Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/3ofVew9CF8Rqn4XJqR7oyJHPJhI.roa
File: 3ofVew9CF8Rqn4XJqR7oyJHPJhI.roa (raw, json)
Hash identifier: riWY5dmUqLyrzYvifN25j5STNYkCIOKFBvwF2UfN+aI=
Subject key identifier: DE:87:D5:7B:0F:42:17:C4:6A:9F:85:C9:A9:1E:E8:C8:91:CF:26:12
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 04E9704E
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/3ofVew9CF8Rqn4XJqR7oyJHPJhI.roa
Signing time: Fri 01 Jul 2022 10:26:26 +0000
ROA not before: Fri 01 Jul 2022 10:26:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57238
IP address blocks: 82.118.24.0/22 maxlen: 24
82.118.24.0/21 maxlen: 21
2a03:2780::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82407502 (0x4e9704e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jul 1 10:26:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de87d57b0f4217c46a9f85c9a91ee8c891cf2612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:00:51:5a:33:69:35:8d:cf:a2:28:82:61:dd:
21:55:c6:f9:55:e5:98:f7:7e:89:6d:77:79:7d:fa:
a4:87:1b:de:9b:7e:39:bd:36:2e:f5:d8:1b:7d:c9:
ec:e6:7a:8f:94:18:e9:58:58:17:3f:94:6a:57:41:
36:9a:84:da:e0:14:04:90:8e:3e:a5:8e:72:b3:96:
a9:a7:b3:7b:5a:ce:21:c4:c8:06:40:5a:dd:a4:1a:
f2:d6:db:9a:e3:e2:1e:4e:0e:68:70:61:19:50:0e:
62:13:eb:aa:7a:c8:8f:d2:29:aa:aa:3f:18:8a:ba:
a1:11:e2:21:ba:34:16:7d:6b:c7:99:d0:1c:db:5a:
d7:0d:a7:d9:43:68:42:0d:a0:f7:76:8d:fe:f9:f5:
21:73:5e:7d:94:a3:10:3d:91:65:c4:ed:3a:c5:bb:
88:70:d0:f3:4a:0d:89:f8:64:62:d6:4c:30:ea:4b:
e1:93:6a:d2:a1:e9:01:b4:b1:e7:a5:5d:63:f7:f5:
70:aa:6d:e7:9e:8a:dc:75:61:4d:b8:09:b3:bf:5a:
c7:1a:b6:2d:fc:ba:df:f3:33:28:5e:56:23:11:d0:
a7:aa:a4:f8:81:29:ee:19:6b:7c:3e:89:01:09:d8:
36:19:f0:d4:30:5c:ab:51:d3:65:f8:1c:7e:bc:13:
81:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:D5:7B:0F:42:17:C4:6A:9F:85:C9:A9:1E:E8:C8:91:CF:26:12
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/3ofVew9CF8Rqn4XJqR7oyJHPJhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.24.0/21
IPv6:
2a03:2780::/32
Signature Algorithm: sha256WithRSAEncryption
5c:76:ab:da:80:8a:15:b7:0f:dc:8a:48:9d:b7:70:4c:a2:12:
12:fa:c3:d3:92:90:87:ce:9d:5d:02:5c:f4:2d:1d:44:8e:ac:
37:02:72:34:80:6a:e0:c5:89:32:65:2f:e5:69:9a:03:6d:29:
9a:07:24:4f:69:56:a8:c6:83:4b:bb:a2:91:85:6b:59:c3:c4:
ec:ba:d8:25:d7:b5:4a:eb:ef:9f:2c:5d:37:da:01:8f:03:aa:
92:49:33:56:2b:e9:f1:18:d5:75:5b:31:da:7f:55:88:8d:55:
e5:af:e2:c9:58:f9:f3:98:f9:96:d7:26:a5:ec:3b:9e:46:c0:
ab:8b:2a:c4:54:e9:2b:16:77:90:fc:46:a9:ac:7a:f3:ac:ed:
c2:76:fd:7f:a7:1a:a6:dd:e4:90:67:0d:b1:90:87:f9:1f:9b:
3a:fb:06:16:3f:2b:d5:51:2b:05:46:36:b2:97:3b:44:6c:46:
41:66:38:67:64:43:cd:ad:10:24:32:d6:28:b0:23:f7:cc:44:
52:16:4c:b2:04:33:e5:07:a9:c8:b8:2d:66:c4:7c:2e:d2:37:
bf:50:61:3d:71:83:64:4e:23:f5:d6:88:03:fa:75:bc:0b:de:
b9:68:51:73:17:dc:db:89:e5:5c:ca:0f:6c:6f:86:af:ff:69:
83:b8:b9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:27 2025 by rpki-client