Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/eKX38WRBWmtuTwpJydlyAOgABaU.roa
File: eKX38WRBWmtuTwpJydlyAOgABaU.roa (raw, json)
Hash identifier: wPEeV7+enD23Ox2TyJ2ri6ktyLrFVlAY5Y0TfZ75Xbs=
Subject key identifier: 78:A5:F7:F1:64:41:5A:6B:6E:4F:0A:49:C9:D9:72:00:E8:00:05:A5
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 01941F8C1CC4866DD9CC07CDC1E155698B0A
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/eKX38WRBWmtuTwpJydlyAOgABaU.roa
Signing time: Wed 01 Jan 2025 01:47:43 +0000
ROA not before: Wed 01 Jan 2025 01:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3344
IP address blocks: 82.136.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:1c:c4:86:6d:d9:cc:07:cd:c1:e1:55:69:8b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Jan 1 01:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78a5f7f164415a6b6e4f0a49c9d97200e80005a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b9:57:93:bc:7d:c3:f9:93:43:ca:f0:2c:b8:
17:3e:11:4d:de:76:69:8a:bb:a4:f8:ef:81:4c:06:
59:9b:ad:48:f0:3a:46:ee:b8:d3:dd:f6:0a:6b:80:
a9:b8:eb:46:41:cc:15:bb:a6:17:c2:f0:3c:6c:ee:
bc:97:95:20:8a:e8:8c:f3:3a:f4:65:7f:f0:d2:24:
5a:c3:4a:94:22:0d:64:6f:a7:ed:25:cd:cd:9a:3c:
43:d9:1f:04:6c:c2:f0:67:50:10:bd:f8:6b:bc:4a:
6f:26:0b:0a:62:09:48:1c:02:6f:77:a1:0e:59:f0:
7d:cb:86:22:f4:32:6c:f2:95:c6:93:6b:49:19:f0:
8c:9d:2b:9e:54:09:54:9e:6d:3e:d9:56:06:a3:42:
31:79:ce:1f:9a:01:07:63:17:22:25:e8:90:e0:c6:
c1:3d:b9:41:0e:61:71:4a:68:5c:79:d2:c7:d7:d6:
60:95:9d:31:3a:f5:16:bf:aa:22:7f:91:f9:35:2f:
02:9d:99:fc:ff:0e:bf:65:e4:80:32:78:35:4d:f7:
fa:55:af:aa:55:29:07:62:49:a8:d6:8f:2d:51:22:
64:76:af:98:6c:b6:2e:c1:c4:d9:a5:cb:ea:ff:33:
9e:4d:9b:24:5f:62:52:e6:11:30:77:f8:dd:70:5c:
b8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A5:F7:F1:64:41:5A:6B:6E:4F:0A:49:C9:D9:72:00:E8:00:05:A5
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/eKX38WRBWmtuTwpJydlyAOgABaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.136.8.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:6b:53:bb:60:52:aa:7b:34:5d:dd:4d:16:ea:29:07:f5:12:
e3:ef:29:dd:e8:6c:21:84:6c:c4:a6:46:83:73:98:50:6c:e3:
dd:c7:37:76:db:d1:2f:ea:c8:b2:0f:6c:02:ec:7f:cf:cc:d3:
5e:f9:ff:f4:c2:af:47:f0:c8:77:31:b1:cb:47:bc:30:3d:31:
35:00:65:08:86:52:8a:89:36:92:25:61:25:a7:39:51:1b:ec:
2e:c8:bc:e5:1c:0a:d8:f4:71:32:ca:8f:e8:09:bc:8f:dc:e0:
8b:89:d0:25:a8:f1:79:16:44:8e:cc:19:2a:59:46:a9:40:18:
fa:93:a6:8d:fe:68:9a:96:ce:24:7d:47:d1:11:c6:1a:e4:e5:
ef:6e:f8:2e:d1:77:74:90:fa:f4:ed:e9:70:57:79:04:c2:e1:
c8:32:ba:18:80:31:bb:8b:1e:bf:9c:2e:22:e0:2e:08:24:ec:
21:85:03:3c:26:5e:1d:02:01:17:3d:6c:84:f1:0b:46:5b:29:
7b:e1:f9:3a:9e:89:ba:9a:d0:5a:0b:6a:d2:20:40:9b:67:53:
1e:d3:bc:12:dc:e0:c8:8d:f5:38:4b:e2:2e:52:10:06:3c:0e:
32:9a:2b:66:08:59:eb:f5:ef:55:27:82:05:7a:25:bb:55:aa:
01:aa:a5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:04 2025 by rpki-client