Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jqE3bo-kNa7SHKR5cHPwwmkORWQ.roa
File: jqE3bo-kNa7SHKR5cHPwwmkORWQ.roa (raw, json)
Hash identifier: ZPypxCpGQ2LpntjtQzyyJNuXH6BmJ8Q+UDXZswL1uOA=
Subject key identifier: 8E:A1:37:6E:8F:A4:35:AE:D2:1C:A4:79:70:73:F0:C2:69:0E:45:64
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 01856ED4BDF4EABEFA59E7BD3657FE091169
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jqE3bo-kNa7SHKR5cHPwwmkORWQ.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33185
IP address blocks: 37.221.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:bd:f4:ea:be:fa:59:e7:bd:36:57:fe:09:11:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ea1376e8fa435aed21ca4797073f0c2690e4564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:28:16:6a:f3:7c:4a:23:6e:66:1b:cc:4e:da:
7e:9d:6d:1d:48:c2:e3:b1:f3:31:4c:0b:e5:fe:e9:
23:11:68:eb:1a:bb:51:90:70:ba:66:54:75:ca:85:
7f:ef:15:73:80:56:20:ee:5f:61:aa:b0:60:99:a7:
0d:10:57:47:cd:55:e8:3e:2f:2e:f1:d2:38:ba:54:
c1:1b:f3:b3:f7:77:4c:29:8e:55:58:c5:a7:81:8b:
be:79:10:45:3f:65:05:75:23:71:de:1d:fd:39:66:
ff:45:c5:13:09:04:6f:18:db:4a:ad:6c:93:49:44:
61:07:2e:ee:40:cb:70:f6:a6:cf:a0:72:ce:fe:52:
5e:0b:55:35:eb:d8:8e:5c:47:95:d2:9e:e6:90:37:
41:49:05:a5:d6:d5:14:cb:97:76:a4:ed:88:67:b9:
84:5a:83:48:86:18:57:f9:c3:a1:d6:04:e0:4a:cc:
59:7e:73:dd:79:c7:0f:d1:4b:94:b3:1a:b5:47:d5:
a4:b5:32:8e:c2:96:51:71:00:1e:6a:a0:34:d8:99:
ae:6f:40:87:cb:14:80:46:60:fa:1a:47:c9:0f:77:
7a:81:bd:49:17:0d:70:b7:b6:78:9b:f1:37:36:43:
8f:b0:d9:c8:c9:d9:90:4e:e3:28:37:d5:40:66:33:
6e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A1:37:6E:8F:A4:35:AE:D2:1C:A4:79:70:73:F0:C2:69:0E:45:64
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jqE3bo-kNa7SHKR5cHPwwmkORWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.110.0/24
Signature Algorithm: sha256WithRSAEncryption
26:63:17:a0:81:74:c4:4b:50:1d:f3:33:f3:5b:d7:ef:91:45:
be:85:09:08:88:9c:36:70:93:94:e4:24:a7:d7:ca:fc:24:eb:
2b:a3:53:41:42:05:dd:ff:1d:3d:7c:44:c5:b3:ed:b3:2e:91:
24:8a:e6:38:ef:d0:98:10:85:09:b5:e6:5a:ad:93:a8:a7:ca:
74:74:a9:d9:a3:8d:73:82:81:69:06:3a:ac:54:96:15:a6:24:
e2:80:69:31:30:ae:f8:04:51:0a:c2:dc:58:2e:34:2b:28:3d:
15:8c:19:f4:be:e1:f3:e8:46:93:dc:0c:a9:7d:c0:64:59:46:
aa:7a:dc:a5:8d:a7:d5:33:b0:cf:1d:62:1f:31:9a:ca:f8:4e:
cf:dd:a5:8d:c8:3c:f6:01:85:95:0a:ec:99:0e:a9:2d:b7:9f:
56:8d:47:ae:49:a7:7e:ba:0d:1f:44:31:bc:36:ea:45:5b:a1:
c7:5e:b8:b9:e1:b8:5a:45:81:82:3b:34:6a:96:bb:37:97:10:
28:ed:6c:c9:8b:0c:e5:40:bf:1a:e6:70:b3:ff:68:56:99:18:
b9:60:a6:f1:e6:b5:3f:25:6f:43:4e:52:67:df:ba:df:75:98:
18:71:c1:47:d7:63:e7:04:8a:73:b0:c8:dd:cc:fb:ea:b6:55:
b4:cb:3a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:28:20 2025 by rpki-client