Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LJH72TSXfbOv5GvjVBdYrRrSSsE.roa
File: LJH72TSXfbOv5GvjVBdYrRrSSsE.roa (raw, json)
Hash identifier: flzonhWS5nSMaYCUDxFDGxGxZvCDGuyNEg5gV3+WBFs=
Subject key identifier: 2C:91:FB:D9:34:97:7D:B3:AF:E4:6B:E3:54:17:58:AD:1A:D2:4A:C1
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 019425FCA8FBA959E688E6811E2E60E3588F
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LJH72TSXfbOv5GvjVBdYrRrSSsE.roa
Signing time: Thu 02 Jan 2025 07:48:22 +0000
ROA not before: Thu 02 Jan 2025 07:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29272
IP address blocks: 85.232.255.128/25 maxlen: 25
2001:1a68:2b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:a8:fb:a9:59:e6:88:e6:81:1e:2e:60:e3:58:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 07:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c91fbd934977db3afe46be3541758ad1ad24ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d0:31:41:38:61:5e:8d:ce:5d:49:31:d4:cf:
17:7a:b6:62:0f:7d:b2:b1:c9:0c:9c:a5:fd:19:15:
c7:db:62:4e:5a:8b:1a:1a:5f:1f:e6:bb:c1:26:9e:
16:d1:6e:29:2e:c2:32:c5:a8:b0:9a:2e:8e:20:32:
e2:1a:fb:ff:28:bb:05:c2:2b:67:70:19:17:62:4c:
50:73:3f:d5:4e:6d:ff:02:ad:f2:5c:7e:fa:54:c2:
09:dd:54:48:dd:3e:ba:f9:19:5d:86:3a:d5:2b:7b:
dc:cf:6e:f9:02:96:27:c0:22:28:11:80:64:ab:3b:
fb:9d:76:ee:a1:be:2a:26:8e:b1:80:ae:76:ee:74:
2c:b2:95:dc:17:0a:30:b7:10:92:04:32:0b:b6:fd:
34:65:ab:09:fc:5d:7e:2c:0d:b2:4a:f6:81:91:a9:
75:be:ef:fd:28:f7:e1:23:88:61:ed:af:19:9f:70:
84:e5:f9:f9:14:aa:3e:ec:85:4e:b9:28:ce:90:9d:
a1:13:9c:34:52:1a:53:2a:69:f1:f0:90:ef:41:0f:
61:d8:aa:b6:2b:d5:ae:f5:78:b2:57:c1:5e:08:7a:
4b:ff:a6:4c:bb:66:41:0a:ea:dc:7f:a3:16:1d:0d:
c5:06:9f:80:21:c1:d2:aa:df:fb:95:d4:ab:1f:62:
21:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:91:FB:D9:34:97:7D:B3:AF:E4:6B:E3:54:17:58:AD:1A:D2:4A:C1
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/LJH72TSXfbOv5GvjVBdYrRrSSsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.255.128/25
IPv6:
2001:1a68:2b::/48
Signature Algorithm: sha256WithRSAEncryption
82:ca:c1:78:73:ab:be:58:48:68:a9:6c:89:b2:88:93:91:e3:
5a:c8:6a:28:25:49:1a:83:ba:1f:fb:db:5a:db:3f:b9:12:48:
c3:aa:77:63:5b:b3:99:0f:d5:80:bb:80:3d:75:f4:8b:cd:fb:
a1:46:c4:46:91:d8:80:63:dd:ce:d3:a5:7c:c3:f4:d4:f8:e4:
b6:b4:33:0f:bd:da:d6:9c:47:a6:da:4b:31:fc:70:e2:b8:18:
d4:cc:5c:3f:95:76:c3:12:0f:a6:43:0a:04:9f:3e:a5:9c:e0:
36:e2:b6:29:23:cf:fc:3c:6e:29:50:68:cd:b9:a7:b4:ff:81:
9c:bc:df:c6:4e:21:e9:7f:c5:31:ae:00:c0:95:7e:6d:df:90:
5c:19:97:80:a1:91:46:c8:11:0b:0e:91:46:90:49:d1:f5:35:
3e:65:2c:52:4d:3a:14:35:de:25:fa:2a:a7:4c:1c:51:c1:61:
50:da:bf:05:69:49:80:7f:b2:a6:7e:28:fd:86:4b:83:ae:12:
9d:9c:49:e7:1b:d3:da:6e:f3:62:cf:e8:b2:2f:2f:21:34:85:
e5:fc:12:c7:13:ff:d5:14:e9:80:53:97:1b:49:74:73:bd:55:
6f:b8:17:d8:94:f7:af:91:95:06:34:cb:8d:b2:4a:18:72:a6:
92:9d:44:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:14 2025 by rpki-client