Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/JW-s5VR-ngld1Z42efIJVWme7-Q.roa
File: JW-s5VR-ngld1Z42efIJVWme7-Q.roa (raw, json)
Hash identifier: 0fAztywJqizFvN2b/R52clyyXkwp2bsPnWEBGnG5Xf8=
Subject key identifier: 25:6F:AC:E5:54:7E:9E:09:5D:D5:9E:36:79:F2:09:55:69:9E:EF:E4
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 018505180E94D5037FD3EC829B061D716D10
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/JW-s5VR-ngld1Z42efIJVWme7-Q.roa
Signing time: Mon 12 Dec 2022 06:49:00 +0000
ROA not before: Mon 12 Dec 2022 06:49:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 91.199.166.0/24 maxlen: 24
91.198.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:18:0e:94:d5:03:7f:d3:ec:82:9b:06:1d:71:6d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 12 06:49:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256face5547e9e095dd59e3679f20955699eefe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ef:9e:89:44:a1:0c:3b:61:3c:41:23:d1:f1:
13:e1:e3:46:46:8c:d3:e6:45:90:ed:a3:93:1b:f8:
8c:38:88:2e:ac:0f:15:c1:12:d0:fa:0a:b5:ba:14:
72:91:89:ac:76:63:e3:1d:b0:af:d4:51:ae:83:f9:
cd:86:d4:9c:d1:b3:d9:c6:9d:ac:5e:3c:1c:1d:ca:
95:ab:06:1c:4f:ad:6d:a1:27:50:b5:52:8f:60:1c:
dd:cd:a9:fd:99:ff:e6:c2:92:78:13:2b:f1:cd:20:
15:0b:8c:18:d6:87:d3:ef:ff:a2:b3:84:b2:99:e7:
95:27:03:e1:72:a6:77:f2:25:7d:18:47:a8:96:59:
18:6f:d6:cb:1e:37:7e:c0:1f:f3:3d:22:7f:ce:93:
c6:ca:b0:63:98:00:2e:40:28:a6:a6:64:48:af:e4:
b4:af:f6:28:18:37:b3:b4:e1:78:33:47:38:c1:f0:
c2:70:7d:44:51:f1:c9:ac:ce:71:52:2f:ab:a1:c9:
c8:32:d7:6c:fe:3b:25:b8:62:58:9d:a2:5c:ef:7f:
a2:8d:34:83:1f:f4:b6:ef:77:af:64:6b:1c:4b:0f:
51:4d:de:11:34:cf:90:65:1e:2c:91:8f:65:5f:68:
10:26:cb:39:98:05:b7:99:96:0f:db:52:9c:c1:0a:
b0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6F:AC:E5:54:7E:9E:09:5D:D5:9E:36:79:F2:09:55:69:9E:EF:E4
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/JW-s5VR-ngld1Z42efIJVWme7-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.123.0/24
91.199.166.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e0:d1:25:cf:bb:53:f9:d9:fc:b4:5c:95:6a:b6:4a:a9:93:
02:eb:54:ab:ad:58:8d:73:0e:5d:a3:a9:11:f8:bb:02:23:46:
38:84:2e:7f:ae:71:07:92:71:62:96:cd:7e:6d:59:7d:3b:b3:
52:03:d1:4a:01:c6:25:13:ed:d0:1f:8b:f8:60:77:72:ef:e6:
01:fa:8e:e1:e2:ff:0b:27:b7:ef:87:95:54:08:dc:18:86:5d:
d9:96:b5:dc:c5:e0:f3:fe:1d:74:ca:92:96:2b:b5:7f:5a:d6:
e3:98:6f:1c:28:de:f4:42:fd:6b:ca:5d:76:29:13:90:fd:ed:
4a:7c:94:b2:cf:12:54:bf:1c:a8:f3:63:70:bc:f1:97:93:0d:
7d:e9:2f:6c:bd:4a:e7:bb:d2:f4:a6:d4:e5:46:2a:70:13:bf:
e5:de:e6:30:05:31:53:27:a0:fa:0b:c4:09:55:da:60:64:c6:
ef:37:7d:3b:36:c4:46:67:6d:2e:33:47:af:0e:80:33:53:88:
e9:c3:f8:2e:a9:04:91:06:29:75:3b:51:b4:a9:b3:0b:9a:cd:
6a:09:3a:37:57:7c:24:06:4d:5a:91:41:61:16:03:1e:32:b7:
48:e9:2f:88:15:65:58:1d:94:29:c0:2f:db:5f:34:ef:96:7e:
6d:70:5a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:00 2025 by rpki-client