Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/xwyZjB6TloHHi3Vca3VpZL7RV0g.roa
File: xwyZjB6TloHHi3Vca3VpZL7RV0g.roa (raw, json)
Hash identifier: j8UDPThTOQdUmBpXEqkFodfUG1JQv0jfGnqsSBTzFp0=
Subject key identifier: C7:0C:99:8C:1E:93:96:81:C7:8B:75:5C:6B:75:69:64:BE:D1:57:48
Certificate issuer: /CN=b4413b5e41e0141c49dbf3f9f117a7f467aaa2b9
Certificate serial: 01843790884AC25D0FA25F377CCF17924ABB
Authority key identifier: B4:41:3B:5E:41:E0:14:1C:49:DB:F3:F9:F1:17:A7:F4:67:AA:A2:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEE7XkHgFBxJ2_P58Ren9Geqork.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/xwyZjB6TloHHi3Vca3VpZL7RV0g.roa
Signing time: Wed 02 Nov 2022 08:58:49 +0000
ROA not before: Wed 02 Nov 2022 08:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30736
IP address blocks: 82.103.128.0/18 maxlen: 18
82.103.144.0/24 maxlen: 24
2a00:9080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:90:88:4a:c2:5d:0f:a2:5f:37:7c:cf:17:92:4a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4413b5e41e0141c49dbf3f9f117a7f467aaa2b9
Validity
Not Before: Nov 2 08:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c70c998c1e939681c78b755c6b756964bed15748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:7e:c8:3d:6a:35:4c:93:f5:fe:96:08:55:
02:ce:a1:b1:74:7e:c8:04:d4:15:a6:a6:63:ac:fa:
e1:2d:87:8f:ac:21:e8:64:1a:cf:b0:13:76:20:d3:
74:06:d3:cd:9c:84:fa:8a:b3:24:ad:6e:bc:32:d3:
d0:2a:05:10:eb:db:b4:1a:a8:fc:6c:28:12:2b:ba:
50:3f:e7:0d:a3:25:5a:43:54:91:24:56:e0:63:73:
cb:c3:51:1b:eb:67:60:4f:97:64:a2:b7:f6:25:8c:
3f:68:b5:f4:34:90:b9:d5:96:dd:a2:89:57:c9:a8:
df:b0:02:53:74:00:a4:88:e8:2d:b4:70:c1:c3:e9:
25:65:05:fc:b7:70:90:54:46:e8:47:8f:b5:a5:d3:
37:75:7f:7d:a4:5c:33:ca:7d:fb:41:a4:af:e8:3d:
db:88:4d:69:3e:55:fb:5b:ce:7f:f6:80:c8:86:13:
eb:8a:fe:2a:f3:ef:e3:63:17:a3:5d:b3:fd:e4:bc:
bd:38:f7:e5:02:67:3a:32:3b:ce:3e:b1:2c:57:76:
0e:14:0a:7a:44:ae:02:39:58:58:72:16:45:3f:75:
6b:e3:31:a7:3f:cf:6f:90:a9:08:73:2b:50:c1:83:
f3:81:36:ec:50:b4:a6:28:79:8d:4a:9d:d1:1e:cd:
d3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0C:99:8C:1E:93:96:81:C7:8B:75:5C:6B:75:69:64:BE:D1:57:48
X509v3 Authority Key Identifier:
keyid:B4:41:3B:5E:41:E0:14:1C:49:DB:F3:F9:F1:17:A7:F4:67:AA:A2:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEE7XkHgFBxJ2_P58Ren9Geqork.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/xwyZjB6TloHHi3Vca3VpZL7RV0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1f1c52-26a3-4370-a453-ec94770042d7/1/tEE7XkHgFBxJ2_P58Ren9Geqork.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.128.0/18
IPv6:
2a00:9080::/32
Signature Algorithm: sha256WithRSAEncryption
0c:2a:ca:e0:ae:e9:91:66:d7:f4:43:7a:85:80:28:5a:2b:75:
de:43:26:6b:8d:38:4c:9a:45:a8:02:ef:5e:77:b0:7c:57:68:
c5:ae:4b:80:f1:ba:38:88:9d:c3:6b:81:b5:20:43:a5:91:bd:
20:46:e6:09:75:49:70:c1:fa:9b:ac:86:bc:a9:b4:fa:3c:e8:
a8:7d:b8:e0:da:2e:01:1f:c0:33:a6:83:e4:54:2b:a5:1b:b8:
d7:cd:fc:51:ca:8a:3e:8a:1a:e9:02:b6:df:79:4c:7b:3c:a3:
0e:a7:8b:19:20:62:c8:a1:5c:0d:d2:c6:b1:60:f5:e9:1d:83:
ae:08:33:fe:92:df:68:48:27:3d:6d:2a:09:a2:35:94:ac:70:
f9:da:e2:77:b1:16:ec:d8:d7:6d:6d:bd:71:ef:8e:8f:80:84:
47:d7:8e:44:65:94:20:d8:b4:63:b2:dd:ec:18:ea:91:38:62:
4b:08:ad:38:e7:e4:7e:27:23:1e:7b:b3:9c:10:4c:ae:0f:d1:
9f:38:e3:21:84:52:bb:68:ed:ad:bd:06:5c:df:0b:1b:01:67:
fa:c0:d9:f1:77:41:f6:55:3b:93:0a:f8:2d:f1:52:84:b8:de:
d0:f6:67:75:c8:55:38:c5:5e:f9:fb:c5:17:55:27:0b:7d:26:
8a:b9:d2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:30 2025 by rpki-client