Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/1-ipe7nXIhHNh3ueT9QeyYAnQkbw.roa
File: 1-ipe7nXIhHNh3ueT9QeyYAnQkbw.roa (raw, json)
Hash identifier: 53dY8tuZ64PKE7eJer/VJypfk2C5mcv97GcKwpoFSGg=
Subject key identifier: FA:2A:5E:EE:75:C8:84:73:61:DE:E7:93:F5:07:B2:60:09:D0:91:BC
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 103CEA5B
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/1-ipe7nXIhHNh3ueT9QeyYAnQkbw.roa
Signing time: Fri 28 Jan 2022 15:20:04 +0000
ROA not before: Fri 28 Jan 2022 15:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12306
IP address blocks: 82.98.127.0/24 maxlen: 24
213.83.0.0/18 maxlen: 32
82.98.64.0/18 maxlen: 32
212.19.32.0/19 maxlen: 32
2a02:2e0::/29 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:cd4e::/48 maxlen: 48
2a02:2e0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272427611 (0x103cea5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 28 15:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa2a5eee75c8847361dee793f507b26009d091bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ca:2b:5b:ce:96:fd:1f:e9:d6:c7:a8:54:b1:
9e:5b:e6:02:49:ee:d6:7f:a9:b7:fb:a4:8b:0a:f1:
f1:1b:48:56:fe:73:9c:b6:da:99:f5:21:1f:59:34:
3b:4f:55:ff:39:de:52:59:7b:81:9e:65:7d:e0:e4:
05:04:b0:d0:0c:a5:66:fd:e6:85:38:8b:00:0c:e5:
70:a0:0b:ea:28:3f:83:05:77:38:69:1d:88:35:a6:
5e:f6:db:4c:40:84:1d:71:c2:17:d2:41:65:1b:49:
7b:e7:4e:46:7b:2a:ca:57:2f:36:4d:fe:16:59:9d:
fc:3a:5b:c8:0f:29:da:fd:9c:d8:17:66:77:78:e9:
c7:fd:79:18:e0:40:5d:b6:fd:e2:1b:9f:c0:a9:82:
f1:91:a1:d6:6a:9b:b4:81:ce:63:46:09:26:00:b0:
62:79:99:76:c3:cb:a4:5d:8c:b1:96:11:61:83:6e:
9e:5d:78:08:e5:9e:a3:6d:4a:c6:b1:7d:98:f2:bb:
97:19:6c:0b:cc:50:cd:8b:d7:5f:3a:e4:90:55:51:
28:3c:54:0d:a7:80:bd:5f:88:62:45:35:87:33:dd:
19:54:ee:aa:c3:60:a9:89:e4:45:6d:39:96:e6:cd:
ec:b7:eb:0b:0d:27:2c:49:1b:b4:e9:68:6a:f1:00:
ac:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2A:5E:EE:75:C8:84:73:61:DE:E7:93:F5:07:B2:60:09:D0:91:BC
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/1-ipe7nXIhHNh3ueT9QeyYAnQkbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.64.0/18
212.19.32.0/19
213.83.0.0/18
IPv6:
2a02:2e0::/29
Signature Algorithm: sha256WithRSAEncryption
66:a4:ec:bb:1f:e4:78:f0:62:d6:21:e7:df:7f:d8:20:5e:ac:
fe:bc:4d:78:31:37:46:11:cf:d3:23:66:6a:02:7d:83:2f:49:
4a:c4:ac:e2:18:b8:66:0c:e5:80:b7:44:30:d7:53:b8:45:86:
de:e3:c7:03:45:b4:59:bd:bb:7f:76:6e:26:85:ce:7b:3f:ab:
5b:b5:41:d8:d8:33:35:43:95:b2:9f:73:c7:4e:96:3d:e7:c8:
89:7f:40:19:63:db:79:2a:a7:8c:c8:cb:1f:6a:d0:61:98:a3:
f9:69:6f:b7:cf:77:07:a9:c6:7b:43:71:94:de:50:bb:26:c9:
5e:7e:a5:85:be:3f:2d:e8:3f:60:52:c7:5e:7d:f3:92:f0:04:
f3:23:2f:42:28:ef:a4:68:74:ee:00:38:4a:99:a7:41:8b:7d:
f1:2a:29:8d:50:20:3b:f6:be:b0:2d:5a:49:4b:cf:28:72:c4:
56:c0:5c:43:f0:f4:32:74:40:1b:e6:67:c9:ea:64:76:25:29:
0b:b6:85:3b:90:ab:e1:a7:52:3e:b3:d3:30:eb:41:dd:4c:2c:
69:73:c1:cf:30:8f:00:50:fc:f7:d2:2a:01:39:0a:33:e3:26:
8f:8e:8f:62:6e:f0:33:3f:3f:7c:a5:7c:be:d4:e4:e8:ef:e3:
69:97:a9:a0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:45 2025 by rpki-client