Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/RGpHVG00Cc-wK-vpiAByabC8PJo.roa
File: RGpHVG00Cc-wK-vpiAByabC8PJo.roa (raw, json)
Hash identifier: QzlCB5Gilev1YQmcdiMTmIBOrQLF8Fyq2Quguajle6s=
Subject key identifier: 44:6A:47:54:6D:34:09:CF:B0:2B:EB:E9:88:00:72:69:B0:BC:3C:9A
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D099D7D425EF2A25FCD24B43F634B
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/RGpHVG00Cc-wK-vpiAByabC8PJo.roa
Signing time: Sun 01 Jan 2023 13:54:46 +0000
ROA not before: Sun 01 Jan 2023 13:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 82.118.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:09:9d:7d:42:5e:f2:a2:5f:cd:24:b4:3f:63:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=446a47546d3409cfb02bebe988007269b0bc3c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:59:8b:e4:43:7e:24:0f:5f:2e:3d:e7:33:23:
ed:7e:c9:27:1c:57:d5:19:35:b5:60:1e:eb:97:e2:
49:68:2e:5c:1b:1d:d4:98:8b:d5:6f:c9:db:2c:29:
d5:f8:32:a9:9c:de:31:2c:d3:b8:01:9d:fe:a8:31:
c0:4b:c7:f1:d3:c6:d6:4f:62:81:58:4d:06:b1:e1:
e4:d5:5b:d0:91:d0:56:a8:07:17:5f:1d:3e:50:bd:
4c:1b:f9:56:e7:77:75:d7:1c:92:e6:22:1c:4c:3c:
04:b3:c1:e5:4f:35:0a:9f:5b:62:37:2d:eb:1b:67:
4c:70:e6:f7:88:f1:05:c4:a5:4c:d5:95:65:93:22:
92:52:92:41:80:c5:06:c5:9f:02:b5:c4:2b:fe:d5:
6d:d2:a2:22:4f:12:e2:b2:0d:63:ef:8e:ae:3e:12:
a0:03:b6:17:06:81:d9:f9:d3:12:ea:fa:75:88:f0:
a4:cf:14:19:df:25:ec:35:a4:65:e7:99:26:bb:1c:
1f:1f:d5:1a:2c:6a:d7:7b:6b:23:db:61:66:ef:b3:
1a:bd:cf:c1:af:d0:a1:5a:bf:81:2d:55:43:ff:42:
62:3e:b7:65:b0:cc:71:bf:30:fe:97:3b:a0:2b:75:
ac:2a:b7:52:f5:12:86:74:7b:69:48:56:b3:b8:24:
66:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:6A:47:54:6D:34:09:CF:B0:2B:EB:E9:88:00:72:69:B0:BC:3C:9A
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/RGpHVG00Cc-wK-vpiAByabC8PJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.31.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b6:55:fd:8d:9c:75:66:29:66:ee:cd:5a:ec:63:9a:98:b5:
e7:64:43:6c:b5:a1:ab:1c:5f:96:7a:43:72:e4:f2:30:94:3e:
99:9a:db:32:5f:fb:5b:6d:3e:37:ad:74:c0:93:6d:d9:26:fe:
8e:36:ed:57:f6:82:9e:a1:65:0f:b5:0d:99:9d:fe:71:dd:2d:
a9:7c:b8:26:5d:55:64:f3:b8:43:1b:11:c0:fa:88:ae:5d:45:
03:8b:ff:21:b6:95:90:48:34:34:18:0a:00:ac:d8:d1:8d:62:
af:d9:17:d0:e6:2e:7f:bb:40:a0:8b:1c:93:97:cd:7e:a1:a1:
af:a7:5e:5d:e7:2f:79:90:37:49:3b:d7:38:77:18:65:2a:4e:
d2:03:9b:d3:31:f8:ca:e1:34:36:0d:e2:c2:38:9a:21:15:d0:
02:6b:b1:d2:fc:be:f9:d7:6a:ca:9d:51:88:ac:22:ce:d2:ea:
2e:d5:a5:cd:69:1e:ca:3e:eb:5b:3d:ab:d9:b1:9e:12:17:a9:
d0:87:a7:27:34:40:17:a0:de:91:a8:01:3f:5d:a3:32:0b:59:
1f:81:7c:c4:a2:b8:99:46:83:55:01:22:ac:6f:05:ba:2a:83:
84:ba:a1:d6:d6:21:2c:cf:15:39:fa:d8:fc:fa:6c:dd:85:08:
1a:94:a1:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnQmdfUJe8qJfzSS0P2NLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODE0Y2YyY2EzZTE3OTkzNDljY2Q0YzdlNmE3NmQ2M2Y4
MzRhM2QwHhcNMjMwMTAxMTM1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDZhNDc1NDZkMzQwOWNmYjAyYmViZTk4ODAwNzI2OWIwYmMzYzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFmL5EN+JA9fLj3nMyPtfsknHFfV
GTW1YB7rl+JJaC5cGx3UmIvVb8nbLCnV+DKpnN4xLNO4AZ3+qDHAS8fx08bWT2KB
WE0GseHk1VvQkdBWqAcXXx0+UL1MG/lW53d11xyS5iIcTDwEs8HlTzUKn1tiNy3r
G2dMcOb3iPEFxKVM1ZVlkyKSUpJBgMUGxZ8CtcQr/tVt0qIiTxLisg1j746uPhKg
A7YXBoHZ+dMS6vp1iPCkzxQZ3yXsNaRl55kmuxwfH9UaLGrXe2sj22Fm77Mavc/B
r9ChWr+BLVVD/0JiPrdlsMxxvzD+lzugK3WsKrdS9RKGdHtpSFazuCRmfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFERqR1RtNAnPsCvr6YgAcmmwvDyaMB8GA1UdIwQY
MBaAFCGBTPLKPheZNJzNTH5qdtY/g0o9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgt
MjI3MDFiNGJiNDA3LzEvUkdwSFZHMDBDYy13Sy12cGlBQnlhYkM4UEpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8wMWY4NTMtZDQ0NS00YWNlLWE4ZDgtMjI3MDFiNGJiNDA3
LzEvSVlGTThzby1GNWswbk0xTWZtcDIxai1EU2owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnYfMA0G
CSqGSIb3DQEBCwUAA4IBAQCVtlX9jZx1Zilm7s1a7GOamLXnZENstaGrHF+WekNy
5PIwlD6ZmtsyX/tbbT43rXTAk23ZJv6ONu1X9oKeoWUPtQ2Znf5x3S2pfLgmXVVk
87hDGxHA+oiuXUUDi/8htpWQSDQ0GAoArNjRjWKv2RfQ5i5/u0CgixyTl81+oaGv
p15d5y95kDdJO9c4dxhlKk7SA5vTMfjK4TQ2DeLCOJohFdACa7HS/L7512rKnVGI
rCLO0uou1aXNaR7KPutbPavZsZ4SF6nQh6cnNEAXoN6RqAE/XaMyC1kfgXzEoriZ
RoNVASKsbwW6KoOEuqHW1iEszxU5+tj8+mzdhQgalKHk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org