Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa
File: JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa (raw, json)
Hash identifier: A/80zWYF3RYk10mzwst52/4Qz1yzT35DfBM28lDeN+s=
Subject key identifier: 25:13:41:2D:70:50:5A:04:EE:06:0D:7E:8D:9C:6B:33:B8:98:0A:E4
Certificate issuer: /CN=838c4f810d7a20a783a4fab1c034467b825051b9
Certificate serial: 019428234CA39656729BA816BDE41D2C0ABF
Authority key identifier: 83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa
Signing time: Thu 02 Jan 2025 17:49:49 +0000
ROA not before: Thu 02 Jan 2025 17:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 4913
IP address blocks: 185.7.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:4c:a3:96:56:72:9b:a8:16:bd:e4:1d:2c:0a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838c4f810d7a20a783a4fab1c034467b825051b9
Validity
Not Before: Jan 2 17:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2513412d70505a04ee060d7e8d9c6b33b8980ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:26:5d:25:81:e8:2f:91:00:9b:59:c8:18:78:
95:60:de:b4:20:4a:00:03:da:ad:4a:1a:19:7a:1d:
25:a6:23:63:11:ed:44:b4:83:9f:89:ef:f7:d9:16:
8d:1d:b6:35:26:a6:72:c5:b0:87:0a:8c:2a:34:70:
33:65:79:c8:a3:cb:78:0e:c5:71:63:aa:e5:fd:2b:
8f:73:8c:8a:b9:39:08:df:1d:48:89:6a:c5:0f:09:
e4:3a:e8:9d:e5:2f:d6:03:02:de:26:7e:46:c2:3c:
cb:46:81:00:50:40:33:ec:e6:49:f1:0a:f0:41:ec:
8f:93:f7:8d:fa:e3:1b:56:1c:7c:cf:a2:0a:a6:43:
96:bd:0e:72:dd:36:45:f7:eb:d7:b6:c3:80:3e:1b:
af:32:a3:80:81:c8:9b:78:e3:4d:7b:ed:88:35:2a:
af:24:9f:5a:4c:6b:3e:ed:48:84:2e:a2:75:d4:c9:
9a:9a:57:71:43:1a:51:ef:bb:ed:b2:f6:c8:f6:e9:
b4:12:9c:31:c3:da:46:cd:4a:20:ca:1a:51:7c:11:
34:23:0e:6d:1e:d8:a0:f9:3b:72:17:f9:85:5c:17:
f6:d2:3a:bb:42:4c:a6:63:57:ab:01:01:3e:43:22:
b9:1a:51:4e:5c:08:3e:a4:e4:ef:35:48:85:0c:53:
a6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:13:41:2D:70:50:5A:04:EE:06:0D:7E:8D:9C:6B:33:B8:98:0A:E4
X509v3 Authority Key Identifier:
keyid:83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.15.0/24
Signature Algorithm: sha256WithRSAEncryption
78:f5:63:bf:14:1a:b2:f4:e0:23:75:6f:99:79:b3:f1:f0:c1:
b3:20:6f:ed:59:84:cb:96:7b:8d:14:95:1c:90:53:8a:cd:2d:
66:3a:a4:d9:e2:a0:c1:e1:e0:65:b3:da:a3:fe:5f:58:da:1c:
17:05:23:49:6a:b6:b2:58:58:91:b6:7f:1d:ff:39:50:55:23:
4d:63:c7:d2:4d:c2:88:15:d8:5b:25:f6:fd:e9:d3:af:7d:7e:
c7:c8:0b:19:17:42:3c:69:1e:86:9e:b3:e0:38:c2:bf:2e:cc:
d7:f2:9a:36:c6:f4:7e:81:13:ed:a0:40:b8:f5:dd:97:cd:9d:
d7:51:db:15:11:7d:a7:3f:82:7b:fe:88:a8:1c:48:48:77:1d:
9a:2d:c7:99:38:69:90:90:c7:b0:0c:60:e5:09:42:ba:45:04:
f2:91:70:96:96:34:fc:60:b8:22:cf:4e:e8:66:df:6c:7e:9a:
f3:17:36:33:65:aa:71:52:40:94:61:e5:04:e4:01:f7:21:86:
85:de:00:86:ab:45:5a:75:f2:1c:f6:65:a4:eb:0d:f7:1d:39:
21:62:bf:00:b8:84:62:64:c5:52:81:a7:c4:b2:70:88:8c:c4:
e3:e2:6b:d7:fb:19:19:82:54:c0:4f:da:97:05:5a:c7:3b:87:
77:09:33:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:05:18 2025 by rpki-client