Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1BMU_UFc0GLJl9Xs209A_8SaQQY.roa
File: 1BMU_UFc0GLJl9Xs209A_8SaQQY.roa (raw, json)
Hash identifier: euceMaoq45PiBlU74yNByRXgbSHxnN4AvKJOwW/onos=
Subject key identifier: D4:13:14:FD:41:5C:D0:62:C9:97:D5:EC:DB:4F:40:FF:C4:9A:41:06
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B21291F178373C0321239334BFEAF3
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1BMU_UFc0GLJl9Xs209A_8SaQQY.roa
Signing time: Wed 01 Jan 2025 11:48:25 +0000
ROA not before: Wed 01 Jan 2025 11:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34903
IP address blocks: 82.177.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:12:91:f1:78:37:3c:03:21:23:93:34:bf:ea:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d41314fd415cd062c997d5ecdb4f40ffc49a4106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:36:c0:7c:7a:08:cd:ca:59:9a:75:ae:e0:a3:
c3:22:10:35:26:54:32:58:7a:85:a2:73:51:fe:12:
f0:95:9f:76:a5:9d:5e:b8:ce:3e:bf:dd:d5:f1:8a:
69:7b:e3:52:7a:f1:a4:17:8e:4d:a1:68:50:19:a0:
25:bb:74:61:dc:8f:98:8c:30:af:e0:42:3f:47:07:
c9:e9:20:fe:4e:a6:b0:55:45:f1:21:36:19:fb:01:
9a:61:98:a7:c4:3e:fd:1a:e6:4a:fe:a9:db:23:23:
bd:39:5d:45:62:c3:a9:93:3a:a4:3c:19:a8:f0:05:
6a:33:75:5c:33:da:3e:81:96:f5:1b:79:74:7a:57:
93:6f:3b:c4:ef:22:58:e2:57:9b:f1:87:a3:3d:78:
e1:01:c7:69:f6:5c:7b:fb:e9:70:b9:19:c5:f6:1c:
df:64:93:ad:d7:37:ad:86:6b:da:05:9e:39:e0:42:
fd:15:7e:37:14:55:a9:3c:fc:bd:5b:e3:7c:b6:01:
2e:0d:34:27:35:6d:7a:90:aa:4a:ed:23:4b:ed:d7:
6c:1c:cd:c0:a4:9d:42:18:cd:e7:aa:f2:8b:2d:b8:
ca:88:df:a2:69:e5:ba:1d:c9:4b:45:66:9f:64:b0:
66:b5:37:b4:31:27:b3:53:a2:4d:cc:52:3b:67:0c:
b4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:13:14:FD:41:5C:D0:62:C9:97:D5:EC:DB:4F:40:FF:C4:9A:41:06
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/1BMU_UFc0GLJl9Xs209A_8SaQQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.18.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e9:bb:0e:39:49:02:7d:cd:e2:ba:b6:6c:a0:1f:cb:0d:ee:
79:b6:55:e9:d3:ac:52:62:a9:a3:c8:1b:8e:6f:7a:de:8a:1b:
06:28:4e:d0:63:64:af:9e:c1:4c:4c:86:f8:a8:8a:03:62:a4:
6a:f8:58:bb:65:e3:e1:d4:bb:84:62:31:4f:d0:dd:0c:62:27:
b1:df:1d:8c:e7:7b:8e:f8:fe:7b:8e:ad:94:af:f0:31:db:ea:
34:70:49:ef:de:88:3d:56:51:ad:d3:a4:e9:cb:b5:40:ad:40:
e8:4c:46:28:e1:74:47:ff:51:6e:77:39:01:77:21:e8:83:20:
c0:52:04:93:74:d9:c1:ea:d1:37:0d:92:db:3f:d4:c3:bb:29:
40:26:62:78:f2:e6:d9:82:ee:c7:a5:4a:b8:a4:19:16:dc:43:
c7:bf:aa:96:b9:12:f5:6d:56:22:fe:81:91:68:dd:55:07:37:
c3:55:e0:62:15:d2:3d:a7:9a:3c:52:b1:ba:0f:a8:13:72:ad:
b5:28:b7:79:85:dc:86:a6:fa:1c:d3:a6:59:bf:1a:51:36:bc:
ce:f9:f7:70:4d:b6:7f:8b:1a:7b:d9:18:5f:89:0d:d0:4c:61:
4f:2e:95:2c:b9:e3:31:a2:2a:6d:00:56:6b:f3:c3:da:9b:14:
73:cd:ae:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:00 2025 by rpki-client