Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/43acdf-ac0d-45b2-9127-b181140e5c97/1/1-18u3Xpa75SlHKaElYa4tyeDjLY.roa
File: 1-18u3Xpa75SlHKaElYa4tyeDjLY.roa (raw, json)
Hash identifier: D8hBOy6SdiLlxRp27QVYgRrHCpNCBxj51NlrKWw9VKw=
Subject key identifier: FB:5F:2E:DD:7A:5A:EF:94:A5:1C:A6:84:95:86:B8:B7:27:83:8C:B6
Certificate issuer: /CN=b00bc3444c7690f6c7ab79dc1c4f4340ba0cc9b4
Certificate serial: 76CB9D
Authority key identifier: B0:0B:C3:44:4C:76:90:F6:C7:AB:79:DC:1C:4F:43:40:BA:0C:C9:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sAvDREx2kPbHq3ncHE9DQLoMybQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/43acdf-ac0d-45b2-9127-b181140e5c97/1/1-18u3Xpa75SlHKaElYa4tyeDjLY.roa
Signing time: Sat 01 Jan 2022 01:50:41 +0000
ROA not before: Sat 01 Jan 2022 01:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7785373 (0x76cb9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b00bc3444c7690f6c7ab79dc1c4f4340ba0cc9b4
Validity
Not Before: Jan 1 01:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb5f2edd7a5aef94a51ca6849586b8b727838cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:50:90:63:ab:6c:e5:ca:07:72:d0:74:27:0b:
de:a8:78:e4:33:79:bd:a3:e6:96:92:a8:b3:d9:2b:
e4:f6:9b:bb:b2:c2:1a:2f:cb:c9:31:3f:59:25:9a:
e9:41:98:86:97:3f:4f:06:3a:57:e5:24:88:8c:45:
4c:d1:6f:cf:78:a0:87:d3:a9:d4:25:fe:e8:ad:6f:
60:d2:f8:af:40:8b:b3:b6:24:20:fb:0c:ec:81:3a:
f3:18:89:96:7d:41:b6:18:c4:1b:79:05:db:68:be:
30:66:ba:16:5f:f9:59:09:b1:d0:d0:1f:79:d2:59:
40:86:97:0b:7e:76:18:b1:15:5b:4d:46:0e:d2:78:
8c:87:d8:e0:4a:05:2c:2a:23:c0:81:5a:1d:91:4a:
5d:f0:ba:15:cc:e2:45:28:49:4b:7f:20:3e:2f:df:
e6:63:02:84:69:b3:9c:c1:6c:68:67:c3:ef:1a:20:
c6:ce:9e:e7:84:1b:30:97:3b:41:e4:1a:7c:5c:bc:
27:ab:ff:cd:1d:6d:6e:5f:49:48:3e:fb:75:2b:39:
10:76:5f:7a:09:fb:74:e6:c7:0a:b6:f3:3a:d2:09:
1c:76:02:b0:4f:e3:c0:e4:4e:d1:7c:2c:5c:8d:28:
df:b5:8d:45:62:94:29:b0:3e:53:b8:c3:10:7f:cc:
c0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5F:2E:DD:7A:5A:EF:94:A5:1C:A6:84:95:86:B8:B7:27:83:8C:B6
X509v3 Authority Key Identifier:
keyid:B0:0B:C3:44:4C:76:90:F6:C7:AB:79:DC:1C:4F:43:40:BA:0C:C9:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sAvDREx2kPbHq3ncHE9DQLoMybQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/43acdf-ac0d-45b2-9127-b181140e5c97/1/1-18u3Xpa75SlHKaElYa4tyeDjLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/43acdf-ac0d-45b2-9127-b181140e5c97/1/sAvDREx2kPbHq3ncHE9DQLoMybQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.26.0/24
Signature Algorithm: sha256WithRSAEncryption
14:aa:8a:1f:04:eb:fa:28:64:20:e7:a9:84:f7:77:4f:fc:cc:
d6:e1:ac:ca:d6:c6:cf:99:8f:8a:d9:63:54:0c:76:c1:05:cb:
19:01:c4:37:d7:fe:f4:45:e8:89:96:37:72:73:d3:64:c4:26:
9a:52:a9:e4:05:50:77:a7:75:d6:05:14:4f:cf:d5:00:7f:fa:
b7:f0:0e:52:9f:c2:5a:1a:c6:d6:5e:d3:3f:98:5d:87:af:49:
5e:e9:d7:eb:dd:26:fe:c2:8e:80:eb:f5:e1:fc:24:9c:1d:92:
18:77:13:37:bf:9c:d4:d4:84:f6:cd:fe:b0:a8:bc:3b:5b:f3:
05:ef:2c:42:db:b9:c9:eb:33:d5:27:df:b0:a6:ef:02:3a:f2:
14:32:f8:7c:10:4e:62:42:ba:c0:3e:94:49:7e:24:25:0a:bf:
26:05:9b:ee:17:7f:f3:20:7f:c3:b5:90:90:82:e6:77:51:69:
7e:b2:31:9b:01:e2:98:bf:9c:1d:7d:e3:f9:96:af:b9:66:f8:
5e:16:2d:10:6f:ff:82:8b:8e:32:cf:18:17:73:ac:e6:92:ea:
5c:8d:3c:b2:89:17:20:05:1f:07:00:b9:28:50:0b:ad:3e:a7:
f0:a0:96:cf:5f:8e:e6:9f:c9:ec:fc:df:e5:ef:bc:0f:e3:f4:
3f:1f:7a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:14:01 2025 by rpki-client