Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/UeWGi0DQTKaOKEgXqvjIWOYshYg.roa
File: UeWGi0DQTKaOKEgXqvjIWOYshYg.roa (raw, json)
Hash identifier: 1RUIPfdCdmZ8kvFyBiuVL8gYfmyUZYOw/Vxi4S7ZWlw=
Subject key identifier: 51:E5:86:8B:40:D0:4C:A6:8E:28:48:17:AA:F8:C8:58:E6:2C:85:88
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 01822047A810239283E1CC989C2588FCDA52
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/UeWGi0DQTKaOKEgXqvjIWOYshYg.roa
Signing time: Thu 21 Jul 2022 10:22:23 +0000
ROA not before: Thu 21 Jul 2022 10:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 84.239.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:47:a8:10:23:92:83:e1:cc:98:9c:25:88:fc:da:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Jul 21 10:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51e5868b40d04ca68e284817aaf8c858e62c8588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7d:38:00:56:62:7d:34:f4:18:ee:bf:69:f2:
5f:71:ba:cc:41:e8:ca:b5:73:57:3f:f8:4c:ea:0c:
74:10:33:9e:b5:8b:42:ed:ad:94:20:09:df:6b:fa:
f3:a8:52:13:5e:ce:f9:9e:61:1c:c7:b4:c7:e8:ac:
3c:06:2e:4c:da:0a:c7:02:e6:ed:26:60:cb:71:90:
3a:39:f4:6a:bc:55:7b:2a:e2:2c:1b:f2:03:c8:0f:
81:b1:5c:1c:fa:a5:41:77:fb:26:87:00:37:e7:1f:
6a:a0:d8:03:16:9f:64:63:b9:51:6b:a4:c7:7f:9c:
6a:a3:35:95:1e:c8:f2:dd:17:e4:cb:b5:e1:e8:86:
99:96:bb:34:05:c6:4d:23:a8:85:48:21:74:4c:fb:
ec:d5:bd:e5:ba:10:9e:9e:7d:2a:44:39:c2:6d:cb:
ba:e1:c5:51:88:6d:d5:a0:b2:a0:2d:74:cb:cf:2d:
2a:00:38:ba:0d:50:69:37:47:88:01:2e:db:e3:e9:
e6:a4:f2:c5:18:43:4a:02:0f:64:70:cf:4d:7b:33:
60:50:95:7c:a5:1d:c1:89:1f:e0:c5:86:95:88:2d:
d4:06:3a:b0:f7:0d:f3:c1:1a:50:77:7e:91:ef:4e:
b2:e6:cc:06:d7:9d:c2:99:ed:53:f2:19:ae:89:a8:
16:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E5:86:8B:40:D0:4C:A6:8E:28:48:17:AA:F8:C8:58:E6:2C:85:88
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/UeWGi0DQTKaOKEgXqvjIWOYshYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.18.0/24
Signature Algorithm: sha256WithRSAEncryption
36:85:fa:71:89:1b:bd:24:e5:31:bd:66:9c:e1:41:a7:30:f5:
f0:f5:12:b0:66:f1:46:19:98:37:2f:54:e4:07:2f:00:28:7b:
b3:d5:55:8f:d2:10:dd:b9:74:58:64:a8:0a:44:11:cc:c0:2d:
80:81:0a:b5:4b:ee:1f:52:73:94:d8:c5:16:0e:aa:ce:96:85:
1d:20:76:80:a9:82:67:2f:91:e3:34:f7:68:db:41:04:c7:11:
df:bc:44:df:6d:80:71:68:38:2b:88:67:9a:e7:f3:4e:8d:6f:
35:d0:e7:e8:66:9f:6c:cb:aa:8e:14:7d:58:b0:d5:3c:f1:12:
ba:6f:4c:61:28:36:91:95:e8:26:35:a4:5e:8c:06:b0:34:9a:
cc:51:0f:da:70:e9:38:fc:74:e2:38:ea:66:81:83:74:87:6c:
ff:50:bb:3c:83:fe:43:d7:a5:10:25:a9:04:51:8c:d2:23:eb:
9b:81:08:57:56:1d:99:45:0d:c6:b8:7f:d6:0c:07:55:2f:38:
fb:52:0d:9c:8e:8e:a9:5a:f9:04:f9:95:11:e4:b3:a0:6d:ca:
a1:18:ab:af:7b:ea:69:15:08:51:a1:cf:32:10:5b:c0:9c:d6:
b6:2f:e7:60:d5:0d:d1:43:c0:e9:5e:5c:85:f8:bf:c3:90:de:
fd:ab:0d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:39 2025 by rpki-client