Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/P2NMTLanIhtTnk7DTAB3xSEoNDk.roa
File: P2NMTLanIhtTnk7DTAB3xSEoNDk.roa (raw, json)
Hash identifier: Mpurz8bJgJrvgOXTPrJcFBl36QwCX9Ima/1qlEOfUwE=
Subject key identifier: 3F:63:4C:4C:B6:A7:22:1B:53:9E:4E:C3:4C:00:77:C5:21:28:34:39
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3B0717A9
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/P2NMTLanIhtTnk7DTAB3xSEoNDk.roa
Signing time: Wed 16 Feb 2022 07:30:27 +0000
ROA not before: Wed 16 Feb 2022 07:30:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56373
IP address blocks: 82.177.12.0/23 maxlen: 23
82.177.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 990320553 (0x3b0717a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Feb 16 07:30:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f634c4cb6a7221b539e4ec34c0077c521283439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1c:86:a5:9c:01:54:04:39:ca:74:14:89:bb:
c4:0e:95:44:0f:53:6a:d4:77:75:5c:1c:1c:29:d8:
ea:1e:54:d7:8a:86:92:8d:50:0e:0c:55:d0:36:85:
fd:2a:0c:b4:08:43:c1:15:35:53:47:b4:5c:c0:8e:
c6:f7:15:05:4a:bc:57:4d:21:60:1a:a1:d4:06:6d:
7f:1d:bf:ab:b6:0a:84:b1:75:f2:02:44:7f:8e:ca:
63:0a:b1:6e:c8:f7:39:e9:45:9e:81:72:7e:8f:24:
04:f8:ce:79:66:9d:e2:8a:f7:64:d1:48:e7:bf:91:
a4:f3:23:d9:9a:f6:08:e4:d1:b7:8e:e2:20:fe:56:
6e:a7:97:c3:0d:2f:b1:4d:75:d6:2d:09:d2:83:5f:
16:f2:63:fe:f8:8b:24:39:1e:b5:bc:88:16:f2:02:
dd:d7:71:1b:2e:28:ba:7a:76:e2:8d:55:36:75:af:
c3:5a:f8:ca:63:1b:3b:98:70:ef:c2:1b:71:ac:0a:
78:4f:38:76:a4:70:99:83:ea:fd:4c:7d:57:55:19:
62:1f:f8:8f:98:e0:ea:76:a3:03:1f:28:0d:7e:78:
d9:e0:8a:fc:93:6f:ad:6c:be:cc:1f:69:f9:d9:f2:
ff:98:f5:9f:53:d1:f2:ec:8a:16:0a:ee:65:66:89:
1d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:63:4C:4C:B6:A7:22:1B:53:9E:4E:C3:4C:00:77:C5:21:28:34:39
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/P2NMTLanIhtTnk7DTAB3xSEoNDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.12.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:2b:a9:b9:96:d1:24:dd:33:bd:21:65:1e:a4:e2:cc:dd:fe:
8e:d1:8b:e4:4c:b3:a8:4d:5b:ac:d8:45:86:e1:a2:f6:a3:57:
b7:c9:e7:35:b9:68:d8:30:5a:e9:60:a3:02:5c:ee:6f:ec:4b:
0f:c3:fd:83:8b:36:c3:bb:bf:5f:26:1a:1a:25:40:0f:94:71:
6e:4c:a7:9d:be:18:58:42:af:47:b4:3f:88:e0:82:27:99:a0:
21:24:6d:85:f1:03:d8:8a:23:d5:17:03:ec:98:af:a5:3a:5c:
55:86:fa:4e:d6:20:43:52:16:b0:dc:b5:59:a6:af:4e:29:e9:
a9:a2:9a:9b:f3:4a:6c:8b:18:c9:2c:d1:76:3d:78:01:ce:f6:
fd:c6:79:a1:fe:97:48:23:ed:12:dd:dc:07:71:06:2a:f2:dc:
fa:74:fa:67:b1:24:64:58:68:41:59:c5:21:09:fe:15:23:5f:
f7:f2:ca:fe:5b:85:e4:9c:19:af:a3:2f:27:d3:19:a7:65:43:
dc:40:ea:3f:aa:a9:fa:9b:c2:e4:20:7f:58:a1:56:bd:d5:10:
33:f3:99:42:a0:ea:fa:9e:69:2a:05:93:de:7b:7b:25:e7:72:
19:bd:19:86:0c:d4:e2:02:2b:6b:1c:05:f6:2d:fd:35:18:8e:
fe:03:e5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:43 2025 by rpki-client