Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/J8itDt7BKd7X_gO4nqA0kZrwZ3Q.roa
File: J8itDt7BKd7X_gO4nqA0kZrwZ3Q.roa (raw, json)
Hash identifier: f/dgTfXzw2pZXhUVOvXhW49Wl9ZWrzC/QrtQ6IiLqsU=
Subject key identifier: 27:C8:AD:0E:DE:C1:29:DE:D7:FE:03:B8:9E:A0:34:91:9A:F0:67:74
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01942748A30D3B07A477539E316D180471BB
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/J8itDt7BKd7X_gO4nqA0kZrwZ3Q.roa
Signing time: Thu 02 Jan 2025 13:50:59 +0000
ROA not before: Thu 02 Jan 2025 13:50:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216117
IP address blocks: 2.58.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:a3:0d:3b:07:a4:77:53:9e:31:6d:18:04:71:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27c8ad0edec129ded7fe03b89ea034919af06774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:49:4c:17:3d:61:c4:e2:1a:a4:2b:09:b6:7b:
fb:d0:7d:0d:cb:53:18:eb:a1:b1:60:0d:0a:11:f0:
ae:4d:a9:97:73:ea:c5:04:fa:aa:47:85:ae:d1:21:
1c:44:21:4d:aa:07:49:bb:03:02:18:54:04:74:41:
30:a5:a8:14:bc:3b:c3:d5:a3:be:1a:d1:92:32:d4:
e2:1d:ea:89:f5:af:5d:0a:86:40:84:f3:e9:11:79:
e1:c1:d5:28:ec:b7:75:bc:23:6b:c8:ab:13:0e:05:
1f:dd:17:52:49:46:8a:27:0e:ca:b4:ee:05:b1:a0:
fc:ad:a8:bd:32:6e:80:c7:41:17:ce:e6:d5:8a:f7:
be:4b:55:e1:1a:2d:f9:ba:10:94:e5:d8:d2:42:bd:
39:2d:8c:c2:98:13:19:4b:a9:aa:6c:0a:4f:e1:b9:
11:91:3d:b8:e7:60:ca:c8:8d:a6:16:ae:b5:28:7b:
c3:f6:ce:ba:8e:1c:e5:0e:ec:ed:90:0a:02:20:4e:
64:11:d6:e1:56:6d:e9:cb:e4:15:82:3d:e2:f0:fb:
68:31:29:1e:29:6b:ae:45:2d:a1:53:78:01:6f:a0:
91:5a:6b:ce:79:a3:d4:0e:aa:99:97:9b:3a:0e:e6:
3d:b2:42:19:5c:15:ec:19:ad:00:fd:09:ae:6a:73:
32:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C8:AD:0E:DE:C1:29:DE:D7:FE:03:B8:9E:A0:34:91:9A:F0:67:74
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/J8itDt7BKd7X_gO4nqA0kZrwZ3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.199.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3d:e0:be:8e:bb:96:83:ac:e1:1d:48:68:96:3e:d4:1f:4b:
6a:a9:3a:2b:59:18:5c:1d:a8:3f:71:8f:cc:22:3c:df:ed:b9:
b5:82:1e:4c:e7:c1:b9:99:e0:1f:67:10:4e:3c:cd:bc:c5:fd:
cf:21:3a:70:f1:fd:71:6c:aa:25:82:97:5f:ad:ba:bc:26:e3:
27:01:08:8e:e1:4d:20:54:4f:02:79:1d:a5:b6:1f:e0:39:0b:
50:ec:8b:ca:59:04:b7:85:58:33:c2:5e:8a:a7:10:7f:2a:c0:
e7:1a:75:ce:71:c9:49:6e:ee:a1:c0:c9:d0:63:45:ac:15:1e:
b8:b4:78:45:ca:d2:4c:a4:4a:18:4c:aa:84:dd:fc:86:78:80:
f1:25:a9:2c:35:22:01:2b:90:3a:b6:64:9b:4a:17:a2:9a:63:
f1:cd:ef:be:39:c5:59:ab:a3:dc:1f:9d:6c:e6:da:9a:4f:71:
fc:2c:43:de:f6:b3:1b:61:52:93:28:03:35:59:e9:ce:40:7d:
d4:a9:a6:d6:66:b5:4e:79:cb:fd:a1:9c:65:74:42:39:4a:92:
b6:08:de:a7:5e:bd:ea:de:2c:b3:11:ef:7f:fc:a5:bf:01:34:
99:e8:18:c5:28:09:ab:29:89:1a:d7:91:27:82:e2:16:80:b4:
7d:1e:ee:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:13:46 2025 by rpki-client