Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/af89d8-8c35-4c8c-b15d-7e46ad748484/1/WUaj5fwvjt0_9HK-qsCluQyKqkc.roa
File: WUaj5fwvjt0_9HK-qsCluQyKqkc.roa (raw, json)
Hash identifier: bCbUT6py99S1l6vvJQ6Daw8EC7HqPQHAWbdn9H3Yo0c=
Subject key identifier: 59:46:A3:E5:FC:2F:8E:DD:3F:F4:72:BE:AA:C0:A5:B9:0C:8A:AA:47
Certificate issuer: /CN=1bcee40405aefb6da17a340eef159ce9c4d18322
Certificate serial: 019420D5F340936338444B67E7AC9A619F9D
Authority key identifier: 1B:CE:E4:04:05:AE:FB:6D:A1:7A:34:0E:EF:15:9C:E9:C4:D1:83:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G87kBAWu-22hejQO7xWc6cTRgyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/af89d8-8c35-4c8c-b15d-7e46ad748484/1/WUaj5fwvjt0_9HK-qsCluQyKqkc.roa
Signing time: Wed 01 Jan 2025 07:47:59 +0000
ROA not before: Wed 01 Jan 2025 07:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59521
IP address blocks: 82.163.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:f3:40:93:63:38:44:4b:67:e7:ac:9a:61:9f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bcee40405aefb6da17a340eef159ce9c4d18322
Validity
Not Before: Jan 1 07:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5946a3e5fc2f8edd3ff472beaac0a5b90c8aaa47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:67:cd:7c:b2:93:54:ce:2d:46:56:f7:af:b8:
e7:42:34:ff:28:9f:d6:50:4c:71:8e:3e:c6:78:72:
4f:40:36:3c:92:32:df:7f:29:44:71:e3:c4:3f:93:
6c:d1:91:43:27:1b:a0:88:c9:f8:83:6d:79:a2:56:
5b:32:32:7a:fd:8e:67:be:e8:44:c4:da:2e:71:2f:
e8:41:2f:23:b0:30:d9:e5:cf:94:7d:e0:70:36:82:
76:d6:2c:62:f3:64:ad:3b:95:7c:de:ca:36:b1:ad:
a3:4a:22:30:5a:7c:59:fb:3c:a9:21:07:a4:8d:c8:
5b:6e:ca:7f:57:86:cc:a4:23:eb:ee:a0:65:2e:b9:
d2:1e:a0:00:eb:3f:04:18:89:67:ee:fc:3c:23:64:
76:fb:16:9c:b6:57:6b:82:f5:f4:93:cb:bc:34:c5:
ec:8d:84:56:ad:b0:ac:4c:fd:88:03:6f:cf:58:3e:
4a:b5:e1:f8:6c:32:da:b3:14:04:1b:49:7a:98:97:
fa:77:fe:d0:1e:a7:4d:ce:53:42:79:59:fa:02:82:
05:e0:d3:95:c9:c7:d5:eb:ff:78:f9:b0:0c:4d:73:
a0:f7:59:bb:db:46:c6:d9:5f:1b:8d:2b:7f:b4:6a:
55:3b:7f:40:41:1c:a2:6a:2d:37:ac:22:f4:12:c1:
66:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:46:A3:E5:FC:2F:8E:DD:3F:F4:72:BE:AA:C0:A5:B9:0C:8A:AA:47
X509v3 Authority Key Identifier:
keyid:1B:CE:E4:04:05:AE:FB:6D:A1:7A:34:0E:EF:15:9C:E9:C4:D1:83:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G87kBAWu-22hejQO7xWc6cTRgyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/af89d8-8c35-4c8c-b15d-7e46ad748484/1/WUaj5fwvjt0_9HK-qsCluQyKqkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/af89d8-8c35-4c8c-b15d-7e46ad748484/1/G87kBAWu-22hejQO7xWc6cTRgyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.44.0/22
Signature Algorithm: sha256WithRSAEncryption
10:73:b8:e4:e8:6b:f8:0b:e6:ae:ca:88:42:53:c2:d6:d5:ae:
3c:1b:21:29:07:7e:e3:01:e1:1b:2e:68:84:a8:3b:11:e9:6e:
6e:37:ae:9c:2d:ff:11:40:53:82:ce:4c:e1:8c:58:28:5b:9b:
22:fe:6e:3f:14:a9:b0:ad:5a:a5:da:8f:af:5c:a9:84:99:52:
59:f8:b5:fb:6e:2d:4e:8f:27:8c:21:56:cc:ba:64:c8:66:55:
9e:81:ec:c9:a6:a8:62:50:78:de:f1:e1:2b:c7:43:1a:ce:2f:
15:75:72:df:5e:85:12:a0:bc:91:46:38:92:04:10:b6:ab:50:
96:e8:ba:c2:9c:4d:e0:e1:07:f6:dd:a7:15:97:28:ce:8b:c0:
91:9a:26:4e:84:aa:b8:95:1b:81:bc:00:21:4f:f4:f3:10:79:
d3:e6:e7:a8:51:59:11:43:6f:a5:78:a7:cd:c7:a9:0f:6a:92:
f6:ae:3c:20:9a:48:c6:ac:1f:19:ee:af:67:c9:e4:eb:da:a0:
dd:6a:a8:95:a8:34:78:c4:e3:ed:1e:d0:38:48:84:f4:7a:5a:
a6:65:3b:5e:06:a1:64:ba:53:fc:98:6a:75:dd:f6:5d:36:4a:
19:65:e9:05:89:cd:32:ad:ed:99:e1:bf:8d:46:44:58:84:ce:
49:93:56:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:27:04 2025 by rpki-client