Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/vugkgduzcYH9EePQjQWhHtz9YqA.roa
File: vugkgduzcYH9EePQjQWhHtz9YqA.roa (raw, json)
Hash identifier: +m1nEAEZ7cyUTEQOAc+4qtP7Wenji2tKOvbR9lzZlVs=
Subject key identifier: BE:E8:24:81:DB:B3:71:81:FD:11:E3:D0:8D:05:A1:1E:DC:FD:62:A0
Certificate issuer: /CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Certificate serial: 189E8E5B
Authority key identifier: 01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/vugkgduzcYH9EePQjQWhHtz9YqA.roa
Signing time: Tue 31 May 2022 07:14:13 +0000
ROA not before: Tue 31 May 2022 07:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 82.140.2.0/24 maxlen: 24
82.140.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413044315 (0x189e8e5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Validity
Not Before: May 31 07:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bee82481dbb37181fd11e3d08d05a11edcfd62a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a5:49:da:6b:bc:0c:22:40:fd:fb:51:5e:c4:
1e:92:8d:21:65:3c:e2:6a:e7:7b:61:c0:85:f3:5e:
21:94:8d:8a:bb:5f:50:f2:83:d2:5d:a1:fd:d1:61:
9a:24:4a:06:9e:ce:ec:a1:09:c3:c1:8e:48:f6:e9:
e7:bc:8f:c6:e2:fc:50:68:ae:25:ff:74:de:70:35:
5b:f2:fc:3c:30:95:ac:e3:c4:09:03:9e:9f:45:ce:
e3:8c:e3:bd:ef:78:13:cf:df:01:d7:14:7c:04:ed:
60:48:08:4a:fc:1f:39:69:f3:6b:fd:65:45:4c:c3:
cb:9a:a0:e4:61:46:6b:9f:5d:89:08:ed:0d:1a:5d:
c3:48:0a:42:dd:40:d3:06:6a:30:e2:19:72:89:c9:
ad:2d:66:fd:97:b2:7a:92:b9:2c:ed:44:c2:2d:a3:
ce:9e:9f:81:e5:b0:b1:eb:39:a0:7e:35:7f:40:35:
cb:57:10:e8:cc:08:b4:9e:f9:33:f6:1b:6c:3d:32:
8a:d5:99:5f:ab:54:5d:3e:b9:a0:78:44:37:2b:e1:
f6:14:8b:f6:0a:5e:a3:20:91:8a:07:be:27:9b:62:
c5:b6:ae:51:68:1d:37:cb:6a:aa:9d:f1:73:06:f8:
aa:7a:35:64:20:fb:25:44:c7:89:75:ce:63:75:ac:
52:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E8:24:81:DB:B3:71:81:FD:11:E3:D0:8D:05:A1:1E:DC:FD:62:A0
X509v3 Authority Key Identifier:
keyid:01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/vugkgduzcYH9EePQjQWhHtz9YqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.2.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:48:ba:27:79:b0:a5:85:b1:47:43:b6:57:0c:74:29:44:8c:
74:fb:e2:3c:32:2c:31:48:99:31:fa:e2:ed:37:b4:da:0b:39:
26:5e:bb:a2:48:94:51:75:97:16:63:ed:b7:e9:ad:52:9c:23:
c5:44:a6:71:bd:32:b0:9c:ac:11:17:64:90:42:75:49:53:4c:
b6:86:37:64:15:db:f5:39:77:06:45:f4:64:3e:b1:09:1b:7b:
31:52:01:65:a8:45:69:8c:33:b6:9d:49:17:d2:97:c9:50:d3:
1c:3f:1b:7a:05:fb:1b:1e:c0:42:0c:08:f8:e1:cd:7b:71:6f:
50:e4:af:54:15:c9:ac:f0:b2:5e:f0:f8:25:73:b6:3a:af:60:
ad:d2:d5:02:e1:2b:cb:1f:cb:66:68:84:07:60:ba:fc:90:fb:
cc:aa:97:40:84:8a:a5:e9:40:7c:f3:3f:54:17:14:fb:18:6d:
4a:e6:0b:07:c6:57:d6:b6:92:d0:dd:98:fe:ef:1f:d2:7e:aa:
53:f2:64:2e:83:51:b5:49:47:8f:31:31:da:df:56:bc:23:f3:
5c:d5:ca:89:ae:4c:4c:45:fd:b9:3c:56:1e:c7:ef:d4:97:51:
21:12:6c:30:24:9d:2e:24:15:e6:b5:3f:ab:3b:f8:a5:b6:5f:
a8:70:90:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 15:25:21 2025 by rpki-client