Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/J9pKHH63qSgt_UML07_zCm5P9p0.roa
File: J9pKHH63qSgt_UML07_zCm5P9p0.roa (raw, json)
Hash identifier: 2L/T+NMzkqtQg75cDzZd20mLjGZ9BkHfp63lmsI6J9k=
Subject key identifier: 27:DA:4A:1C:7E:B7:A9:28:2D:FD:43:0B:D3:BF:F3:0A:6E:4F:F6:9D
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01942827C37E9351E7F9D5CA7C099B318534
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/J9pKHH63qSgt_UML07_zCm5P9p0.roa
Signing time: Thu 02 Jan 2025 17:54:42 +0000
ROA not before: Thu 02 Jan 2025 17:54:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 140224
IP address blocks: 87.229.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:c3:7e:93:51:e7:f9:d5:ca:7c:09:9b:31:85:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 2 17:54:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27da4a1c7eb7a9282dfd430bd3bff30a6e4ff69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:27:9d:73:e4:44:80:80:c5:a6:85:26:0a:1c:
d5:d7:4e:33:6a:67:f1:0d:cc:4e:bc:0b:f5:65:8b:
4c:09:8b:67:9c:b9:70:ff:d4:dd:46:1b:44:46:94:
de:f1:ce:8b:76:16:2f:95:2d:8c:fe:9c:cb:37:b5:
8e:e5:d7:98:e9:94:74:b4:c3:03:97:2b:62:6b:f9:
e4:ac:f8:86:c0:cf:b5:fc:0b:ca:ae:9f:72:b1:6d:
3a:56:b1:66:9a:7a:96:ef:0f:42:64:a8:33:1f:e0:
14:7a:80:e6:50:d1:c6:f8:5a:dc:26:da:05:79:10:
05:f8:22:4b:7a:21:89:37:c9:4f:c8:ac:21:e5:35:
b4:19:c4:ed:b9:2d:f9:62:d5:7c:8a:4b:ec:cc:11:
11:8b:ec:93:f3:4a:58:02:67:24:cf:c7:03:2e:9d:
5e:b4:9d:97:bd:71:e0:f8:7c:03:13:72:20:76:fc:
62:da:1d:11:2e:87:5a:94:98:d8:fe:18:72:eb:77:
c4:cd:c1:36:ab:38:20:60:db:52:52:2d:fe:76:ca:
de:1c:0c:fb:02:a2:be:17:3f:b8:d5:3d:fc:ef:d8:
f6:24:d0:d7:46:c5:43:49:b5:a3:71:0d:94:98:e1:
94:19:d5:0b:2b:fa:fe:8c:2a:2a:bd:f6:bb:49:15:
5b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DA:4A:1C:7E:B7:A9:28:2D:FD:43:0B:D3:BF:F3:0A:6E:4F:F6:9D
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/J9pKHH63qSgt_UML07_zCm5P9p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.92.0/24
Signature Algorithm: sha256WithRSAEncryption
18:bc:34:ae:f4:04:f8:22:04:37:98:2f:cf:2a:f3:5b:63:23:
af:f2:43:1a:8b:d8:e1:94:3b:55:82:b9:5a:a9:91:56:31:68:
cd:eb:36:57:8a:07:e5:68:be:5d:71:f9:19:c3:0f:be:2b:02:
7b:d4:4e:46:05:ab:db:0b:59:32:cd:cd:e1:35:57:cb:ea:a5:
2a:86:77:ae:4c:a4:01:6a:7c:91:d3:b0:df:6b:ca:a9:48:d5:
c7:f2:bb:dd:83:0b:d5:b2:b9:e7:4e:12:f3:24:18:c6:80:32:
50:be:c6:ff:b4:11:5b:22:b9:f3:db:34:0e:6a:d1:af:30:c5:
22:3e:71:a0:8e:2c:c7:dc:84:18:86:99:a6:da:b7:de:85:4f:
95:8c:22:e1:54:d2:18:d1:b4:a2:30:bb:ff:7f:57:7b:98:06:
55:cd:39:52:cd:0b:1a:16:3e:ec:db:3b:cf:bf:d6:7b:75:18:
e3:72:5b:fc:76:0f:fc:97:92:01:9a:5b:f3:c9:63:42:18:75:
d4:cc:09:c2:de:5b:fc:c5:9c:f5:90:47:03:99:ec:e2:58:8a:
ea:10:ba:9d:6a:96:40:dd:25:9b:5e:d8:95:3d:f4:86:bc:6f:
e2:2f:9c:8d:da:1b:8f:ca:d1:f8:29:54:b0:9f:70:d1:66:e7:
3c:d7:1f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:31:35 2025 by rpki-client