Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/wIAVtxUkCY58z0X6zGPhTg33ITg.roa
File: wIAVtxUkCY58z0X6zGPhTg33ITg.roa (raw, json)
Hash identifier: SPuQLJbWr9YToCmD8o2PKKxKYwS8Zwsjvkd9JKfYsFA=
Subject key identifier: C0:80:15:B7:15:24:09:8E:7C:CF:45:FA:CC:63:E1:4E:0D:F7:21:38
Certificate issuer: /CN=22582c47b01e06d883694841e3c980382c559406
Certificate serial: 01856CB846C351E80E6CE7C80BF24B10C648
Authority key identifier: 22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/wIAVtxUkCY58z0X6zGPhTg33ITg.roa
Signing time: Sun 01 Jan 2023 09:44:54 +0000
ROA not before: Sun 01 Jan 2023 09:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 212.52.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:46:c3:51:e8:0e:6c:e7:c8:0b:f2:4b:10:c6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22582c47b01e06d883694841e3c980382c559406
Validity
Not Before: Jan 1 09:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c08015b71524098e7ccf45facc63e14e0df72138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:04:c2:7d:60:27:80:97:15:e6:64:74:a8:a5:
b6:3c:3a:cf:43:1b:69:6f:6c:4d:85:40:f7:14:ee:
bc:64:03:9d:d6:b2:aa:6a:8c:28:46:dd:19:b4:7d:
66:0c:65:96:5f:06:8f:33:21:ab:f7:5c:cb:96:bc:
ef:b8:3f:f9:ac:5b:fb:cf:64:8f:6c:38:72:43:8d:
37:a6:7a:8a:c2:c1:5d:d3:ba:c3:57:92:45:94:00:
5a:50:b4:c0:82:10:00:bd:09:0e:7e:e1:e0:4d:97:
d7:2a:d1:77:78:10:6c:9d:30:3b:16:d5:4a:2a:91:
29:cd:7c:6a:5e:e3:6c:46:6c:ad:04:85:8f:48:46:
c4:ab:8a:39:03:c4:8e:26:c8:64:45:d9:ce:20:e5:
b2:44:42:f3:08:84:05:55:c7:9f:c9:af:36:11:bd:
fe:5a:ee:33:28:6f:9f:22:3e:52:f2:aa:f4:6d:8e:
f8:7e:48:bb:7e:4d:9d:96:24:c9:d0:fb:c9:a2:cc:
5b:a6:7c:44:7e:96:f0:75:fe:3d:d8:d2:21:71:49:
25:c3:54:d4:17:00:27:37:4e:c7:d6:32:7e:cc:10:
91:2f:6d:2a:c2:53:c4:3c:f4:80:76:34:2f:08:f6:
c0:90:34:cc:d4:b7:a3:b0:ba:6d:a7:65:94:fe:e5:
ee:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:80:15:B7:15:24:09:8E:7C:CF:45:FA:CC:63:E1:4E:0D:F7:21:38
X509v3 Authority Key Identifier:
keyid:22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/wIAVtxUkCY58z0X6zGPhTg33ITg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/IlgsR7AeBtiDaUhB48mAOCxVlAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.20.0/24
Signature Algorithm: sha256WithRSAEncryption
93:a7:4f:c3:53:99:ed:9f:29:75:fa:a4:7e:dc:fe:79:88:65:
65:3a:67:4c:13:8f:74:60:94:3f:36:11:7d:d1:fb:aa:d0:6b:
3a:61:0e:07:37:3c:04:82:68:0e:57:85:9c:32:c9:16:24:eb:
0a:c2:ee:b3:0f:ad:f5:22:d0:f8:db:0d:f6:05:8c:06:12:1d:
a1:31:ef:cd:21:07:d4:f8:14:51:15:d5:f9:31:29:80:d7:ac:
06:c3:82:a2:a2:6c:12:e5:e1:52:8d:d9:93:24:52:b2:d7:b3:
59:4a:c2:66:46:f2:07:fa:6a:2b:43:94:72:3c:7d:6a:03:84:
87:b0:b2:3c:f2:4a:74:94:c9:9d:26:2d:7d:ad:7f:d8:64:32:
21:66:3a:76:3f:21:f8:0c:cd:07:95:2e:b6:47:7a:74:3e:38:
c1:98:e5:57:76:75:64:7c:8c:ac:d8:fb:dd:eb:7a:16:6e:a8:
da:15:68:79:bc:01:28:9a:81:75:75:7a:ee:a3:59:20:3f:cc:
b7:7d:ef:8d:3a:2c:17:b6:ac:16:d4:3a:07:cf:1a:4d:e1:77:
e9:e7:e9:ba:1c:ce:4f:db:73:09:d7:d3:48:6a:de:08:41:48:
36:e4:aa:7d:08:cd:1b:50:ba:68:91:ee:25:6d:aa:ca:14:5c:
ac:60:17:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:07:32 2025 by rpki-client