Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/tuJF-PpIu6CxVU8WFZs8TpJSvII.roa
File: tuJF-PpIu6CxVU8WFZs8TpJSvII.roa (raw, json)
Hash identifier: UZZP6WphwtR5BeLDqn3uihaPyufR1Ewcd6I6IsxW9MU=
Subject key identifier: B6:E2:45:F8:FA:48:BB:A0:B1:55:4F:16:15:9B:3C:4E:92:52:BC:82
Certificate issuer: /CN=22582c47b01e06d883694841e3c980382c559406
Certificate serial: 01856CB845AED10797659DC28C860AD3802A
Authority key identifier: 22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/tuJF-PpIu6CxVU8WFZs8TpJSvII.roa
Signing time: Sun 01 Jan 2023 09:44:53 +0000
ROA not before: Sun 01 Jan 2023 09:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.52.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:45:ae:d1:07:97:65:9d:c2:8c:86:0a:d3:80:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22582c47b01e06d883694841e3c980382c559406
Validity
Not Before: Jan 1 09:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6e245f8fa48bba0b1554f16159b3c4e9252bc82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e2:82:f8:36:a5:c1:a4:e3:b2:7e:10:43:e8:
f9:65:0f:73:fd:7a:b7:ef:53:61:ab:3e:e7:54:22:
06:bd:cb:d1:fe:ac:c3:80:e7:9e:e1:23:02:bb:52:
aa:d3:95:e0:4b:3d:65:42:b1:68:99:46:dc:0f:6d:
e8:0f:14:fa:73:04:3e:2d:93:b8:fb:9e:31:96:88:
89:f5:d2:2d:21:d9:4d:d2:86:18:47:a6:6a:28:96:
37:ec:67:a8:e5:06:da:22:79:91:fb:9f:a6:f7:28:
c2:51:53:62:fe:af:c9:fc:96:1e:ff:75:1a:22:75:
a5:ae:80:13:04:e1:7d:73:81:c5:72:73:cc:ae:0e:
61:03:ba:79:aa:18:b9:82:63:01:f1:99:f4:ae:ac:
43:df:8f:b2:ca:56:9a:ea:29:5f:5a:97:a4:84:c2:
fb:53:dd:51:5d:24:05:de:bd:da:27:de:f0:38:2f:
a6:69:5e:77:25:36:24:02:77:90:d3:71:9f:eb:4c:
e5:9e:4d:c2:f5:1b:04:db:d2:ea:04:4e:9e:89:29:
e7:46:e8:37:3c:80:f7:c4:d3:c7:a4:b4:20:67:3d:
56:d3:75:81:2d:56:ee:b8:e2:64:84:26:4f:70:14:
2e:18:82:d0:08:b7:13:7c:d2:e1:ac:1c:ed:a0:e7:
45:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E2:45:F8:FA:48:BB:A0:B1:55:4F:16:15:9B:3C:4E:92:52:BC:82
X509v3 Authority Key Identifier:
keyid:22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/tuJF-PpIu6CxVU8WFZs8TpJSvII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/IlgsR7AeBtiDaUhB48mAOCxVlAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.20.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ee:fc:f6:b8:c9:b2:0f:c1:b2:79:15:2d:e5:88:5a:a0:35:
0d:da:ec:65:4c:2c:1d:0a:96:c6:57:a7:d5:d5:28:14:9f:1c:
cb:70:e2:19:36:88:7e:4b:25:6d:0d:27:0e:3b:46:97:b9:a7:
15:65:e2:6a:ff:73:12:ae:ab:4d:40:3e:cb:4a:5b:a2:08:41:
4d:38:b3:1c:1b:97:59:1f:e6:8e:6b:33:af:2c:36:7b:9d:cf:
3b:67:e7:00:2d:31:a6:1c:5c:2a:89:17:d0:31:92:36:49:e2:
f2:af:2b:c5:37:ca:bf:9b:e9:b6:bf:1f:96:b7:29:ce:74:d9:
3f:ed:9c:83:4f:fb:76:63:b5:a9:b3:7b:18:6d:47:35:a3:1a:
b6:52:99:4c:0a:ec:e8:68:74:cb:56:84:af:7c:74:15:eb:f7:
ca:1c:3b:82:43:61:80:09:e9:f0:1a:ab:36:70:5b:2e:95:f2:
8b:d3:94:16:d3:0e:9e:85:b1:2f:3e:7a:26:c2:70:52:01:05:
58:d2:54:3e:0e:b3:9e:9c:8f:ba:7f:88:21:6d:b1:8f:8d:29:
93:23:3d:92:e0:41:3e:61:42:31:56:91:fb:b9:fc:4a:e7:06:
6e:55:ea:a7:ba:a5:71:6d:67:a6:9b:7f:64:6b:a0:0e:98:81:
8f:d2:80:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 18:25:07 2025 by rpki-client