Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/JPO0dZe2HPjvgzvSnsI9dpo06uI.roa
File: JPO0dZe2HPjvgzvSnsI9dpo06uI.roa (raw, json)
Hash identifier: eoEy2x4zJxiy+eZjndHthdD8NVhTPRTKPtZjn/wJGUA=
Subject key identifier: 24:F3:B4:75:97:B6:1C:F8:EF:83:3B:D2:9E:C2:3D:76:9A:34:EA:E2
Certificate issuer: /CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Certificate serial: 01856E78C14E4941DA6E4BC6D41895E71B09
Authority key identifier: 01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/JPO0dZe2HPjvgzvSnsI9dpo06uI.roa
Signing time: Sun 01 Jan 2023 17:54:45 +0000
ROA not before: Sun 01 Jan 2023 17:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20546
IP address blocks: 82.140.2.0/24 maxlen: 24
82.140.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:c1:4e:49:41:da:6e:4b:c6:d4:18:95:e7:1b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Validity
Not Before: Jan 1 17:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24f3b47597b61cf8ef833bd29ec23d769a34eae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:41:79:c7:d5:89:de:a1:36:87:f0:fb:df:a6:
f0:86:8a:d5:d9:a3:03:7c:13:38:1d:24:99:40:54:
70:d3:7e:12:27:eb:fa:e7:90:11:3c:8c:d3:e2:eb:
57:74:93:54:d0:39:f2:ab:68:21:63:e2:14:c1:66:
90:b7:be:88:7e:1a:32:6c:b2:08:14:f1:2f:4e:fa:
22:de:6c:0a:62:77:82:c2:df:14:39:72:63:d1:68:
6c:6f:83:52:71:57:28:aa:1b:cf:6a:f5:49:a4:86:
19:de:cb:86:d7:e2:bc:f7:35:87:0e:79:ca:50:e0:
71:34:bb:4d:ea:0a:55:5c:61:92:c5:4a:25:96:e9:
3a:eb:23:2e:5a:27:88:00:bc:9e:1b:a7:1d:a0:07:
50:0f:b0:1c:ea:e5:5b:9a:24:7e:f8:d5:4b:cf:7e:
72:37:40:fd:a5:1f:36:d4:72:29:14:33:6a:68:7f:
e1:10:0f:6b:18:16:46:93:ca:4d:a3:b4:fe:5a:ce:
8a:a9:d7:3a:1e:be:21:79:1a:24:1d:d9:65:1d:c2:
d2:05:30:d0:cc:c8:47:5a:ae:cb:fa:6c:0d:0c:4c:
80:a7:c8:9b:e6:ce:68:4a:3f:73:dc:70:b8:15:50:
20:4e:fc:0f:af:c1:dc:ee:d1:5a:db:dd:7e:89:e5:
9c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F3:B4:75:97:B6:1C:F8:EF:83:3B:D2:9E:C2:3D:76:9A:34:EA:E2
X509v3 Authority Key Identifier:
keyid:01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/JPO0dZe2HPjvgzvSnsI9dpo06uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.2.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:bc:4a:6d:9f:79:06:39:e6:e1:fc:64:8a:82:3b:0f:c6:66:
16:07:1e:0b:c7:2e:ea:8a:08:94:d0:29:3f:bc:61:d0:51:a7:
db:d1:f6:43:08:78:8d:d3:82:59:41:bc:90:c9:75:4f:a6:b8:
5c:90:58:c0:fb:cb:32:2f:9f:b7:01:a3:6f:68:7e:01:cb:80:
2d:40:0d:bc:6e:a0:32:68:df:5b:51:40:e9:43:0c:bb:8c:10:
55:cb:80:ba:83:93:21:30:86:02:02:27:c9:be:15:03:b6:18:
81:af:1f:22:94:91:37:ec:8a:6f:e9:03:38:68:c0:e2:92:14:
66:ac:62:46:5d:32:cc:dc:7f:4a:0b:47:65:38:5f:5b:f3:d6:
45:5c:49:47:2f:50:fa:4c:9c:ad:6d:4a:78:24:e2:64:dd:52:
66:42:73:99:e8:51:f7:1e:cf:14:56:95:48:d0:84:65:f0:41:
6a:73:ee:dc:2b:e1:fc:ca:a8:d8:67:7c:75:85:1a:d7:4a:29:
62:34:90:0c:19:f9:f2:da:25:f8:d9:02:56:71:c4:0d:6c:43:
c3:44:0f:46:d4:42:1f:ad:93:dc:f2:6a:32:3a:b1:6c:cb:07:
de:01:71:a0:8d:da:d0:25:fc:c5:c3:57:ad:0f:97:fb:b0:63:
50:38:cc:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 15:05:04 2025 by rpki-client