Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/aMw8zFpz0DQQ4LUzce5SbedZlsM.roa
File: aMw8zFpz0DQQ4LUzce5SbedZlsM.roa (raw, json)
Hash identifier: 2TtBSZh/XnHX3MDVMJOFGapZKtnnVYEgdGfCDlDr3uM=
Subject key identifier: 68:CC:3C:CC:5A:73:D0:34:10:E0:B5:33:71:EE:52:6D:E7:59:96:C3
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 0194258FC2D0B2A6BBCC73AD50FEAB11A701
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/aMw8zFpz0DQQ4LUzce5SbedZlsM.roa
Signing time: Thu 02 Jan 2025 05:49:26 +0000
ROA not before: Thu 02 Jan 2025 05:49:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35819
IP address blocks: 82.197.52.0/27 maxlen: 27
82.197.52.32/27 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:c2:d0:b2:a6:bb:cc:73:ad:50:fe:ab:11:a7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Jan 2 05:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68cc3ccc5a73d03410e0b53371ee526de75996c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:9d:df:7f:80:be:79:ad:08:b1:b0:c6:de:
1c:51:75:c8:39:b5:5b:a8:45:bb:cb:47:0e:bb:00:
22:bc:49:27:e9:f4:78:aa:05:fe:d2:c0:69:1c:c0:
6c:c5:a1:4e:25:3b:31:de:d8:04:60:a5:ab:86:d3:
03:fc:8e:36:16:e6:d0:f1:30:50:0a:2d:dd:31:f3:
7c:21:dd:ad:76:36:78:63:18:83:ca:85:b8:76:ee:
3a:2c:3d:79:a9:05:07:fd:1e:7c:5c:43:81:7c:7e:
05:80:0d:cf:82:14:44:3e:72:98:83:40:74:3a:51:
42:dc:52:67:dd:1c:46:56:b7:8a:7e:21:dc:70:9b:
a8:aa:c9:f3:72:33:9f:c1:79:83:65:8d:b5:2d:bc:
5c:79:8f:c9:9a:55:09:3d:9b:35:ac:cf:0b:9e:2a:
33:71:58:03:17:d7:c7:a1:a9:9b:14:88:82:49:99:
b0:de:dc:71:05:78:06:dc:21:5c:b0:b1:68:ea:31:
b1:a8:39:3d:f5:9e:c1:06:a7:7a:b2:5f:9c:ce:2e:
c1:c6:a3:df:10:56:b1:6f:44:df:b9:a8:7a:8e:ea:
45:9e:6b:19:c7:f5:1a:66:39:e6:e2:97:45:a2:e4:
27:11:4a:17:df:30:66:29:cc:c0:5a:ea:91:a5:13:
d7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CC:3C:CC:5A:73:D0:34:10:E0:B5:33:71:EE:52:6D:E7:59:96:C3
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/aMw8zFpz0DQQ4LUzce5SbedZlsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.197.52.0/26
Signature Algorithm: sha256WithRSAEncryption
35:2d:53:f4:b5:82:1f:e8:e4:6a:89:0a:f6:ce:c8:cd:51:79:
7d:ac:93:ff:57:ad:e7:a3:ad:a0:76:5d:27:18:2a:9c:7a:89:
2d:5e:a9:5e:44:3b:9a:e1:92:ac:99:d0:0f:6b:ea:71:28:41:
8d:6a:17:d0:b3:3e:c5:11:6f:75:93:26:b9:35:2d:4c:11:eb:
b2:2a:7b:ad:e4:bd:a8:6f:85:94:74:e4:8b:ef:1f:9b:2e:7e:
cf:9f:f6:18:87:94:8a:4e:61:09:c7:17:7d:c4:5f:93:02:55:
d4:ce:8a:9a:2e:28:7e:9c:4f:75:ab:84:78:51:dc:d8:47:3f:
78:12:a1:d6:0d:5d:27:8c:9a:b9:91:ea:74:1c:91:45:93:d8:
35:d4:0c:a0:dc:30:c4:36:ef:09:15:f0:d3:91:66:b8:57:f7:
c8:f6:ec:6a:af:45:fb:19:2a:9f:b3:8a:3a:7d:0b:ed:ef:2d:
bd:e5:6a:76:6d:fd:0c:15:fe:09:fa:80:fb:63:c3:25:9f:e6:
40:fa:99:bf:af:bb:9a:33:94:03:9a:14:26:74:24:a5:b0:bc:
50:40:21:c2:e4:7b:0a:66:22:df:29:1b:8c:2b:20:23:9e:64:
20:44:a2:83:b4:77:37:24:b1:31:67:14:cf:ae:d0:b3:87:f0:
23:dc:cc:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:47:52 2025 by rpki-client