Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/JPqEs0VD2Rgnp4dnXEQhuGWAI74.roa
File: JPqEs0VD2Rgnp4dnXEQhuGWAI74.roa (raw, json)
Hash identifier: 3W96zV9LWaSdvtlxOwqHZAGyB9Drn7lTnMWBI5WlL5A=
Subject key identifier: 24:FA:84:B3:45:43:D9:18:27:A7:87:67:5C:44:21:B8:65:80:23:BE
Certificate issuer: /CN=469ff2033362b8bd4a4c1d1084657e90a2501a13
Certificate serial: 086B320C
Authority key identifier: 46:9F:F2:03:33:62:B8:BD:4A:4C:1D:10:84:65:7E:90:A2:50:1A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/JPqEs0VD2Rgnp4dnXEQhuGWAI74.roa
Signing time: Sat 01 Jan 2022 07:56:46 +0000
ROA not before: Sat 01 Jan 2022 07:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137443
IP address blocks: 185.243.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141242892 (0x86b320c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=469ff2033362b8bd4a4c1d1084657e90a2501a13
Validity
Not Before: Jan 1 07:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24fa84b34543d91827a787675c4421b8658023be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:58:93:66:ce:0d:a9:9a:42:28:d5:88:2c:0b:
14:69:00:6d:e3:82:51:ab:92:e7:00:2b:2a:45:b2:
a6:7c:da:27:13:33:a9:22:24:e3:15:3e:67:ec:ae:
4c:f6:3b:e7:77:db:d6:c4:86:69:70:2a:d6:83:41:
ae:ba:3a:72:72:07:cd:96:ce:d2:e8:de:18:b3:ce:
b5:76:f3:32:08:ff:5d:f3:ce:69:fd:cc:8d:59:b9:
ca:3b:05:95:db:79:ee:73:22:b6:95:24:03:38:95:
c5:b5:72:23:09:77:f3:ef:c5:26:c7:b8:c7:ef:08:
71:09:46:f8:28:3f:50:0e:06:1d:ee:10:26:c1:cc:
f7:bf:c8:64:74:26:54:3b:b6:96:6b:08:be:b1:ee:
72:f6:24:22:59:14:df:37:b7:f8:be:aa:7f:a2:f2:
e0:4e:8f:74:2c:6c:fc:ae:81:b9:33:a7:43:bc:35:
95:dc:a1:78:93:0a:2e:24:23:f3:ae:f6:2f:cb:42:
b9:52:e7:65:2e:29:92:dd:af:7d:c4:9a:13:34:ee:
c1:27:3d:03:63:ff:df:c8:31:be:40:a3:6d:5a:16:
1d:4c:53:17:7b:08:7b:67:15:0b:09:c6:da:9f:ad:
a8:0b:0b:b4:30:05:d1:ca:02:0c:22:d5:09:6f:b5:
cd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FA:84:B3:45:43:D9:18:27:A7:87:67:5C:44:21:B8:65:80:23:BE
X509v3 Authority Key Identifier:
keyid:46:9F:F2:03:33:62:B8:BD:4A:4C:1D:10:84:65:7E:90:A2:50:1A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/JPqEs0VD2Rgnp4dnXEQhuGWAI74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fdcb72-eb02-4939-b040-f7f5d52a15a5/1/Rp_yAzNiuL1KTB0QhGV-kKJQGhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.43.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7c:52:6b:12:12:a5:7e:35:37:f7:9a:1b:18:9f:d7:bd:45:
82:d2:89:bd:46:bd:6f:e6:80:d2:cd:6d:fe:2e:1f:f0:be:5e:
27:cd:a4:76:55:4d:ee:46:95:ed:40:e2:5f:25:2e:5d:1a:06:
88:3c:a5:ae:55:b3:fa:6b:ae:44:d8:93:97:a2:8a:11:c8:d6:
5e:2a:03:c4:28:13:fe:fa:05:ae:ea:4a:03:36:2c:6f:56:27:
2c:ea:a4:36:87:5d:24:4f:da:1a:ee:85:2c:ae:fd:96:79:90:
b1:4c:81:09:02:da:1e:86:b7:c2:f0:58:9b:05:8c:f3:ab:d5:
24:c7:58:23:32:1c:bc:8c:a0:57:6b:fc:49:22:24:1b:a0:f2:
d2:ea:05:5a:76:e9:ee:43:d9:78:86:7f:70:42:20:65:d9:6a:
99:9c:4c:5e:76:60:2d:f1:73:b9:f7:38:9a:0b:7c:2b:20:3d:
41:a7:e6:1d:f1:ff:5c:cf:f2:cf:04:d5:ec:37:16:53:c0:cc:
69:ca:a2:f1:d2:50:f5:94:1c:e5:23:21:12:1d:e7:8e:f3:85:
c9:aa:15:53:c8:36:07:58:56:5a:b8:73:6d:c8:12:25:60:c0:
48:ca:1f:b1:7f:f4:58:fd:c7:52:c8:b4:58:df:1d:a7:88:22:
f9:3a:f2:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:07 2025 by rpki-client