Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gFOf999230VoZhNV5B6ONM8eVbY.roa
File: gFOf999230VoZhNV5B6ONM8eVbY.roa (raw, json)
Hash identifier: tEAZrasHRWgQ0ZuGhETdGWSD2Nn3zaJpiEfjIE5GslI=
Subject key identifier: 80:53:9F:F7:DF:76:DF:45:68:66:13:55:E4:1E:8E:34:CF:1E:55:B6
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D1FFD0012C88646AB7C839DB92A33
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gFOf999230VoZhNV5B6ONM8eVbY.roa
Signing time: Sun 01 Jan 2023 13:54:51 +0000
ROA not before: Sun 01 Jan 2023 13:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393277
IP address blocks: 82.118.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:1f:fd:00:12:c8:86:46:ab:7c:83:9d:b9:2a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80539ff7df76df4568661355e41e8e34cf1e55b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a2:c5:0c:1b:4c:e3:f7:ed:1c:c5:0d:9b:19:
ec:93:b4:f2:4e:1f:88:e0:db:0d:9c:8f:19:4a:ca:
3d:99:07:3f:6e:09:ed:7f:e6:56:b2:8b:78:3c:7d:
fa:22:1d:ee:d5:da:5e:7e:b3:cc:97:38:2e:27:ba:
af:21:07:42:61:2f:62:6f:57:7d:19:ee:8a:ef:a3:
4a:b1:25:6c:01:16:e0:53:ea:b8:be:1f:f3:1a:1f:
88:aa:90:9b:aa:69:94:c0:30:07:e5:1e:51:ed:a2:
60:ef:31:15:a4:74:f3:41:f5:a6:cc:f4:6c:ed:f2:
a1:fe:26:fa:4e:4d:12:53:0e:bf:21:35:f4:fd:99:
9c:93:0d:a7:b8:c3:f8:f7:4f:62:db:31:a6:c0:c7:
42:b7:2e:e5:a4:85:20:46:ff:e4:bf:75:aa:af:ff:
3e:ad:ae:39:e9:9e:5a:f4:e5:48:94:bc:39:ec:6a:
7a:3b:f0:ca:e5:cf:db:c2:ea:78:9d:6a:5f:48:cb:
c9:4b:a8:90:3e:e6:af:4e:21:b2:1d:56:13:38:ef:
b6:af:ee:07:42:58:b9:db:62:30:7e:86:e0:0d:1a:
e6:4c:cc:6a:2b:8d:cd:66:a3:4d:dd:59:02:c8:40:
74:55:e3:dc:2c:53:06:c7:d3:b8:19:fc:b5:82:7e:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:53:9F:F7:DF:76:DF:45:68:66:13:55:E4:1E:8E:34:CF:1E:55:B6
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gFOf999230VoZhNV5B6ONM8eVbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.27.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:63:60:70:9f:cd:fa:15:1c:01:33:98:c8:86:68:b5:1f:88:
f3:c3:15:4d:d6:12:ac:aa:fe:e2:f6:a3:d5:78:36:9a:af:87:
9f:72:de:f2:54:d9:d4:ae:2e:c9:19:26:dc:96:20:ae:6a:34:
98:05:8e:40:7b:18:74:dd:09:1c:2d:7c:c5:d0:e5:90:70:40:
67:17:ff:be:a9:dc:7f:82:a7:44:22:7f:d3:87:9a:62:2f:6f:
71:e6:d4:1b:f0:88:99:a9:40:e7:ed:5c:73:26:c7:84:d6:72:
4f:1c:18:28:f3:a5:e5:d2:03:ce:05:30:3e:48:8f:fe:8b:ae:
7d:06:62:0f:71:36:69:63:2a:fe:11:5d:e0:57:2c:d4:d3:05:
c9:d9:a8:5b:64:1e:6e:f1:9e:f7:9d:21:b0:21:30:83:53:f1:
d7:a1:ca:e9:3d:ec:b4:48:e1:86:63:4e:fa:f1:09:f4:91:6d:
f0:e4:4e:d2:5f:c5:5f:e3:15:cd:ca:36:c3:cc:63:bc:ca:3b:
b0:4a:29:c6:69:37:f4:5e:ca:8e:1a:0c:7f:e5:8a:7e:fd:75:
88:e1:3c:54:2f:04:ae:15:8f:b4:3c:33:7b:2d:d4:18:49:c7:
40:c9:66:af:29:34:6f:d3:9d:73:e8:1a:b2:2b:a4:81:7e:db:
fe:00:e0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:05 2025 by rpki-client