Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jRGGTvaklMkrf_F4mdMLApIyJW0.roa
File: jRGGTvaklMkrf_F4mdMLApIyJW0.roa (raw, json)
Hash identifier: T3iKWwt82q8tZ2ItldmhQ5JxvYbCMQiuVxH/qbrD0Qc=
Subject key identifier: 8D:11:86:4E:F6:A4:94:C9:2B:7F:F1:78:99:D3:0B:02:92:32:25:6D
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B0C63E0F033622D5404A6694CDE5F
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jRGGTvaklMkrf_F4mdMLApIyJW0.roa
Signing time: Sun 01 Jan 2023 13:35:07 +0000
ROA not before: Sun 01 Jan 2023 13:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60190
IP address blocks: 212.243.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:0c:63:e0:f0:33:62:2d:54:04:a6:69:4c:de:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d11864ef6a494c92b7ff17899d30b029232256d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:97:b3:d4:bd:a7:52:97:bc:73:92:5d:c2:0e:
ef:d8:33:e0:b8:18:7d:a5:52:c3:32:ab:d3:68:1b:
19:f8:1c:f0:61:69:82:69:6c:a8:c0:a1:95:88:5e:
fb:15:29:e6:ec:96:77:a5:64:d8:7a:2f:ed:31:c5:
7c:a2:2e:8a:26:05:65:3d:95:25:97:87:91:47:8f:
98:7f:24:45:e7:0c:b6:84:91:e2:43:04:28:0d:26:
08:2c:3b:71:3f:20:59:9b:08:f3:29:f9:58:46:aa:
8d:9d:f6:b9:dc:af:36:f0:b1:c3:e9:40:bd:9e:ab:
7a:71:e4:3a:58:79:93:f3:ce:3c:4a:2e:25:bb:38:
cb:90:54:05:19:16:51:20:ef:da:13:00:ac:bf:df:
95:26:1e:1a:73:19:84:36:8a:2d:af:9f:dc:59:93:
24:67:8b:ce:55:b6:97:73:fa:36:4a:24:eb:dd:8b:
17:93:dd:e4:9f:91:00:04:0a:de:62:04:fc:ad:30:
7c:29:56:9b:2f:ab:a7:d1:7e:0f:82:1c:8d:fa:cf:
3d:39:6b:73:ea:3c:8f:02:18:13:9a:59:38:56:5d:
38:f9:6e:7b:1a:79:ac:c0:63:fa:b5:56:8f:4e:38:
5e:3e:93:4f:63:c5:5a:9b:af:d9:ad:b4:56:20:10:
58:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:11:86:4E:F6:A4:94:C9:2B:7F:F1:78:99:D3:0B:02:92:32:25:6D
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/jRGGTvaklMkrf_F4mdMLApIyJW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1d:9f:76:14:12:f0:69:66:b1:a3:64:d8:9d:32:85:aa:87:
32:c9:a9:5f:dd:e2:2a:7c:60:39:f9:cc:06:7a:fe:6b:e4:d7:
d2:fc:1e:fb:1d:43:34:bb:69:04:27:93:40:8b:61:5e:d5:b7:
c2:c9:ce:cd:83:1f:58:81:1d:bb:ba:32:2e:e5:c7:f2:d1:1b:
14:1d:c6:16:e6:76:f1:ea:9e:54:a4:38:c5:6b:01:af:99:2b:
eb:aa:20:8b:79:4b:3a:a7:ab:3d:6d:07:66:95:2a:58:54:38:
13:29:85:b8:43:61:a7:e7:4b:3d:fb:81:13:0a:76:fa:e2:64:
a2:e1:b2:91:9c:ad:9d:30:e1:98:ed:f9:b9:66:c0:0f:57:28:
54:3e:a8:57:93:5f:d4:d6:50:fd:5e:d9:52:cd:ea:5c:20:34:
4e:29:73:19:d2:a2:89:9b:43:40:f4:92:60:66:ad:43:2e:94:
f2:6a:78:f7:6e:a0:38:17:96:d8:76:33:bc:a6:9a:78:3d:8f:
4d:67:87:dd:5d:64:7b:d2:35:23:6c:2e:a8:d3:76:87:8c:d2:
bd:d0:4f:c3:e8:22:1a:86:e2:6c:73:ff:48:50:e3:5f:0b:51:
3b:11:ef:f6:21:92:92:84:8e:4a:a8:0f:a5:c6:41:b0:36:f7:
2b:7b:e0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:47 2025 by rpki-client