Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/HkJ-9_A8fSTCyoqsleUcIcpv0VA.roa
File: HkJ-9_A8fSTCyoqsleUcIcpv0VA.roa (raw, json)
Hash identifier: KPtJ8KY8VvpHlfWdHn/xFOY2oYxX7WZW51hrn0JF9iI=
Subject key identifier: 1E:42:7E:F7:F0:3C:7D:24:C2:CA:8A:AC:95:E5:1C:21:CA:6F:D1:50
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 030DE167
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/HkJ-9_A8fSTCyoqsleUcIcpv0VA.roa
Signing time: Sat 01 Jan 2022 01:50:29 +0000
ROA not before: Sat 01 Jan 2022 01:50:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141158
IP address blocks: 82.118.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51241319 (0x30de167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 01:50:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e427ef7f03c7d24c2ca8aac95e51c21ca6fd150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:28:d3:75:69:39:40:fb:ce:2e:54:55:bd:35:
ab:83:e6:9e:4f:6b:86:53:5d:49:a8:77:e2:29:47:
9b:02:72:43:78:cf:fe:93:40:b8:d5:c0:91:62:07:
07:ba:a4:c9:9d:b5:5b:51:89:c7:0c:6b:b3:ad:09:
d6:2d:df:29:d3:5a:48:c7:ac:2c:f7:41:87:d5:24:
48:9b:f5:16:70:f9:69:55:bd:d5:1e:04:54:13:0e:
f7:38:53:7c:03:28:0b:2d:51:ad:be:b1:7b:24:c9:
34:8f:69:d5:37:04:45:dc:d1:e3:79:7a:8c:27:55:
d5:b4:cf:7b:81:fb:22:39:2d:cf:fd:dd:1c:af:ac:
db:4e:af:b0:16:56:2c:1a:23:15:2c:82:ad:13:51:
54:44:31:85:2f:db:3c:6c:06:91:45:54:1d:be:13:
21:60:01:24:ea:d1:97:18:8c:94:47:f5:3c:d9:44:
68:08:9c:8b:5f:6a:63:27:c5:da:ca:c7:45:66:84:
d0:e1:56:d4:b6:82:7b:c9:d4:5e:f0:2f:3f:81:f9:
d6:24:69:ab:b9:38:d9:56:cb:7b:03:ce:13:1e:70:
59:bb:21:f8:ef:33:36:70:8a:b0:0c:dc:58:f5:4b:
c8:ee:5b:54:4e:d6:88:9a:92:e1:ed:00:a0:be:0f:
20:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:42:7E:F7:F0:3C:7D:24:C2:CA:8A:AC:95:E5:1C:21:CA:6F:D1:50
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/HkJ-9_A8fSTCyoqsleUcIcpv0VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.31.0/24
Signature Algorithm: sha256WithRSAEncryption
37:5a:ad:62:d4:90:db:43:63:37:55:0d:af:b3:d5:9b:8e:d3:
8e:f4:8c:85:0a:62:03:42:03:83:86:ff:2b:44:68:ba:3e:ae:
5b:44:7d:08:93:4d:b7:c6:70:af:0e:ef:54:fe:30:91:ea:f8:
8a:fa:e4:9a:84:46:38:28:cf:a3:85:9b:19:1d:c5:8b:30:ec:
cd:c5:85:3a:65:d1:84:98:cb:50:16:97:0b:88:d1:de:8f:c2:
80:c1:a3:30:5e:4f:b0:6f:8b:f8:08:2a:e2:da:e9:44:06:7a:
58:44:ff:ca:e1:b9:dc:3f:93:ae:44:6c:cb:e2:bf:2e:63:d7:
21:58:80:30:1e:80:c6:b1:76:da:e2:82:60:f3:02:d9:03:a5:
d1:60:61:82:eb:11:71:ed:96:e9:ce:06:49:38:ec:97:dd:e9:
55:e5:79:2d:f2:63:3d:3b:9a:cb:2b:dd:fb:bd:2b:55:12:93:
b7:4e:c8:10:15:ef:e5:b5:a2:36:6d:b5:24:c8:7f:51:7b:22:
a0:01:b0:fc:ae:29:4d:c7:0c:65:5f:5e:eb:44:62:1c:b4:40:
8e:f4:45:f3:32:e9:5e:bf:65:9c:1b:8d:b9:4f:33:fc:15:97:
48:bb:a5:11:b2:3f:80:6e:ab:e8:d3:1e:8c:63:10:26:45:a8:
b9:93:5e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:14 2025 by rpki-client