Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/nnu54qaAmQ6pvabzFz6Up-pPH0I.roa
File: nnu54qaAmQ6pvabzFz6Up-pPH0I.roa (raw, json)
Hash identifier: kBmeew+tYf4WAQZ+Fc361sy82Oa/VLosP5CcZUUWBvc=
Subject key identifier: 9E:7B:B9:E2:A6:80:99:0E:A9:BD:A6:F3:17:3E:94:A7:EA:4F:1F:42
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01942824177920B733856B31D0E47AE61545
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/nnu54qaAmQ6pvabzFz6Up-pPH0I.roa
Signing time: Thu 02 Jan 2025 17:50:41 +0000
ROA not before: Thu 02 Jan 2025 17:50:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211826
IP address blocks: 82.163.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:17:79:20:b7:33:85:6b:31:d0:e4:7a:e6:15:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 17:50:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e7bb9e2a680990ea9bda6f3173e94a7ea4f1f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:79:2b:7c:50:be:88:32:b5:c3:e3:ef:b6:9d:
72:f5:49:91:bf:2e:1a:9c:60:28:37:b9:88:4d:28:
cf:c3:30:58:d9:08:e3:2b:ec:5e:f6:d8:30:89:69:
e7:da:18:65:a8:86:23:c7:f5:86:aa:47:ee:f3:b2:
1d:6d:1b:ab:78:c0:24:b1:65:a2:b9:e4:6b:ad:dd:
b3:3d:4a:28:6e:03:61:b0:32:c7:5f:7b:cd:74:56:
b7:6f:58:17:4a:ce:b4:71:77:be:22:47:6d:71:17:
9c:9a:2c:3c:16:2a:03:1e:dd:e8:79:90:1f:c8:5c:
36:80:f2:9a:cb:8c:9f:64:83:3a:5e:75:ff:a2:7a:
02:c9:40:22:2a:c1:83:e7:62:e0:e6:ee:e4:8c:3e:
43:76:21:ac:dc:ab:a7:fd:63:f9:4c:13:a3:4e:15:
a4:d3:ad:bc:b9:12:0c:e6:de:dd:f8:91:f4:f1:f4:
d2:f1:43:2a:59:8d:9f:49:a6:c6:32:5a:4c:4d:66:
91:4c:a4:7b:4e:d6:ea:16:01:a2:cb:31:37:91:9d:
c9:ca:b1:75:36:5f:7c:09:f0:cb:69:f9:1e:a7:0a:
41:fc:d9:e0:62:b9:35:23:7a:8e:dc:03:4d:22:20:
e0:8a:99:6e:0d:a2:be:00:8b:a5:67:d4:f2:20:aa:
9d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7B:B9:E2:A6:80:99:0E:A9:BD:A6:F3:17:3E:94:A7:EA:4F:1F:42
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/nnu54qaAmQ6pvabzFz6Up-pPH0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.54.0/23
Signature Algorithm: sha256WithRSAEncryption
17:29:be:c3:fa:cb:7f:25:83:5b:1c:88:6d:80:e2:3e:80:5f:
3b:d2:2e:39:12:cf:63:ed:aa:60:6d:61:79:41:a6:05:6c:01:
6e:9c:f2:99:0a:2c:49:2f:d8:d4:18:5b:0f:3b:52:8c:eb:81:
15:47:82:57:13:ce:b2:b7:8f:85:7c:85:79:24:2f:6c:b9:01:
43:f6:54:aa:f8:11:72:6d:c9:e0:5a:81:cd:76:04:b6:b8:db:
ee:29:ae:c5:6e:3f:ca:a2:09:7f:a4:65:b2:71:87:15:48:14:
4f:4a:d7:0e:e9:72:2b:3d:4c:61:e0:dc:10:15:e5:72:83:5a:
4d:6b:49:08:f0:55:a4:f6:22:94:3b:44:ab:89:a7:9b:bb:01:
df:56:1c:68:36:58:d1:85:f1:51:56:2a:f0:4a:eb:5d:0d:26:
46:4e:28:9d:14:3f:ec:27:61:3a:6a:41:20:50:a8:08:12:e3:
b9:d1:32:15:66:95:f3:42:71:7a:49:f6:8d:d8:25:2b:d9:66:
e3:77:83:c6:20:e9:26:b9:c3:2a:2c:c0:f8:45:b7:f6:e2:57:
75:f5:ea:c0:d6:4e:0d:b3:dc:bf:87:27:0d:fd:67:ad:06:9d:
bd:8e:19:b5:33:a1:e2:d8:91:a3:0b:87:7d:8e:4f:ec:63:bc:
aa:97:c7:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:58:43 2025 by rpki-client