Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/j72j_vL7asCihB-ornt9BTh3zk4.roa
File: j72j_vL7asCihB-ornt9BTh3zk4.roa (raw, json)
Hash identifier: QRXr1ECxU1qCTTNag7AKeojuAwmw3rLV4YoZu4inoKc=
Subject key identifier: 8F:BD:A3:FE:F2:FB:6A:C0:A2:84:1F:A8:AE:7B:7D:05:38:77:CE:4E
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2F5E3883D4EF5CEC1A4D90AA77211
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/j72j_vL7asCihB-ornt9BTh3zk4.roa
Signing time: Thu 02 Jan 2025 01:48:15 +0000
ROA not before: Thu 02 Jan 2025 01:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60066
IP address blocks: 159.148.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:f5:e3:88:3d:4e:f5:ce:c1:a4:d9:0a:a7:72:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8fbda3fef2fb6ac0a2841fa8ae7b7d053877ce4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ce:45:95:2a:ac:78:90:60:fc:63:a6:54:de:
63:64:c0:3b:0e:8b:00:d7:4d:92:52:68:ab:97:5e:
13:08:82:d9:72:15:4f:e0:53:f7:1c:f7:a8:5e:2e:
1d:33:fa:ef:93:0d:61:03:1d:48:14:f3:cf:1a:5f:
62:68:bc:f6:65:5a:42:30:ae:4c:20:ed:8c:f9:d5:
20:6a:45:d5:83:c5:98:4a:9b:dc:8f:2a:ba:94:62:
6a:00:93:1f:38:d3:dc:dc:25:71:6f:39:7c:60:9a:
a3:56:d2:e1:f7:18:52:b0:e9:56:24:e2:a3:cc:98:
a6:1a:b0:bc:70:40:90:a0:4d:8a:0b:9b:ca:8e:37:
46:9c:d4:fd:d2:e2:5d:51:6f:b7:2a:78:aa:a0:45:
9e:a1:b1:08:b7:9d:73:77:b3:cb:b2:e6:f6:4c:18:
cb:79:77:8e:c4:63:04:83:8e:1e:17:e9:b7:06:a7:
cf:ef:32:27:e3:08:2b:c4:de:2b:05:51:0d:fe:28:
0e:86:54:b3:7b:37:2d:5b:ee:cd:a3:9f:47:73:ad:
e4:21:ca:77:18:14:b0:9d:41:6c:df:a7:ac:72:40:
6b:9f:98:ab:31:a6:25:d9:d4:97:6d:12:87:24:f0:
64:fc:b2:02:ce:c1:0e:06:5a:70:71:81:a7:ee:86:
56:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BD:A3:FE:F2:FB:6A:C0:A2:84:1F:A8:AE:7B:7D:05:38:77:CE:4E
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/j72j_vL7asCihB-ornt9BTh3zk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.119.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:39:99:59:67:b1:dc:f3:f6:1a:64:8c:84:43:1b:37:24:90:
e5:6d:f4:1a:8c:4a:6d:7a:4b:55:3e:ad:5a:5a:c9:a9:f1:06:
48:c0:fd:6d:96:6a:52:8c:a0:15:c2:ba:d5:a0:fd:5d:36:46:
60:57:c0:39:bd:a3:f6:fc:d3:d8:15:53:a6:32:49:ca:0c:2f:
0f:c2:12:c6:b1:cd:c0:78:05:b6:e3:b3:a9:82:8a:26:ce:5b:
c3:f6:14:3e:2a:60:e7:b4:b6:ff:e0:df:98:42:15:36:8c:b8:
0d:3f:e3:4d:34:5c:7f:60:b3:f7:73:1e:7e:46:a1:43:ec:29:
55:83:cc:52:55:9a:cb:af:ba:04:81:c9:41:53:27:df:a5:f5:
7d:fb:31:f0:7a:4d:3c:f3:18:ed:67:94:09:d2:94:5d:b5:bb:
ef:18:03:46:b6:aa:5d:82:c8:1a:1d:e2:ae:51:59:22:27:7d:
59:15:1d:0c:c3:54:51:a1:e2:0e:92:6b:4c:a5:fe:c6:4d:a3:
81:f0:95:aa:05:7d:16:d2:5f:9b:1c:bf:41:aa:58:7d:8d:7d:
36:ee:84:d5:65:7f:68:9a:65:12:d2:2c:37:c3:e6:2c:88:87:
b2:8c:58:77:0d:f1:a7:f3:6b:a0:5b:5e:d4:b3:33:8e:83:6d:
5a:04:14:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:38 2025 by rpki-client