Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/a1f9df-c48e-497f-ad33-82faf8f3b180/1/JxdJDPVZMnR9Us0Yow96qPISJ1I.roa
File: JxdJDPVZMnR9Us0Yow96qPISJ1I.roa (raw, json)
Hash identifier: tGYb+umekCrPAKTrnrFHyo8NMtPy7BaUj1MyVn4bmi4=
Subject key identifier: 27:17:49:0C:F5:59:32:74:7D:52:CD:18:A3:0F:7A:A8:F2:12:27:52
Certificate issuer: /CN=aa8b798ce7adaeae9e70915ba2cbcf83fe65d9dd
Certificate serial: 03A444FA
Authority key identifier: AA:8B:79:8C:E7:AD:AE:AE:9E:70:91:5B:A2:CB:CF:83:FE:65:D9:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qot5jOetrq6ecJFbosvPg_5l2d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/a1f9df-c48e-497f-ad33-82faf8f3b180/1/JxdJDPVZMnR9Us0Yow96qPISJ1I.roa
Signing time: Sat 01 Jan 2022 05:54:42 +0000
ROA not before: Sat 01 Jan 2022 05:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49063
IP address blocks: 95.181.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61097210 (0x3a444fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8b798ce7adaeae9e70915ba2cbcf83fe65d9dd
Validity
Not Before: Jan 1 05:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2717490cf55932747d52cd18a30f7aa8f2122752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:5d:4c:1a:74:8f:8a:fc:80:31:59:b8:80:
95:32:21:3d:bd:d4:13:24:fe:1d:1d:fa:45:61:98:
20:f0:55:7b:af:67:a3:d6:33:66:ba:f3:8e:41:93:
ec:7f:d5:35:79:86:62:67:f6:93:7c:2a:ef:79:1f:
80:89:e7:cb:9c:0e:e0:ac:5c:2a:b6:4c:e4:b8:61:
1b:9e:3b:eb:cc:0d:f8:02:a7:7a:56:84:09:3f:9f:
64:2d:a7:56:88:0e:a3:7f:74:41:54:1b:e3:fe:ce:
9b:f4:e5:ec:67:a7:55:0e:fd:5d:0d:9f:bd:08:8d:
d6:09:54:90:dc:0e:49:59:0b:ef:d4:62:0b:f7:3f:
00:34:22:40:14:ca:5d:a6:45:ef:99:88:58:31:4e:
cb:67:d5:12:17:f5:88:b7:6a:78:a3:b1:95:5a:4d:
07:bc:38:dc:f7:5d:2d:6d:1b:f3:da:39:00:9e:ce:
bd:77:e4:66:05:3d:09:22:dc:21:f4:76:a2:1c:ee:
9e:c3:02:8e:f7:36:1a:f5:7f:51:f5:7f:db:8a:32:
14:7d:7d:83:ed:5a:54:a6:04:18:22:4d:88:a7:84:
fd:bf:66:91:82:d7:4a:33:62:b4:25:c8:21:e7:e1:
66:3a:d0:8e:0e:29:fe:de:f2:75:42:23:43:62:e9:
ae:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:17:49:0C:F5:59:32:74:7D:52:CD:18:A3:0F:7A:A8:F2:12:27:52
X509v3 Authority Key Identifier:
keyid:AA:8B:79:8C:E7:AD:AE:AE:9E:70:91:5B:A2:CB:CF:83:FE:65:D9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qot5jOetrq6ecJFbosvPg_5l2d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/a1f9df-c48e-497f-ad33-82faf8f3b180/1/JxdJDPVZMnR9Us0Yow96qPISJ1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/a1f9df-c48e-497f-ad33-82faf8f3b180/1/qot5jOetrq6ecJFbosvPg_5l2d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.181.198.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:0c:3b:ca:e0:9c:53:2e:95:7d:25:cb:95:0c:04:aa:7d:db:
40:d8:c2:98:87:a8:a0:a2:77:11:89:2e:ab:72:42:92:bb:20:
a1:22:a0:76:66:80:ed:b5:94:8f:33:2a:5f:5d:07:d0:8b:55:
a2:5b:ac:0a:a4:a5:1c:c2:1d:ce:38:b2:4f:24:3c:99:0f:61:
80:68:94:4e:3f:35:15:97:e5:6e:c3:33:96:d4:c2:22:50:6d:
b0:cf:53:54:0a:f3:57:07:e0:4b:30:84:20:51:14:53:49:e5:
eb:6e:c2:d9:16:c8:eb:2e:76:7b:cb:56:1d:c0:68:22:bf:63:
7f:b5:78:76:f7:7d:dd:38:f3:97:bd:11:e3:a7:de:6e:8f:c1:
a4:81:01:6a:09:53:51:f4:b3:c1:79:af:a7:58:cc:7e:79:d2:
52:b3:8d:c7:90:65:c6:48:29:fa:a3:f0:cd:8b:bd:81:9c:f6:
d3:06:28:66:1b:d9:39:36:a4:c5:0d:3c:51:10:0b:f4:54:38:
4b:54:9c:38:46:4d:1b:f1:0d:ed:a1:51:ff:36:d5:f4:02:60:
e6:e4:35:4d:99:26:00:64:6b:da:e8:4d:9b:c9:a6:54:75:77:
fb:22:15:51:01:ed:52:b2:6f:d2:24:4e:91:3c:6c:25:5a:64:
37:29:d1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:20:40 2025 by rpki-client