Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfc002-c1c0-4b65-aa7c-2213691facfb/1/JyLCZ_bR6wM80rw16r6avCjwz0Y.roa
File: JyLCZ_bR6wM80rw16r6avCjwz0Y.roa (raw, json)
Hash identifier: 6zadc1R7fT4zJIakPb+UDH/ampE8zd7xVejRJnevl/o=
Subject key identifier: 27:22:C2:67:F6:D1:EB:03:3C:D2:BC:35:EA:BE:9A:BC:28:F0:CF:46
Certificate issuer: /CN=3fe4723deefa2109198a957fdfa7112c342fcfc9
Certificate serial: 018570E769688D69A0387DC29394C98CEC8E
Authority key identifier: 3F:E4:72:3D:EE:FA:21:09:19:8A:95:7F:DF:A7:11:2C:34:2F:CF:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-RyPe76IQkZipV_36cRLDQvz8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfc002-c1c0-4b65-aa7c-2213691facfb/1/JyLCZ_bR6wM80rw16r6avCjwz0Y.roa
Signing time: Mon 02 Jan 2023 05:14:52 +0000
ROA not before: Mon 02 Jan 2023 05:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 146.19.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:69:68:8d:69:a0:38:7d:c2:93:94:c9:8c:ec:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fe4723deefa2109198a957fdfa7112c342fcfc9
Validity
Not Before: Jan 2 05:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2722c267f6d1eb033cd2bc35eabe9abc28f0cf46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b1:a1:64:9f:fb:78:47:b5:ce:29:2c:aa:d2:
c9:5b:f9:70:52:9c:18:31:74:4d:91:03:ac:f4:6c:
d9:48:33:99:b1:4c:27:1f:77:bf:7b:21:92:2f:9f:
7c:f8:c2:65:7b:c1:bf:68:a8:5c:8a:f3:45:c1:c0:
96:77:59:2f:61:87:5a:9a:a3:12:22:7d:8e:86:0f:
26:29:8d:5f:ae:1e:63:ca:bc:73:31:b7:e3:37:7b:
7d:c5:d3:a7:33:86:d0:c5:bf:46:77:86:f5:79:0d:
a3:92:c6:e3:94:c0:74:6e:d8:98:d5:91:62:1b:0d:
53:30:df:3a:c2:fa:7e:99:df:af:1b:56:b4:6c:a2:
19:30:a7:b0:2c:f5:95:c7:f3:13:c7:bc:7f:0f:af:
88:b8:44:05:99:ef:f4:a4:c1:c4:2e:b0:9f:8a:48:
5f:4f:fa:ad:86:52:4d:72:80:1d:4f:b0:20:35:97:
0f:11:28:c5:0c:06:8a:40:85:67:34:e4:64:3c:db:
60:06:9f:12:41:27:cc:66:94:d1:7a:40:5a:23:fa:
24:6c:3c:92:d3:2c:c7:90:52:12:10:18:09:61:da:
7d:e0:64:ea:80:77:0b:e8:1d:b2:db:f9:e5:24:a7:
50:a1:37:a9:ae:81:8e:bd:0a:dd:a8:49:47:bd:60:
ba:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:22:C2:67:F6:D1:EB:03:3C:D2:BC:35:EA:BE:9A:BC:28:F0:CF:46
X509v3 Authority Key Identifier:
keyid:3F:E4:72:3D:EE:FA:21:09:19:8A:95:7F:DF:A7:11:2C:34:2F:CF:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-RyPe76IQkZipV_36cRLDQvz8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfc002-c1c0-4b65-aa7c-2213691facfb/1/JyLCZ_bR6wM80rw16r6avCjwz0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfc002-c1c0-4b65-aa7c-2213691facfb/1/P-RyPe76IQkZipV_36cRLDQvz8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.65.0/24
Signature Algorithm: sha256WithRSAEncryption
40:fe:b5:48:a7:54:64:40:e7:41:fb:dd:33:cf:7c:d2:c2:22:
b7:fd:1e:df:7e:07:88:80:fe:62:0d:e1:ba:59:b8:4e:a2:b5:
e9:e1:aa:c5:f5:0a:5c:b8:46:45:fb:f7:6d:4d:04:2e:bd:6c:
83:21:59:5e:1b:55:e2:b8:73:29:da:d6:7c:fc:6d:e4:3a:5c:
aa:99:cb:01:ec:3a:8f:df:a9:d6:5f:0f:e1:43:22:20:0c:1c:
d8:e2:a5:b4:2e:d7:20:6a:c4:58:5b:92:ba:25:f6:56:35:d1:
96:6d:dd:b6:df:bf:8c:18:23:7c:0f:75:04:c6:8e:df:d8:cf:
b9:1d:1e:a3:85:30:0b:13:76:e9:d8:b4:e3:85:cd:39:27:6b:
ee:2d:5c:cd:c6:0f:e4:6b:5f:32:ed:f8:d0:5b:93:67:5b:34:
79:6b:20:65:83:8c:7f:3f:b8:eb:35:fb:d1:bd:44:8e:8d:c1:
e3:10:46:48:61:b3:06:e5:63:c7:8e:3b:27:24:d9:50:1c:11:
ce:16:cc:0e:be:25:0d:04:5d:47:ab:e7:96:d5:de:60:e9:66:
53:59:92:78:58:8e:a4:de:38:d3:0e:d2:2c:c4:ba:ca:f1:78:
17:a4:38:1b:31:4d:d1:1a:54:bc:5f:2a:02:05:46:e6:92:65:
fe:7c:07:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:13:23 2025 by rpki-client