Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/Wn-6eXi3yNqnVAEu4TS93GZY_nA.roa
File: Wn-6eXi3yNqnVAEu4TS93GZY_nA.roa (raw, json)
Hash identifier: zskLxIOZC90KQL1wCxly+WqSV8aMEjBxTgei+6EGOQE=
Subject key identifier: 5A:7F:BA:79:78:B7:C8:DA:A7:54:01:2E:E1:34:BD:DC:66:58:FE:70
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D0BB8541BB9C444708FA97AC4084C
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/Wn-6eXi3yNqnVAEu4TS93GZY_nA.roa
Signing time: Sun 01 Jan 2023 13:54:46 +0000
ROA not before: Sun 01 Jan 2023 13:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 82.118.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:0b:b8:54:1b:b9:c4:44:70:8f:a9:7a:c4:08:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a7fba7978b7c8daa754012ee134bddc6658fe70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:19:54:6c:0b:97:e7:f0:67:84:f6:77:06:f9:
98:bd:c5:37:2c:fb:22:1d:6b:83:5d:7f:8b:3c:73:
61:2b:7d:32:09:43:b3:9d:9d:49:18:ef:d1:ae:93:
2d:d7:3f:2b:f3:fc:ab:16:c0:bc:12:1c:6c:6e:c6:
1e:eb:4a:26:92:1b:bd:da:4b:5a:86:e7:aa:34:36:
ff:b1:37:e0:93:32:4b:28:a4:dd:0d:1c:60:3e:fe:
a5:ee:aa:9b:b0:a7:f3:ff:e4:2a:68:a8:46:bb:1a:
cf:f7:6b:25:17:82:bf:11:cf:f3:e1:d5:a6:68:74:
ba:73:3b:e8:09:7a:73:cd:57:78:c1:4b:b0:67:36:
cf:a1:80:0c:63:04:70:f4:c6:7d:59:c8:15:90:23:
a1:83:02:46:f5:7d:78:72:6f:41:ef:e0:0c:a0:ff:
71:ff:fe:51:8f:ba:26:ce:2c:8f:45:fc:28:75:ae:
03:9a:ca:48:2c:b9:e7:8a:6e:0a:38:92:4a:c7:25:
10:82:75:49:ff:c1:8d:8e:b5:da:f8:58:bf:fa:d6:
7a:7d:92:a4:4e:e4:b4:97:0e:8b:08:e6:d1:33:76:
71:50:49:65:d9:1a:75:b0:8e:7e:2b:d4:9b:96:85:
d8:2c:dd:cf:76:48:71:3a:b6:b8:df:90:ba:03:71:
2a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7F:BA:79:78:B7:C8:DA:A7:54:01:2E:E1:34:BD:DC:66:58:FE:70
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/Wn-6eXi3yNqnVAEu4TS93GZY_nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.27.0/24
Signature Algorithm: sha256WithRSAEncryption
67:6f:55:35:f1:9d:e0:46:5b:f9:c9:ff:db:a0:04:a9:8a:bf:
e9:d4:44:5b:b0:39:ba:21:59:e8:8d:c9:24:07:03:aa:85:bf:
25:58:83:46:23:13:e3:22:2c:fb:4d:02:11:ad:d6:06:91:41:
bf:c4:19:71:14:7e:15:96:77:b4:16:d3:45:49:70:86:c6:3a:
93:7b:29:e3:f1:bb:3a:55:45:ac:bc:76:35:6e:51:de:e6:a7:
e1:d3:0e:41:87:d2:af:ff:47:10:ea:a9:a0:8f:41:6d:e1:95:
ec:99:7c:ae:ac:ae:5a:2f:78:4f:40:97:c6:33:7a:07:37:dd:
00:68:b2:93:1c:d9:54:9e:dc:a6:b0:2d:cb:1c:55:b6:db:49:
6f:d2:07:c6:fb:7e:db:06:27:0c:3f:79:00:a7:78:f3:f7:2c:
7e:68:71:79:eb:e1:0f:bd:e8:16:02:2f:b3:08:9a:9e:2d:fd:
85:e8:30:18:64:78:e0:7a:d2:77:94:2f:68:4c:f9:3c:84:b4:
33:0e:d1:c7:4e:9e:c6:17:34:18:fb:4f:c6:d5:dd:39:3e:7d:
22:59:86:d9:af:57:b3:36:a0:38:78:78:c5:de:ce:04:de:7f:
40:43:7c:8c:7f:fc:20:a9:76:26:c7:69:6f:43:a1:c7:fd:66:
a2:e9:ec:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:44 2025 by rpki-client