Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/n7VMq_z-rv4nBWsX2SX-C_orDwA.roa
File: n7VMq_z-rv4nBWsX2SX-C_orDwA.roa (raw, json)
Hash identifier: puDUtCW6BFuWoUT5Yl8pFYj9/gNu+EkYRw2ZisOVmfM=
Subject key identifier: 9F:B5:4C:AB:FC:FE:AE:FE:27:05:6B:17:D9:25:FE:0B:FA:2B:0F:00
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 01941F8C1DDE533081E6EB338FBC1E9D2A6C
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/n7VMq_z-rv4nBWsX2SX-C_orDwA.roa
Signing time: Wed 01 Jan 2025 01:47:43 +0000
ROA not before: Wed 01 Jan 2025 01:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202416
IP address blocks: 82.136.32.0/24 maxlen: 24
2001:4088:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:1d:de:53:30:81:e6:eb:33:8f:bc:1e:9d:2a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Jan 1 01:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fb54cabfcfeaefe27056b17d925fe0bfa2b0f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:97:06:ef:53:4c:5a:93:c4:f1:d7:61:58:3e:
1a:1b:e7:b2:09:0a:7a:f7:80:b3:30:8b:02:fb:36:
18:50:a5:ac:6a:f7:f6:03:7b:ed:6b:48:ab:cd:0e:
62:22:c0:df:71:46:ab:e3:55:1c:f2:a5:e4:1b:0f:
1e:d0:ab:1a:21:51:92:bd:1d:2b:d7:73:92:45:d6:
86:53:41:61:fd:ac:09:e6:86:56:b8:58:f4:3f:b2:
99:d5:d0:57:ad:ef:91:bb:56:98:c0:8c:c8:3c:67:
31:24:29:d7:c8:bf:23:4d:8f:53:a3:77:f8:fd:c7:
dc:4b:f9:4a:08:e8:5d:33:5d:10:e5:fb:5d:fc:87:
60:07:25:6e:a1:de:97:75:eb:d9:79:d1:6f:c8:8a:
6f:cf:b7:b7:5a:09:e3:38:1e:47:2f:e2:b5:7a:04:
76:a1:15:2c:78:9a:e6:38:6a:22:1e:32:9e:b1:29:
4c:0c:e5:2a:32:3b:82:b6:c9:63:51:88:d9:cf:2b:
d3:e5:c2:81:62:a0:3e:f6:90:20:1c:32:f4:9c:dc:
54:2b:67:77:eb:ff:f1:02:92:5d:20:b7:3b:d3:55:
9d:79:0f:b3:e8:a3:5b:e1:28:ff:c1:02:e0:03:e5:
00:82:36:e4:ed:f9:22:04:ac:44:1d:13:ab:a3:1e:
5d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B5:4C:AB:FC:FE:AE:FE:27:05:6B:17:D9:25:FE:0B:FA:2B:0F:00
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/n7VMq_z-rv4nBWsX2SX-C_orDwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.136.32.0/24
IPv6:
2001:4088:20::/48
Signature Algorithm: sha256WithRSAEncryption
6c:76:9f:a7:2b:a2:04:5a:20:6f:7f:26:14:65:b9:43:2c:3a:
28:39:19:39:09:e8:a2:84:e2:c8:81:14:9f:f0:16:71:86:5a:
95:5f:7a:7a:f7:d8:5a:2e:c5:0d:1c:8e:95:82:3d:db:82:40:
f0:88:28:17:1d:8c:47:7d:b9:8f:b1:b0:14:c6:a1:c7:ef:49:
76:87:99:91:94:a8:fe:cc:47:5a:e4:aa:fb:fd:bb:5c:20:ad:
a6:bd:75:fc:16:36:c3:9a:a1:6c:96:56:f0:cf:54:a5:6d:f0:
33:4f:a2:da:c1:c4:de:81:1e:58:d2:8a:4b:af:68:82:96:72:
df:e5:4f:6a:ad:58:0b:5c:16:80:b9:8f:46:36:c9:7d:e3:0a:
f8:29:8c:e8:a3:1a:21:e9:c7:b7:a1:39:ea:4c:c2:ae:24:6d:
4d:c1:bd:1b:86:2d:75:58:2e:11:fb:f8:c5:2f:75:59:f9:e6:
9a:f1:a6:f3:96:66:53:be:ea:a2:a8:4f:4f:7a:97:30:5f:c1:
2a:28:85:1e:62:31:95:b0:82:45:30:66:bd:70:bd:9d:dc:e8:
63:38:85:9c:b3:1f:fc:e1:d4:87:dc:a0:0a:38:b7:c5:8a:26:
64:c6:4b:67:94:0b:ed:1b:3c:52:11:dc:78:c7:fc:2b:df:44:
60:49:54:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:32 2025 by rpki-client