Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/3uktFtpaNvG09pzLEF0pO41slxM.roa
File: 3uktFtpaNvG09pzLEF0pO41slxM.roa (raw, json)
Hash identifier: dGxeBQeDm2tktyAf8QqaXzgujdsSq+hCp/tBsr2DnFc=
Subject key identifier: DE:E9:2D:16:DA:5A:36:F1:B4:F6:9C:CB:10:5D:29:3B:8D:6C:97:13
Certificate issuer: /CN=8810fc3198a0ab99647877dbe5725e05cee013f0
Certificate serial: 8A6046
Authority key identifier: 88:10:FC:31:98:A0:AB:99:64:78:77:DB:E5:72:5E:05:CE:E0:13:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBD8MZigq5lkeHfb5XJeBc7gE_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/3uktFtpaNvG09pzLEF0pO41slxM.roa
Signing time: Tue 08 Feb 2022 17:20:01 +0000
ROA not before: Tue 08 Feb 2022 17:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210118
IP address blocks: 217.198.184.0/24 maxlen: 24
2a11:f940::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9068614 (0x8a6046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8810fc3198a0ab99647877dbe5725e05cee013f0
Validity
Not Before: Feb 8 17:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dee92d16da5a36f1b4f69ccb105d293b8d6c9713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e4:e3:45:c1:7a:f1:d8:01:27:ab:bb:91:27:
c6:45:0d:de:77:32:3a:0f:bc:85:c8:c9:6d:25:95:
7a:03:7d:93:99:1e:79:bc:0f:98:cf:32:81:dc:b3:
18:57:65:98:f0:c2:ce:72:24:a2:97:d5:65:79:1b:
17:ef:c6:e3:d1:9a:5a:e1:0c:bd:02:54:85:e9:f1:
a3:04:02:f2:e4:70:c7:a9:bf:39:8a:9a:ad:2c:5e:
b9:18:a3:32:d4:67:2e:68:ef:e9:4c:46:99:fe:e0:
08:40:d4:14:4a:75:ba:f3:b4:79:5b:0f:5f:0e:00:
f7:ae:35:47:65:71:5f:9a:df:9d:6d:9d:56:ce:b6:
61:13:76:65:ce:bb:44:e7:e9:1d:ca:3a:fd:35:a5:
af:55:19:b5:a5:d0:69:25:55:e3:90:13:bb:d8:a2:
db:4a:1b:9b:98:f3:2c:d9:4b:6f:d9:31:8b:16:7c:
ce:df:56:cb:34:59:83:5d:2f:59:e7:71:28:ad:d7:
23:ba:a2:bf:59:44:9f:52:a0:81:82:6b:87:55:94:
64:8c:43:7e:30:fc:be:f0:32:0f:02:9d:5c:9d:33:
92:48:bd:76:92:3c:02:2b:d0:75:dc:46:ab:0c:56:
34:af:d1:6a:6b:6a:2b:65:3e:68:38:98:73:64:e6:
36:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E9:2D:16:DA:5A:36:F1:B4:F6:9C:CB:10:5D:29:3B:8D:6C:97:13
X509v3 Authority Key Identifier:
keyid:88:10:FC:31:98:A0:AB:99:64:78:77:DB:E5:72:5E:05:CE:E0:13:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBD8MZigq5lkeHfb5XJeBc7gE_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/3uktFtpaNvG09pzLEF0pO41slxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cf1ffd-134d-4382-8e59-4a08d5a1c71f/1/iBD8MZigq5lkeHfb5XJeBc7gE_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.184.0/24
IPv6:
2a11:f940::/29
Signature Algorithm: sha256WithRSAEncryption
4f:48:18:f0:c3:57:42:04:c7:eb:ae:64:99:bb:00:70:90:35:
57:ae:4d:07:ca:b8:93:f3:ea:2e:cd:87:30:5e:a9:ae:6a:eb:
7f:87:c3:9a:3d:19:93:e3:30:be:aa:3a:49:9e:26:9a:9e:71:
bd:9d:59:d6:4f:fd:f7:08:f3:50:85:46:e6:cc:6c:95:b8:ef:
41:6a:46:14:9c:31:a5:c4:c3:ce:95:71:29:71:23:b6:7f:c0:
ed:19:89:9d:c4:62:9e:f6:8c:59:e2:0b:73:43:69:11:16:d5:
2b:0f:4f:c5:58:fb:62:a1:6b:97:d2:7c:41:f2:22:9b:8e:bd:
6a:b0:9c:6d:50:57:e3:a2:85:f7:1f:2d:5c:df:ca:42:36:02:
e9:aa:6a:97:5f:de:15:17:43:b7:6e:55:65:9b:49:e2:0e:20:
fd:22:41:d5:9a:ee:dd:ab:f5:45:6b:88:e7:17:5a:93:b3:f2:
2a:6c:7b:0f:41:f4:4a:b4:75:c3:90:43:b4:1b:e6:0f:44:3f:
49:02:e7:37:ad:76:82:2f:09:b9:3a:69:6f:72:ba:37:ad:8b:
72:8a:9e:50:27:2d:ea:3b:95:8e:ce:29:6f:43:67:43:4b:bb:
a9:6f:12:43:c9:ef:f8:c1:5e:2f:36:12:18:c7:d8:ce:8a:e5:
58:df:d5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:23:40 2025 by rpki-client