Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXD9Sd6hPjkjt_9vL9NLtUpkyhM.roa
File: JXD9Sd6hPjkjt_9vL9NLtUpkyhM.roa (raw, json)
Hash identifier: kotDPkeRCr2QO2PKeZvWSuvTDU8CEU3xFncjLyg7PE4=
Subject key identifier: 25:70:FD:49:DE:A1:3E:39:23:B7:FF:6F:2F:D3:4B:B5:4A:64:CA:13
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01945FD26655C64EBED6B6709564FD08905A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXD9Sd6hPjkjt_9vL9NLtUpkyhM.roa
Signing time: Mon 13 Jan 2025 13:20:11 +0000
ROA not before: Mon 13 Jan 2025 13:20:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44592
IP address blocks: 77.90.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:d2:66:55:c6:4e:be:d6:b6:70:95:64:fd:08:90:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 13 13:20:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2570fd49dea13e3923b7ff6f2fd34bb54a64ca13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:03:48:08:c4:1e:36:5a:ea:83:f4:ae:0e:25:
87:22:6d:10:ab:db:e1:48:72:e0:e8:80:3a:47:2f:
9b:1b:44:3c:13:3d:5b:87:11:3e:b6:b7:a5:23:39:
70:f8:3c:0d:d2:c4:9f:72:ea:3e:b6:ce:15:ed:ad:
c7:8a:8f:e6:3f:1d:38:0b:7a:02:32:04:c2:21:68:
61:c1:df:4c:94:6b:a4:20:7e:22:83:f7:f1:87:28:
38:01:05:74:e9:2b:21:6d:bb:b6:e9:ff:72:27:b3:
23:78:5f:d6:20:23:0e:82:de:5a:31:f4:a8:d1:23:
7f:cf:a0:5c:8f:95:6b:c7:aa:e7:5a:2d:4e:f3:9f:
8a:22:14:40:93:0a:65:a3:0b:ac:59:12:3e:73:43:
0c:af:9a:3a:d5:fe:5a:2e:a3:5b:70:94:01:07:84:
ad:e2:83:ab:b5:04:dc:c0:4a:bc:8d:07:c7:e1:fe:
54:f9:97:16:69:ae:28:9a:63:57:24:7d:11:f3:d1:
d6:2a:97:06:da:bf:fc:82:21:32:19:18:16:0e:a1:
27:3e:8b:85:d0:44:96:96:10:8d:42:d2:dc:52:52:
6e:52:f3:56:aa:33:ca:19:3c:92:6b:5b:91:04:4f:
e3:6c:33:d0:b4:23:3c:fe:48:77:b1:23:ad:fd:a2:
53:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:70:FD:49:DE:A1:3E:39:23:B7:FF:6F:2F:D3:4B:B5:4A:64:CA:13
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXD9Sd6hPjkjt_9vL9NLtUpkyhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:d8:f2:96:b2:77:69:05:9b:6d:39:f0:14:76:9f:e3:fd:8e:
54:c2:c3:72:ec:c4:d3:cb:9f:87:36:bc:51:98:16:2c:b1:e6:
03:0e:cf:70:34:08:b1:2b:be:02:75:b8:a3:aa:8a:c0:98:f8:
44:21:a1:4f:ae:0d:6c:21:b1:a8:a2:a7:9d:1f:d3:b3:6a:87:
2a:e3:29:02:64:e8:a6:cb:28:14:e2:db:61:49:82:a3:22:15:
68:bc:cc:f4:31:dd:f6:4f:69:b4:cd:d3:bf:4d:78:11:bc:8d:
02:1f:c5:5d:89:57:b3:f0:bb:2e:7c:0f:84:8e:f1:31:f1:b9:
1e:f7:b3:50:5f:9c:a9:84:e3:07:6b:41:16:49:5a:fb:a6:97:
f0:02:f3:4b:6e:70:65:61:40:cb:58:be:c8:06:cc:76:dc:2a:
74:cf:3a:9d:eb:6f:f5:c3:b7:20:5a:10:5e:c5:2f:0a:ad:a5:
dc:7a:7b:fc:ce:64:dc:ed:39:20:d5:ad:0b:0a:aa:c3:fe:ae:
72:5a:f6:52:55:1d:d2:fa:f7:01:9b:28:42:6f:c3:78:58:f6:
9e:1b:9c:7b:c6:17:a7:23:51:98:fc:52:82:a0:72:44:b9:12:
c3:d5:2d:43:3a:c4:8a:e2:f7:a3:d6:05:3c:f0:2e:fe:01:e8:
df:4f:52:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:41:10 2025 by rpki-client