Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/JLTWHRuvioIZeiPuQHITq0nguEU.roa
File: JLTWHRuvioIZeiPuQHITq0nguEU.roa (raw, json)
Hash identifier: bk5yHjHsl6C1xvyULuJt1KQ0iqgopaEeKAR0yVznkzo=
Subject key identifier: 24:B4:D6:1D:1B:AF:8A:82:19:7A:23:EE:40:72:13:AB:49:E0:B8:45
Certificate issuer: /CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Certificate serial: 019425FD87232B63267C47CF2075D5C7D392
Authority key identifier: 23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/JLTWHRuvioIZeiPuQHITq0nguEU.roa
Signing time: Thu 02 Jan 2025 07:49:19 +0000
ROA not before: Thu 02 Jan 2025 07:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.210.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:87:23:2b:63:26:7c:47:cf:20:75:d5:c7:d3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Validity
Not Before: Jan 2 07:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=24b4d61d1baf8a82197a23ee407213ab49e0b845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e5:75:c9:09:6c:05:ca:32:52:f1:08:bd:f1:
f8:ff:82:d2:34:5b:cd:ee:a6:f2:60:92:47:fe:4f:
3b:1f:80:5c:83:bf:e4:9a:c3:ca:50:ba:95:e4:9c:
c9:09:a6:37:7a:fe:06:04:ac:96:d9:6f:46:c7:9c:
37:13:84:a5:25:8e:cd:66:6a:b2:2d:7a:1c:8d:fb:
f7:8a:e2:51:29:27:44:71:46:6d:83:d1:40:d2:9a:
4f:f1:db:81:eb:ea:20:9e:7f:77:d9:7f:ad:5a:0a:
73:74:29:db:e8:f8:1b:34:8e:16:9e:66:e1:4a:75:
1e:ff:c2:ed:55:df:eb:2b:bc:20:06:db:2c:f9:00:
43:30:b6:25:de:b9:3b:ff:ca:85:82:50:ec:9c:ac:
d2:d6:1b:74:79:c2:e8:2a:23:1d:44:78:cc:63:5f:
a2:87:5c:f9:33:3a:13:07:5f:56:49:e4:7a:d5:f1:
1c:26:41:a7:df:25:08:a8:1d:28:64:6b:ad:80:45:
ff:0d:50:6c:02:73:dd:fa:f3:22:e5:15:8b:31:97:
d8:66:3b:54:62:90:18:8f:81:73:31:14:5c:ea:7f:
02:1b:e5:90:82:20:93:e2:3a:0b:27:2b:4c:ef:66:
ae:14:ef:bd:05:2e:15:63:2c:72:2b:c1:91:7e:58:
94:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:B4:D6:1D:1B:AF:8A:82:19:7A:23:EE:40:72:13:AB:49:E0:B8:45
X509v3 Authority Key Identifier:
keyid:23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/JLTWHRuvioIZeiPuQHITq0nguEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/I-5ecUCbIf1cgg89OsP9wPznWgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.156.0/24
Signature Algorithm: sha256WithRSAEncryption
91:00:cf:86:ec:b4:3f:9a:21:e5:4c:61:f0:81:da:41:49:3f:
b0:96:cd:d0:f4:c6:02:c9:2e:56:8c:45:9e:87:70:07:09:c3:
76:f8:81:72:77:84:f3:41:36:6a:bf:b3:cc:76:6c:03:d1:38:
24:43:73:ce:5c:26:29:4d:3a:91:21:55:1b:63:e7:90:4e:72:
df:e2:19:63:8e:06:e5:5b:50:23:2c:f8:a0:f6:2f:3a:bd:d3:
d0:ae:2d:fa:10:05:f6:0a:92:6c:14:3b:64:44:91:61:69:0d:
5b:76:1e:9f:0e:d8:f1:f6:a9:70:d9:1f:7f:0d:9f:ff:d8:7a:
c6:5a:f0:dd:e2:17:c1:92:35:4d:e9:54:d2:56:3f:6d:8d:62:
d4:c6:0a:a2:cc:b9:f4:37:88:8b:5b:30:8e:b3:d4:83:af:a2:
df:48:fd:e6:83:31:bc:9b:9c:e2:47:90:39:67:60:23:11:ae:
53:38:dd:b7:32:59:67:b0:89:bc:7e:f5:7f:29:25:59:a6:9c:
a8:ef:ea:5e:b9:e3:c6:7b:81:61:65:fb:f8:a5:6b:1d:d4:44:
1f:86:d9:20:55:17:84:30:3c:a0:25:b6:49:b9:4c:bf:67:f5:
fc:b2:4c:c3:d2:cd:2d:bf:26:27:cc:10:84:a3:db:04:b7:49:
ff:3c:1f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:45:36 2025 by rpki-client