Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/pPdITgISwe1ls0n4B9Wg40Ntg08.roa
File: pPdITgISwe1ls0n4B9Wg40Ntg08.roa (raw, json)
Hash identifier: NBh0wXAnQnIFqGvw4LVqk54dGRKPT/MfixOxmNNyNJU=
Subject key identifier: A4:F7:48:4E:02:12:C1:ED:65:B3:49:F8:07:D5:A0:E3:43:6D:83:4F
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01956AFDEA6719531680088E37EF0FD3A3F3
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/pPdITgISwe1ls0n4B9Wg40Ntg08.roa
Signing time: Thu 06 Mar 2025 10:26:20 +0000
ROA not before: Thu 06 Mar 2025 10:26:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 82.115.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6a:fd:ea:67:19:53:16:80:08:8e:37:ef:0f:d3:a3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Mar 6 10:26:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4f7484e0212c1ed65b349f807d5a0e3436d834f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2b:a6:3e:4e:c7:6a:f3:8c:a3:80:c3:11:e7:
21:29:f9:e0:de:28:82:9c:3c:c3:55:aa:68:10:9d:
b7:3e:7b:77:5a:a9:e7:35:e8:03:76:55:7a:bb:ea:
19:15:9a:b5:ad:d8:87:6b:7d:42:90:7b:a5:e1:c8:
33:1f:ce:66:b1:52:72:8e:29:d0:14:96:61:39:7f:
f5:38:ba:81:9e:04:66:9b:96:2d:f1:02:98:64:92:
86:e4:2f:4e:b6:6e:3c:6c:c3:63:6e:d1:dc:68:9a:
50:4d:c7:48:39:c4:1e:26:38:16:0b:b6:2e:83:d4:
89:ce:ba:e6:64:16:2a:c6:46:8a:80:a9:42:08:d9:
7d:97:b8:02:43:87:42:b4:e2:3d:7d:24:c5:db:1f:
f2:13:ac:29:54:5e:3d:00:74:60:26:b7:19:68:11:
7c:a4:7e:2d:a3:09:c5:03:28:09:0d:b7:f1:de:35:
a8:ec:31:77:f6:46:33:46:a4:03:c3:69:57:c1:ed:
fa:94:97:d5:0d:d9:f3:e6:fd:c8:15:6a:d6:e1:49:
08:78:0f:2a:97:8e:f7:3f:08:56:27:d9:bd:00:17:
89:b4:2c:04:1b:8c:cd:78:45:22:fa:8e:08:c6:ec:
98:75:2f:90:36:cc:74:a9:b1:34:79:cd:14:dc:04:
56:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F7:48:4E:02:12:C1:ED:65:B3:49:F8:07:D5:A0:E3:43:6D:83:4F
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/pPdITgISwe1ls0n4B9Wg40Ntg08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:e2:f0:72:ce:0e:ff:ca:1f:c8:08:a9:22:f6:62:5c:f7:c7:
42:bd:22:04:b3:d6:d8:a8:64:2e:bd:9b:27:8a:60:55:f6:9e:
c1:05:54:86:43:83:78:86:99:e0:dd:80:41:21:be:26:22:26:
5f:9e:64:0e:f0:20:ae:ea:75:71:b1:58:df:68:da:b0:7a:10:
f2:e4:f0:1d:15:b5:48:e3:00:c1:8b:85:f2:c2:40:15:da:67:
9c:3e:4b:59:35:48:f3:fe:03:90:08:9a:cb:c0:4f:66:59:22:
94:f5:b5:ca:02:73:a7:9b:89:99:b1:56:e7:d4:43:42:eb:67:
bd:89:b1:52:8e:f6:83:0e:5f:a6:c2:2f:15:72:cc:17:69:65:
6f:72:46:9c:5f:85:97:f5:79:7d:01:0b:da:1d:4b:c2:cb:81:
ad:2d:31:5c:00:09:68:32:a8:21:ac:bc:81:51:e2:34:d4:5a:
64:d0:e9:69:2f:4d:13:0c:7f:dd:d8:5f:f7:28:ad:fc:be:1b:
31:18:98:c5:54:e3:f2:ca:8d:fa:62:d3:b1:4a:7b:6c:3e:71:
d6:79:79:e7:a3:47:ef:cc:b0:c4:14:cb:55:08:55:f1:90:81:
10:53:85:61:6f:cd:51:a1:08:5d:92:8e:17:09:53:d8:cd:7a:
2a:7e:57:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:40:23 2025 by rpki-client