Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/T-R81coJZEX5kZHK0d3buTRpRhg.roa
File: T-R81coJZEX5kZHK0d3buTRpRhg.roa (raw, json)
Hash identifier: vUrB9Cl3vBD+A2WChydkgkik26C/sHh8hKGpjm8bPZQ=
Subject key identifier: 4F:E4:7C:D5:CA:09:64:45:F9:91:91:CA:D1:DD:DB:B9:34:69:46:18
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018EEB59AAB8D799E1354963FE61B42EB89C
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/T-R81coJZEX5kZHK0d3buTRpRhg.roa
Signing time: Wed 17 Apr 2024 09:18:25 +0000
ROA not before: Wed 17 Apr 2024 09:18:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59895
IP address blocks: 84.247.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:eb:59:aa:b8:d7:99:e1:35:49:63:fe:61:b4:2e:b8:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 17 09:18:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fe47cd5ca096445f99191cad1dddbb934694618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e4:a9:aa:aa:44:b8:12:7f:13:9d:76:df:58:
e6:2e:a9:81:a6:ff:26:db:9b:39:d1:36:80:15:04:
83:79:5d:97:a5:64:44:94:6d:3d:37:67:87:dc:d0:
86:91:3b:6b:ae:4b:4b:5c:a3:fc:f9:bb:ec:90:3b:
60:4b:d4:15:3a:3c:08:16:74:b6:48:a8:a8:5f:35:
33:aa:e4:45:41:59:12:4a:9f:55:05:22:c3:78:47:
0c:d4:ae:cf:8f:83:2b:31:6f:19:8d:e7:57:a7:95:
da:ba:95:47:95:58:ba:b8:4e:5e:5d:f0:38:85:7a:
c0:61:a4:90:e0:fc:3d:15:be:48:41:92:29:27:11:
22:b4:9b:c2:4a:d4:77:81:45:38:35:18:2d:90:08:
60:f9:a3:fe:7f:1b:35:c3:43:cb:cb:c7:44:93:e5:
7d:3d:8b:51:43:02:5e:a8:dc:6b:ec:cd:47:89:dd:
18:a2:5c:0d:43:85:05:86:14:e0:c0:1b:6e:e1:98:
83:7f:5a:b1:8c:73:f6:e4:b2:48:0f:8d:56:4d:02:
cc:8a:cb:07:27:46:00:48:db:65:36:b9:ce:e1:01:
b9:06:fa:6a:4f:21:d6:de:90:60:26:7b:e4:5d:3a:
27:e3:f4:df:72:5f:d2:5e:22:23:ee:fe:d9:a5:fb:
6e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E4:7C:D5:CA:09:64:45:F9:91:91:CA:D1:DD:DB:B9:34:69:46:18
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/T-R81coJZEX5kZHK0d3buTRpRhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.20.0/24
Signature Algorithm: sha256WithRSAEncryption
22:10:91:8f:da:d4:f2:c1:84:52:40:c8:63:90:7c:d9:37:68:
1d:8e:2c:91:75:59:59:d5:4c:6e:2c:94:9b:fa:b7:ba:9d:05:
e1:c2:7f:bf:8f:69:ba:a6:36:68:52:65:8f:36:26:bf:d8:c2:
51:2a:24:2d:7c:f5:2d:c9:14:d6:41:22:c0:81:04:4a:7e:5c:
ce:4c:de:5a:dc:fb:c1:26:65:f7:9b:14:41:68:f6:bd:c2:89:
f4:f8:56:32:c5:b0:f3:d7:14:2b:45:a6:28:75:da:63:01:c5:
0c:f3:8a:a4:9e:3c:2d:5a:38:3f:b6:d4:ba:f0:ef:be:5d:96:
12:53:3e:9b:f6:09:92:9c:31:4f:2c:73:37:46:0d:2b:58:20:
69:7a:a9:a5:a8:1c:b9:c4:de:c0:c9:0e:f0:ad:2b:d7:54:45:
e5:28:cd:46:11:a0:01:cb:e2:2e:ee:a2:40:f7:54:f6:74:b7:
12:db:42:48:64:8e:97:15:1f:9f:23:1f:f9:01:eb:e8:9a:db:
a9:94:b6:7b:51:92:cc:2e:e5:d1:f1:ca:30:e0:08:71:f5:9b:
66:22:2b:9b:70:03:72:9b:ef:1f:aa:ca:dc:10:4e:d6:4d:7f:
46:51:9c:51:f2:3c:49:7d:bd:91:54:55:cc:1e:ad:81:58:77:
26:e1:90:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:30 2025 by rpki-client