Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/LHyIdzKWnfyRGm8Uy17JJ6mnYR8.roa
File: LHyIdzKWnfyRGm8Uy17JJ6mnYR8.roa (raw, json)
Hash identifier: 8el6mb5mDIafAH0mxZ60kt9DcSKWFumXf5SqlMhL3iU=
Subject key identifier: 2C:7C:88:77:32:96:9D:FC:91:1A:6F:14:CB:5E:C9:27:A9:A7:61:1F
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 0746B7B8
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/LHyIdzKWnfyRGm8Uy17JJ6mnYR8.roa
Signing time: Fri 25 Feb 2022 04:09:22 +0000
ROA not before: Fri 25 Feb 2022 04:09:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136933
IP address blocks: 85.8.182.0/23 maxlen: 24
84.252.100.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122075064 (0x746b7b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Feb 25 04:09:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c7c887732969dfc911a6f14cb5ec927a9a7611f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:81:57:a3:3b:36:83:70:14:6c:50:c6:63:00:
d8:41:ba:57:07:a3:53:59:5e:d6:4e:21:29:c0:5f:
d4:f9:ce:fc:ff:22:67:a9:b9:54:ee:fc:7b:f6:36:
ff:df:ba:99:d3:15:56:9d:bd:63:91:a2:d7:c2:2c:
81:7a:79:f4:de:37:dd:01:7e:bc:3e:99:42:0c:ee:
40:ad:be:5e:10:b9:c0:a7:85:03:d5:0e:16:50:b0:
32:b2:1d:ba:c3:84:d8:28:bb:a0:9d:b4:cf:81:37:
e9:ff:3b:0d:ec:5b:98:a3:50:44:9d:0c:f1:00:87:
eb:72:d2:58:0e:fb:48:4c:19:62:e6:f0:2e:83:0e:
86:e3:11:8b:fe:86:ec:2d:3b:16:8a:f8:20:29:6a:
22:4b:9b:33:da:ea:60:11:ee:85:e5:14:78:d2:31:
d1:d9:2a:9c:90:77:c3:3e:4d:da:57:d3:f6:77:52:
b2:5a:9f:da:90:94:12:77:5c:0b:cb:d9:17:b6:55:
67:4e:8d:89:f3:b5:e8:0a:52:91:94:5e:49:b3:68:
fe:5c:de:b1:8a:d0:e2:dc:50:c3:43:40:47:c9:77:
07:91:7c:f8:c3:1d:67:87:79:05:0f:50:15:f6:77:
a4:d9:d2:67:61:53:e7:a5:6e:12:ae:7f:14:b6:eb:
a6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7C:88:77:32:96:9D:FC:91:1A:6F:14:CB:5E:C9:27:A9:A7:61:1F
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/LHyIdzKWnfyRGm8Uy17JJ6mnYR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.100.0/23
85.8.182.0/23
Signature Algorithm: sha256WithRSAEncryption
27:e8:6a:ab:ad:d3:1a:56:45:b1:94:74:07:a0:f2:a4:35:d8:
0c:60:05:20:e9:8e:c4:eb:f9:68:c8:43:ec:f1:ad:4f:5d:6e:
3f:49:c3:90:35:2e:4a:74:f8:8d:09:f8:11:79:c8:5d:fc:ae:
5d:dd:1d:0e:85:a2:cd:33:8c:f9:01:30:b5:40:51:00:5e:95:
93:dc:57:a5:d9:f7:ac:c5:ff:da:69:dd:e8:69:e7:35:f0:70:
e6:18:63:9f:43:b3:ab:41:e2:59:67:b1:5f:7a:71:8f:76:42:
ad:4f:f6:fe:d8:2c:59:a9:e9:be:77:d5:b4:f5:4f:5d:54:8d:
a1:a0:70:22:df:4b:d0:30:a6:b3:30:94:aa:eb:b9:40:b5:d6:
bf:da:3c:f1:7e:0d:a0:ed:40:e4:e6:71:dd:3d:8a:ec:72:d5:
5e:de:05:fa:25:1c:7b:1d:f2:c3:78:a5:6a:df:7a:f5:81:65:
0a:ef:19:9b:6b:a0:10:b1:69:46:13:38:09:fe:0e:42:c5:93:
eb:a2:35:77:02:46:08:ac:4a:fe:7b:43:e5:4b:1d:e3:c1:61:
86:a4:fe:a6:d5:68:38:be:b4:51:7f:42:cd:02:2f:5b:7d:49:
f0:9c:97:1a:85:12:65:ea:04:31:91:87:0d:1a:00:22:01:59:
49:d9:df:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:07 2025 by rpki-client