Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/UuZFQqi3ukxwbF82Ta752QG1vms.roa
File: UuZFQqi3ukxwbF82Ta752QG1vms.roa (raw, json)
Hash identifier: bLMhjFmPPAx2mp/pyvyhhLXt33QVXoALLkTe8WypOpk=
Subject key identifier: 52:E6:45:42:A8:B7:BA:4C:70:6C:5F:36:4D:AE:F9:D9:01:B5:BE:6B
Certificate issuer: /CN=b4413b5e41e0141c49dbf3f9f117a7f467aaa2b9
Certificate serial: 0186E5B19A54EB3BB0A57E21DD88339E8D9C
Authority key identifier: B4:41:3B:5E:41:E0:14:1C:49:DB:F3:F9:F1:17:A7:F4:67:AA:A2:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEE7XkHgFBxJ2_P58Ren9Geqork.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/UuZFQqi3ukxwbF82Ta752QG1vms.roa
Signing time: Wed 15 Mar 2023 14:34:27 +0000
ROA not before: Wed 15 Mar 2023 14:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30736
IP address blocks: 82.103.128.0/18 maxlen: 18
2a00:9080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:b1:9a:54:eb:3b:b0:a5:7e:21:dd:88:33:9e:8d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4413b5e41e0141c49dbf3f9f117a7f467aaa2b9
Validity
Not Before: Mar 15 14:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52e64542a8b7ba4c706c5f364daef9d901b5be6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:69:2e:c0:8e:71:e3:fc:83:bb:76:19:33:a7:
57:7c:46:9d:1a:59:8d:10:7b:09:57:c4:cf:66:f6:
0c:4d:b6:4f:13:bf:24:16:80:3d:e0:ca:a9:e7:b4:
81:b8:a3:28:40:fd:a7:4a:2d:ce:54:91:b3:eb:c3:
56:71:ce:3c:ac:8a:e7:e5:c5:e3:e4:b7:90:91:a1:
21:fa:3e:f5:1f:e8:5b:9d:3a:47:e3:d4:bc:19:c0:
9c:f6:24:2b:80:f1:82:7c:d3:82:6e:5a:78:c3:ab:
04:1f:fa:86:47:60:ad:f0:95:9d:1f:d2:aa:38:00:
f3:43:f2:a2:17:d4:2f:1f:2c:48:bb:cb:62:6f:fa:
d9:a3:5e:e6:b5:77:00:87:75:30:a8:9c:5f:62:16:
52:f6:0f:cc:97:e0:13:15:ac:06:fd:10:fc:3d:15:
12:e2:19:2b:fe:9e:7a:16:96:30:56:67:0c:8b:1e:
71:02:60:8a:33:e5:64:30:27:1d:5a:08:44:e8:68:
a5:30:74:b9:53:a1:64:de:6b:ed:ef:ee:3a:2d:a3:
7a:5e:9f:dc:61:74:99:f4:93:8a:4b:ff:7b:e4:68:
91:b2:92:ed:62:d9:d0:11:1a:d2:4b:38:6d:c3:5a:
85:72:b0:4a:10:dd:53:0f:19:9b:da:7c:67:80:8c:
57:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E6:45:42:A8:B7:BA:4C:70:6C:5F:36:4D:AE:F9:D9:01:B5:BE:6B
X509v3 Authority Key Identifier:
keyid:B4:41:3B:5E:41:E0:14:1C:49:DB:F3:F9:F1:17:A7:F4:67:AA:A2:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEE7XkHgFBxJ2_P58Ren9Geqork.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/UuZFQqi3ukxwbF82Ta752QG1vms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/tEE7XkHgFBxJ2_P58Ren9Geqork.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.128.0/18
IPv6:
2a00:9080::/32
Signature Algorithm: sha256WithRSAEncryption
51:53:6e:28:ba:e2:2a:0b:32:d2:39:74:33:e0:8f:bb:25:86:
a3:4d:18:f4:81:9e:1c:ab:80:73:3c:ac:92:c5:dc:b8:84:83:
fa:4f:49:02:c9:ab:9b:87:18:fb:ab:b7:cf:ee:8f:0d:ff:d8:
51:d6:e6:ed:22:09:be:20:51:38:8a:b3:d7:59:c5:6a:4c:94:
7b:aa:f1:75:91:08:32:90:9b:c8:96:cd:72:8e:96:8f:15:1a:
44:ff:b4:29:52:53:22:0d:53:6b:13:8b:34:28:5a:84:7f:ea:
5d:bc:e7:e7:54:38:73:35:60:05:ee:2c:50:7f:42:e6:85:0f:
f4:af:ce:9d:9f:11:61:ac:11:f5:2b:ef:e7:0e:32:26:71:68:
f7:28:78:71:2b:99:71:cc:47:22:06:01:e3:35:a1:60:28:c2:
38:e3:6a:12:b6:d2:32:dd:32:54:e7:e8:27:89:12:8a:06:3c:
e2:94:02:95:5f:fc:2e:75:38:e7:1a:9b:cd:c3:53:d9:0e:eb:
4e:50:62:1c:d2:52:65:b1:d5:2f:c5:54:69:66:e3:c7:39:0f:
21:f1:b7:67:2b:1a:89:eb:06:53:6c:c7:f5:f1:ba:da:be:78:
69:8b:cc:35:40:3e:a1:28:8d:54:6f:9e:44:17:80:bf:d0:ef:
ed:c3:1f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:42 2025 by rpki-client