Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzoIFAiCPMpShKv2buQiE11jweA.roa
File: jzoIFAiCPMpShKv2buQiE11jweA.roa (raw, json)
Hash identifier: FDWzznAEkOKPTXFlINB/cMS6EGxYDFTEdMIMyW3a86U=
Subject key identifier: 8F:3A:08:14:08:82:3C:CA:52:84:AB:F6:6E:E4:22:13:5D:63:C1:E0
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01951B90B447D8D219B1E859B55253D51A7A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzoIFAiCPMpShKv2buQiE11jweA.roa
Signing time: Wed 19 Feb 2025 00:17:02 +0000
ROA not before: Wed 19 Feb 2025 00:17:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 89.144.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1b:90:b4:47:d8:d2:19:b1:e8:59:b5:52:53:d5:1a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 19 00:17:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f3a081408823cca5284abf66ee422135d63c1e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:7a:99:a9:6d:c9:86:3c:10:a1:90:10:94:
dc:8b:9e:ee:1d:58:a1:e4:c5:5d:4e:ae:8a:0f:a8:
80:41:25:66:dd:01:fd:bb:4a:8f:a8:e3:57:38:a6:
8c:8e:15:3b:46:38:71:29:72:fd:e1:80:ad:6b:e7:
5d:02:eb:23:10:ea:7b:9c:2f:3e:7b:e9:5d:b1:12:
aa:4e:72:9b:29:45:79:4a:f5:e3:2e:97:16:9b:d7:
56:4a:25:64:b5:56:8b:c1:7c:83:ef:00:e3:ba:2c:
b4:1e:30:82:5d:e8:6c:0b:4f:28:45:c1:b1:26:ba:
13:2a:09:71:73:a1:2b:dc:be:64:51:65:43:a6:a6:
2c:b4:94:bf:ac:3d:a2:bd:76:58:24:d2:c6:5a:6a:
dc:73:8b:65:09:f1:9f:f0:47:c8:cf:82:c4:d1:7c:
b5:4e:17:e8:c6:e4:35:66:3e:23:52:26:e1:6b:9e:
be:ab:13:e1:04:51:af:91:9b:f4:9c:eb:13:8e:3c:
7c:5c:23:7a:53:44:aa:48:0c:5d:a8:5f:df:61:d6:
7d:d1:2b:7e:ac:6f:5f:29:22:52:73:b8:70:0b:f1:
38:d5:28:f8:e3:01:7f:2a:02:4e:45:36:23:ff:04:
7f:f0:cb:6d:97:3c:21:9b:e5:58:7a:03:d9:44:86:
e1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3A:08:14:08:82:3C:CA:52:84:AB:F6:6E:E4:22:13:5D:63:C1:E0
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jzoIFAiCPMpShKv2buQiE11jweA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.144.14.0/24
Signature Algorithm: sha256WithRSAEncryption
83:20:7d:07:b5:fe:a5:82:d0:e6:0c:09:41:89:cf:9a:b2:e0:
0b:95:70:73:0f:da:04:fa:44:b4:76:b1:72:c0:cf:b7:19:6b:
f0:13:a5:70:39:aa:26:8e:ed:e6:b4:52:62:3f:31:46:3f:f1:
c4:66:06:04:48:cb:85:19:eb:85:e5:9d:23:74:8a:b6:b9:d8:
b4:01:80:d2:dd:d3:77:04:ee:1a:5c:88:d1:1f:9e:74:2d:61:
37:f1:3c:37:f1:ba:1c:7a:14:fc:90:64:16:49:f8:1b:86:31:
29:97:87:20:6a:8f:aa:c8:2f:17:f5:e7:6e:28:ae:de:00:03:
1e:19:22:cf:aa:40:29:e3:2a:69:56:c0:e7:27:ab:ac:8f:13:
d4:50:d4:23:6f:ae:51:3a:80:42:36:a0:54:1f:4d:fb:f6:0b:
24:c1:35:17:70:b9:5b:ea:a0:82:dd:0d:9f:08:13:7e:9b:bb:
b0:9a:d5:16:39:5b:85:e4:30:ac:96:e2:ab:1f:de:87:95:f4:
03:78:ed:83:d7:cd:fa:68:14:1e:6f:57:09:7e:72:86:52:dd:
c5:e9:d1:f0:71:69:67:18:e6:ea:66:cd:af:82:1a:6a:c2:49:
49:22:3d:06:54:7a:16:6c:7d:15:cb:69:0e:99:36:20:e7:81:
4c:34:49:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:19 2025 by rpki-client