:49:55:6d:68:
05:98:f6:01:82:1d:74:fb:fd:c4:b3:73:32:90:a4:b5:79:52:
eb:de:8a:ec:e2:b3:d3:1e:37:3c:92:93:a1:25:00:b5:b9:b0:
6c:7e:5b:2d:6a:5a:6d:4d:d4:15:2d:f4:bc:2c:9e:cc:b7:f8:
aa:56:66:9e:c3:f9:3c:ff:8b:9e:a5:2e:36:fb:5c:ec:ba:c0:
82:d1:5c:ee:be:18:e0:a9:04:7e:51:97:e1:c4:0c:3e:a6:df:
80:2e:92:91:23:f6:08:07:d1:1a:5e:87:f5:6c:58:4c:ea:29:
5d:62:97:3d:d9:85:2a:a6:fd:63:61:dc:95:9f:c4:3a:b9:5f:
8e:d3:f5:ba:02:26:33:b5:2a:ea:bc:4e:f4:97:4c:96:dc:9d:
6d:bd:97:ac:95:c1:24:cc:b2:5a:7a:78:8b:ad:fe:37:50:0b:
36:e6:5f:7f:e3:73:51:f7:df:ab:4a:31:0c:e1:21:ab:45:23:
e9:cc:82:dc:fb:83:8d:c3:ef:e4:00:ec:9c:60:37:a3:30:70:
9f:40:b0:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoKCNgOQEav8iQg5D6FUC0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjUwMTAyMTc1NTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTk5Y2M5N2M4YmVkYTdkZDM4NGQwNTY1MThhMTM1ODIyMWEyOGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVmeqAiuKp+5NbtCk7OFI1ho3ViM
BXS+bL1Ps5LZulLaLtUtvog9bWaQ5eyRyPZvPFa5Qy95efu4307GgfdR+NWJaAFC
LxNoJvl6cfCohzBSW4JN1ilZgVD2sK+F06h4RxwgJ/1txG5HE84Jhcev5qNYnjlY
t+lx106tOH2CPqyl+lg+dHgd7kwgwOXFSnQzMbVag4foJ3BxLTzObTWe6f8aVsVd
KtAk8Q+CHN4Ce5XcI3n3CgnWeEUlk4Eg2ChgyLNMarv28Snw37gBo3tW57vbbhYy
BY2Ma3Q1WOYPtfeLcmTsTdeY8eWiQoqWicdIfc6K+NZbNwZQMp9umtW3mQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF6ZzJfIvtp904TQVlGKE1giGiiuMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvWHBuTWw4aS0ybjNUaE5CV1VZb1RXQ0lhS0s0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUmd9MA0G
CSqGSIb3DQEBCwUAA4IBAQAfGGY32XevrCsCQ9QgIKi9pDEHH1ljYorDRVvmV0si
Y+BLGLT+kRDegU+W+edGolwQQElVbWgFmPYBgh10+/3Es3MykKS1eVLr3ors4rPT
Hjc8kpOhJQC1ubBsflstalptTdQVLfS8LJ7Mt/iqVmaew/k8/4uepS42+1zsusCC
0VzuvhjgqQR+UZfhxAw+pt+ALpKRI/YIB9EaXof1bFhM6ildYpc92YUqpv1jYdyV
n8Q6uV+O0/W6AiYztSrqvE70l0yW3J1tvZeslcEkzLJaeniLrf43UAs25l9/43NR
99+rSjEM4SGrRSPpzILc+4ONw+/kAOycYDejMHCfQLC4
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:50:43 2025 by rpki-client