Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/c2eVtCtVjsi6i3vPHgLATuNVfoM.roa
File: c2eVtCtVjsi6i3vPHgLATuNVfoM.roa (raw, json)
Hash identifier: tozwRqmwgoJZSoOdc4bKHZ1xB9xQYRcf64jJhmtl4S4=
Subject key identifier: 73:67:95:B4:2B:55:8E:C8:BA:8B:7B:CF:1E:02:C0:4E:E3:55:7E:83
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 019424447DDC8123075EF14995DC60CB3946
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/c2eVtCtVjsi6i3vPHgLATuNVfoM.roa
Signing time: Wed 01 Jan 2025 23:47:35 +0000
ROA not before: Wed 01 Jan 2025 23:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208623
IP address blocks: 83.138.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:7d:dc:81:23:07:5e:f1:49:95:dc:60:cb:39:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Jan 1 23:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=736795b42b558ec8ba8b7bcf1e02c04ee3557e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:42:81:94:b1:cc:bd:a9:b5:87:ae:9a:b3:b6:
37:e1:ec:c1:42:1d:e9:c6:b9:e6:2e:aa:63:a3:94:
0d:92:98:6d:2a:60:a7:0e:52:7c:8a:06:49:28:8f:
3c:ff:62:88:a3:ac:b1:af:f6:57:e2:10:e9:27:ed:
31:b3:e4:ea:68:dd:f4:f6:30:5a:42:a7:be:df:d8:
95:94:f1:99:5b:97:a1:fe:f4:c0:bc:16:69:1a:c4:
e8:9b:35:b6:22:1c:48:29:22:85:d5:35:70:29:f7:
ff:25:e1:74:cd:e1:79:9f:ca:69:ec:ca:c3:3c:6a:
55:34:cf:36:a6:98:21:49:ac:c5:44:17:4a:7a:e4:
1a:e6:9f:bd:12:15:40:1c:98:b1:d5:db:ee:07:99:
95:39:db:9c:96:b1:42:dd:bb:ac:28:f3:86:e3:6d:
6d:9f:f4:75:4d:df:0e:3b:d5:57:e0:66:87:c5:d1:
92:4f:54:db:a1:08:8d:ba:3d:80:64:b9:00:c9:a9:
e3:e7:41:d4:0d:de:1b:0d:32:05:6a:7c:49:eb:3c:
2d:a6:a9:c0:24:a7:3b:88:68:ce:07:9d:2c:9b:78:
97:0d:5c:3d:21:3d:41:df:08:21:f5:a6:ba:c8:3e:
34:a0:a3:90:36:31:55:bd:b7:8b:09:2b:09:6e:8f:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:67:95:B4:2B:55:8E:C8:BA:8B:7B:CF:1E:02:C0:4E:E3:55:7E:83
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/c2eVtCtVjsi6i3vPHgLATuNVfoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.18.0/24
Signature Algorithm: sha256WithRSAEncryption
91:1a:6e:f3:ae:19:bd:03:b5:f7:93:28:25:99:fb:5c:99:95:
81:55:08:e3:ea:bf:3c:91:48:41:71:89:74:38:68:c3:e6:aa:
5d:a2:f9:73:4d:b4:89:14:ea:61:b2:f2:e2:7f:93:85:55:c1:
4f:f0:6e:87:96:4e:c0:98:09:03:ec:65:01:70:5a:0b:c3:1a:
b1:a7:8c:9f:c7:78:c7:e3:69:fa:18:e1:b3:35:4d:a2:d7:05:
7e:fb:3c:6c:9b:95:a5:a7:be:7e:1d:01:1d:f1:a0:66:4a:02:
c9:6a:5e:95:68:c8:45:cb:86:12:69:23:de:71:bc:6e:80:ff:
b2:4d:d3:79:23:fa:46:89:93:5b:2a:20:ca:88:f7:b9:11:42:
c2:c6:99:d7:b2:45:df:20:dd:ee:2c:6f:59:cd:60:de:c6:43:
93:72:21:ea:15:f1:bc:2f:55:79:14:2b:71:f5:7a:17:f0:1b:
86:da:8f:31:1b:43:dc:e5:62:36:9f:0e:48:b6:6a:71:05:2d:
11:4a:61:3c:18:dc:1d:a8:91:8b:c2:70:a4:46:14:45:40:fd:
c8:89:d9:d7:46:45:1c:47:d4:92:3c:1f:3e:72:e7:73:ff:42:
6c:7c:b8:49:07:d9:92:4c:79:19:8c:69:66:c8:4c:1c:55:98:
18:4b:e6:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net