Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gHNvLhCDgjxH-4a10l6ZGkH0DF8.roa
File: gHNvLhCDgjxH-4a10l6ZGkH0DF8.roa (raw, json)
Hash identifier: 6ejg2zgrF9GEa5IQwPO+DnTCE1lT7kBxVCfiEk3qVvg=
Subject key identifier: 80:73:6F:2E:10:83:82:3C:47:FB:86:B5:D2:5E:99:1A:41:F4:0C:5F
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D1227D7115D92A051354AD43071B4
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gHNvLhCDgjxH-4a10l6ZGkH0DF8.roa
Signing time: Sun 01 Jan 2023 13:54:48 +0000
ROA not before: Sun 01 Jan 2023 13:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57238
IP address blocks: 82.118.24.0/22 maxlen: 24
82.118.24.0/21 maxlen: 21
2a03:2780::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:12:27:d7:11:5d:92:a0:51:35:4a:d4:30:71:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80736f2e1083823c47fb86b5d25e991a41f40c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:27:d9:eb:23:9c:bc:a1:57:4d:31:63:4d:3a:
fc:c1:53:ca:d0:3c:bf:c5:b1:79:c9:6a:46:63:7d:
a4:d3:76:31:08:9b:fd:2a:b9:b0:39:93:ce:73:12:
8f:5d:c7:af:8a:9e:2a:cb:76:28:3f:3e:61:53:3a:
c9:79:78:8d:bd:ce:49:72:16:e8:5c:11:b0:42:95:
d4:22:ee:5f:05:d6:7f:c6:7f:c9:47:84:6a:fd:86:
29:23:96:0c:50:91:b6:1e:d3:03:e8:f8:92:93:09:
ea:1c:c8:c7:11:ac:a4:dd:12:ec:69:e8:ab:d5:67:
28:a5:b5:2a:d2:17:fa:f7:eb:bf:fc:a9:f2:d0:fd:
9f:51:b8:2f:f3:60:8c:1f:ab:2e:36:d2:aa:2c:c1:
59:0e:24:b6:7b:8e:de:53:d2:69:b0:30:96:8e:bc:
ec:48:9b:e9:26:80:1d:25:ac:4e:8a:0d:a8:d6:c1:
6d:61:85:c9:b6:33:10:25:34:cf:f3:87:6d:91:7a:
39:76:db:88:62:c2:2c:4c:1b:c8:5e:1e:18:ef:cf:
49:34:b9:fb:72:83:74:80:45:44:4c:97:ac:76:11:
ed:c6:b9:fb:ba:cb:02:5e:c1:e5:b0:3d:da:5d:38:
8c:09:ef:a7:ed:66:5a:e7:e2:86:a9:8e:cc:b4:2a:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:73:6F:2E:10:83:82:3C:47:FB:86:B5:D2:5E:99:1A:41:F4:0C:5F
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/gHNvLhCDgjxH-4a10l6ZGkH0DF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.24.0/21
IPv6:
2a03:2780::/32
Signature Algorithm: sha256WithRSAEncryption
86:56:53:bd:96:71:1b:93:60:a4:83:1f:4c:2c:ec:91:8e:59:
86:56:9d:d2:57:e8:44:3b:9d:9e:2e:5c:a6:20:2d:40:32:bb:
b8:6e:3d:e9:24:a9:a5:7e:c3:7e:bd:f9:75:3a:d9:6a:f8:19:
67:ae:40:1e:1a:f7:a3:84:fe:fd:c8:e0:09:95:6e:ae:09:fb:
3a:0f:70:62:4f:a6:38:82:f6:c0:1b:1f:ba:26:c1:c7:d3:e8:
57:42:ab:ba:26:7b:23:0d:89:23:1d:65:d9:69:8f:2c:09:26:
28:3d:d3:dc:bf:13:75:13:07:57:64:7f:41:57:e6:c7:72:21:
7e:3d:f1:4a:5c:df:64:c1:d2:b8:3d:c9:42:0b:a7:36:e6:dd:
23:40:7b:db:d3:a4:86:15:5f:b2:3d:7b:ee:fd:a5:b5:b1:d1:
d0:eb:77:e3:69:0f:46:38:ce:6e:ed:90:25:8b:8c:9f:da:ee:
25:cd:8f:ac:08:ed:c0:04:3b:43:6d:dc:5a:79:85:47:7b:3e:
1a:93:f5:f7:3d:51:17:d3:a3:e4:f5:5c:6e:e0:a9:19:ae:63:
d8:18:6d:6c:ef:3e:4a:be:36:cc:80:a7:96:08:4b:18:5b:ad:
7b:19:6e:da:11:dd:3c:d7:02:e2:a3:dd:12:c3:00:42:37:3b:
74:4e:23:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:00:23 2025 by rpki-client