Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/jmOmNUc4t1mTnx_PtEJXCVu45y0.roa
File: jmOmNUc4t1mTnx_PtEJXCVu45y0.roa (raw, json)
Hash identifier: n3LhYp07YltOPPJGprQBK9Drn6QgmpJsE3I8Z6cF5gc=
Subject key identifier: 8E:63:A6:35:47:38:B7:59:93:9F:1F:CF:B4:42:57:09:5B:B8:E7:2D
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 019428278DF272ED937D5892986BE1400096
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/jmOmNUc4t1mTnx_PtEJXCVu45y0.roa
Signing time: Thu 02 Jan 2025 17:54:28 +0000
ROA not before: Thu 02 Jan 2025 17:54:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41167
IP address blocks: 217.110.62.0/24 maxlen: 24
217.111.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:8d:f2:72:ed:93:7d:58:92:98:6b:e1:40:00:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 17:54:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e63a6354738b759939f1fcfb44257095bb8e72d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4d:43:14:93:6f:d6:f5:7a:47:e1:8a:ea:65:
10:6f:03:dc:84:df:a5:7c:8a:4f:71:21:4e:34:35:
1d:c2:81:ec:d5:76:6e:0e:72:c9:42:4d:ea:79:56:
64:b1:f1:b5:f1:30:80:44:6c:d1:ac:fb:8f:9e:a0:
bb:27:ab:c3:d6:74:d5:5d:b5:7c:a6:9b:6e:83:9b:
33:7e:a9:aa:eb:81:4b:d0:98:a3:4a:8e:86:f1:25:
01:07:96:af:be:f5:46:43:91:17:4a:e1:c0:88:4d:
f9:5f:d9:84:71:7c:07:e0:79:69:fe:d3:95:47:ee:
96:25:e3:98:0e:f7:20:aa:dc:88:8b:71:38:2f:cb:
87:ac:88:56:51:1b:34:ae:53:ca:d8:c2:49:c1:e9:
7e:d4:48:cc:f0:0d:48:85:0c:48:fb:55:66:6e:41:
96:85:70:4e:b2:15:ef:32:f2:3d:1b:f3:c4:60:0d:
1b:24:5f:97:75:a0:21:74:52:ec:6a:9d:26:b2:a9:
5d:ca:86:33:17:9f:49:7d:f8:b3:96:38:4b:13:59:
f7:df:d9:af:92:82:5b:59:16:1c:59:ce:74:1e:ee:
16:be:c4:fa:16:71:58:a8:1e:5b:51:5e:fb:42:e5:
57:35:73:9a:7d:51:26:40:c1:ef:de:b4:f3:0b:fc:
1e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:63:A6:35:47:38:B7:59:93:9F:1F:CF:B4:42:57:09:5B:B8:E7:2D
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/jmOmNUc4t1mTnx_PtEJXCVu45y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.110.62.0/24
217.111.44.0/24
Signature Algorithm: sha256WithRSAEncryption
17:97:7f:5b:6f:3f:e4:8a:9b:9b:9d:69:d7:84:65:c2:c6:9d:
d2:e1:28:74:4f:56:ca:de:3c:0e:b1:92:03:d7:04:80:89:75:
80:3f:66:8d:19:7c:a3:0f:93:04:4c:0f:b7:83:6f:e1:1c:97:
d2:13:51:b0:de:8e:3e:63:ae:f2:7a:f9:d8:8e:37:f2:0a:7f:
24:74:e6:e0:35:ef:19:1c:9c:91:c8:55:73:2c:cf:ae:6b:06:
dd:3d:ce:cb:e2:7f:20:99:12:40:7b:31:21:f8:c1:a1:fc:16:
4b:28:52:14:82:a3:66:01:48:3c:2d:a6:1d:ce:20:c9:cf:06:
db:f9:58:f1:b7:1e:2d:e1:48:b3:c8:f7:62:79:82:fa:e7:b3:
8c:54:7f:0f:40:bf:77:dd:e8:ff:95:68:7e:2b:d1:23:64:0a:
a2:3b:97:d4:70:c7:22:49:5d:7c:cb:6b:a6:92:1f:89:22:c1:
7d:bd:39:8f:6a:a6:ab:cb:96:14:da:63:1d:57:bf:0b:01:06:
fc:d3:79:d9:eb:a9:85:03:3d:86:69:87:9f:c2:13:e7:18:42:
57:43:ff:bb:29:86:56:2c:2d:6f:7c:1a:c7:61:cf:0c:38:5f:
7d:03:0d:ad:a2:8b:0b:5f:d1:e5:27:bf:34:42:06:ce:f0:81:
c4:9d:0c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:07:01 2025 by rpki-client