Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/kTSydmHMROJMYF8kgYAtKUnfsnU.roa
File: kTSydmHMROJMYF8kgYAtKUnfsnU.roa (raw, json)
Hash identifier: YXOxAtMwn9z74GzIHXZa5W2+P8niC5MorXiXtNod3fU=
Subject key identifier: 91:34:B2:76:61:CC:44:E2:4C:60:5F:24:81:80:2D:29:49:DF:B2:75
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 019428241FB7167CC2FC25B064400E4F6C92
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/kTSydmHMROJMYF8kgYAtKUnfsnU.roa
Signing time: Thu 02 Jan 2025 17:50:43 +0000
ROA not before: Thu 02 Jan 2025 17:50:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20521
IP address blocks: 82.118.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:1f:b7:16:7c:c2:fc:25:b0:64:40:0e:4f:6c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 2 17:50:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9134b27661cc44e24c605f2481802d2949dfb275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a2:c1:21:f3:ec:44:78:82:ff:69:08:72:5c:
02:72:87:b8:d7:ba:37:27:4e:62:9c:27:12:d2:47:
fc:8a:7f:6b:57:d8:f8:bf:2a:62:83:b1:1f:d5:4d:
41:b7:a9:57:80:e7:97:dc:32:22:77:1d:e8:07:1a:
8f:07:74:44:4b:b8:46:4f:ab:db:4b:34:aa:2e:85:
cb:ca:ab:0e:11:6e:de:06:28:ae:6c:6f:13:15:76:
7a:04:42:81:10:7d:7a:23:bb:ef:66:b5:c4:34:df:
a0:5c:ba:10:2b:65:58:09:10:8a:07:cb:91:87:7b:
55:6c:da:72:17:78:a0:a6:16:ea:6f:f7:82:c4:c1:
2d:c1:fa:e6:a2:0f:64:af:71:d2:45:23:85:81:1c:
b2:1d:a7:18:66:3b:95:59:5e:35:4e:c1:89:04:30:
03:88:70:64:a4:d6:ce:29:ae:66:ae:a6:d7:34:4d:
4e:1d:e3:ff:03:20:79:7f:ea:d5:74:25:03:9d:e1:
93:51:ff:95:5d:b3:9c:d1:1b:31:c5:30:29:ea:e3:
b4:38:46:dd:10:94:1e:35:d0:fd:df:58:30:dc:e3:
20:a3:ea:80:c8:9a:db:35:7a:51:44:22:14:14:3a:
8c:60:56:c5:6a:aa:c9:0f:99:1c:2b:1a:bb:42:23:
19:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:B2:76:61:CC:44:E2:4C:60:5F:24:81:80:2D:29:49:DF:B2:75
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/kTSydmHMROJMYF8kgYAtKUnfsnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.228.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:29:e0:d4:e2:8e:77:f3:81:ad:47:41:e2:61:5d:51:b3:53:
23:b3:3d:89:83:d3:62:a2:0b:a9:ae:3c:78:eb:43:cf:6d:21:
ca:e3:5f:05:1e:66:b0:e9:13:a1:0e:4e:34:75:40:28:e6:65:
36:d4:20:c1:ee:3b:9d:c1:91:01:0e:af:ec:cf:75:90:d4:01:
57:1e:8e:90:09:cc:f1:d0:22:6e:d4:e2:d9:9f:63:99:de:dc:
d2:37:ea:bc:ca:95:ae:30:72:76:50:6f:fe:ba:81:57:7d:ec:
29:ee:19:99:4e:10:fb:32:83:54:d4:0f:c3:f1:11:d1:31:d7:
dd:56:80:fe:12:86:6c:b1:87:1f:63:05:71:b8:bb:1e:ce:b4:
98:1a:91:cc:b2:60:bc:0d:bb:96:96:98:7b:8d:ef:cb:8b:fe:
80:78:b9:eb:e2:1c:74:68:a3:e3:bc:e4:a0:fe:8d:b5:69:3c:
c1:be:e8:9b:1a:7a:3d:42:ed:11:08:84:d9:2a:3a:70:a1:09:
ce:cb:9f:d1:1a:59:a4:96:17:3c:6a:1b:cf:e8:d4:40:57:26:
32:3d:23:42:3b:06:43:c9:b1:a8:e4:ce:02:b7:95:34:2b:d3:
bb:4b:46:d1:19:fc:0e:93:75:31:df:13:23:13:28:8d:32:a0:
ef:f9:b2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:07:23 2025 by rpki-client