Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/JOe3gDnxxy2GN5M6pnrrVLmKdyM.roa
File: JOe3gDnxxy2GN5M6pnrrVLmKdyM.roa (raw, json)
Hash identifier: hNV63YDs7cMnFBRwKrF1E1pjTI5X9e3uJcp9nOg0nhM=
Subject key identifier: 24:E7:B7:80:39:F1:C7:2D:86:37:93:3A:A6:7A:EB:54:B9:8A:77:23
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D01DE0D
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/JOe3gDnxxy2GN5M6pnrrVLmKdyM.roa
Signing time: Fri 22 Apr 2022 06:19:18 +0000
ROA not before: Fri 22 Apr 2022 06:19:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29066
IP address blocks: 194.64.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218226189 (0xd01de0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 22 06:19:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24e7b78039f1c72d8637933aa67aeb54b98a7723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5a:88:48:e6:06:0e:ef:eb:d4:ff:fe:54:1c:
b6:19:39:84:99:40:ff:2a:9e:5d:82:80:49:1e:9d:
4a:49:d5:fb:67:c3:cf:98:51:9a:7f:34:82:2f:7e:
2d:80:4f:b5:e1:d1:57:d6:17:2f:7a:b7:8c:5c:e1:
4b:4d:2f:a4:72:35:d6:d5:14:a7:4e:a2:2e:cf:69:
9a:79:86:7c:f4:73:c6:d2:e5:d1:c0:8d:43:eb:5f:
f7:11:c2:af:ea:4e:8f:12:64:38:9a:85:5c:0d:dc:
fd:af:43:9e:80:84:72:f2:f2:8a:37:de:0d:6b:2b:
1f:7f:3c:51:51:05:bd:5f:0f:5e:1a:2e:f8:1c:48:
7d:4c:7b:f0:62:c6:ea:69:28:95:a2:b0:80:91:07:
df:c3:45:55:e3:9c:64:fe:ca:8d:c5:3b:8b:8f:3c:
66:bf:6e:ab:2d:2b:b1:84:94:06:fa:20:f4:a6:e8:
a7:98:bb:d1:53:8d:81:53:f5:0c:57:fd:5b:fa:be:
e8:d8:47:5b:4b:65:fd:fc:a3:4c:91:68:94:14:e9:
d8:f8:89:97:e5:98:1d:a0:1b:68:c3:37:ff:35:f5:
1e:c6:71:70:cb:d3:7e:89:09:94:3f:b8:86:3d:40:
12:23:14:df:9c:74:75:a0:23:9a:69:dc:17:7d:13:
0b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E7:B7:80:39:F1:C7:2D:86:37:93:3A:A6:7A:EB:54:B9:8A:77:23
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/JOe3gDnxxy2GN5M6pnrrVLmKdyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.91.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a2:96:32:ef:28:bc:f0:ab:ac:d5:26:94:af:67:98:ff:bc:
c8:6c:7b:98:fa:46:e3:12:65:83:de:ed:d0:87:27:4f:de:37:
4c:5d:e9:2b:61:6c:6c:be:95:0a:cd:f8:fd:91:d6:f6:b0:ca:
5b:a6:9a:ee:94:52:be:97:1f:71:b4:6b:48:0f:22:53:8e:d7:
bc:4e:87:93:fc:94:ed:c2:41:d8:ac:63:0c:1e:4b:ba:19:14:
cb:37:c9:00:b1:40:21:9a:2e:1e:46:60:ba:36:8e:0c:50:c2:
88:4e:50:b7:82:92:28:41:58:a1:a3:9c:7b:0a:be:7e:4b:6e:
06:ea:1b:3b:41:bf:8b:56:02:65:9a:89:b0:e7:eb:01:3c:c9:
ea:3f:5a:3f:5d:9f:c2:02:f8:22:86:bc:33:98:00:f4:91:85:
bc:2e:4a:2a:d4:5e:24:be:49:19:c2:16:c3:4a:79:36:f1:a5:
57:5e:49:59:d2:47:21:c1:dd:be:f5:21:4e:74:b3:5e:e1:55:
25:a0:ff:c1:54:96:52:dc:3d:4a:d4:87:47:99:cb:14:67:15:
5b:a2:c8:96:96:34:be:b3:2b:3e:df:34:95:c6:1e:15:f9:e3:
d8:8f:e3:63:ce:ee:ea:92:c3:ba:da:76:e4:d4:03:40:d1:2d:
84:05:bf:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:41 2025 by rpki-client