Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/jsrO2dMd1DrM3Wj_lh__bxOX5TE.roa
File: jsrO2dMd1DrM3Wj_lh__bxOX5TE.roa (raw, json)
Hash identifier: zXyg6RLQczthA5/UHyhVO/OGR/lxg+IHl3CSePgZarc=
Subject key identifier: 8E:CA:CE:D9:D3:1D:D4:3A:CC:DD:68:FF:96:1F:FF:6F:13:97:E5:31
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 01856F798FBE8275B785E41714652490A671
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/jsrO2dMd1DrM3Wj_lh__bxOX5TE.roa
Signing time: Sun 01 Jan 2023 22:35:15 +0000
ROA not before: Sun 01 Jan 2023 22:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20764
IP address blocks: 79.141.208.0/20 maxlen: 20
80.64.96.0/20 maxlen: 20
80.64.98.28/32 maxlen: 32
185.5.160.0/22 maxlen: 22
81.27.240.0/20 maxlen: 20
2a00:1c28::/29 maxlen: 29
2a00:1c28::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:8f:be:82:75:b7:85:e4:17:14:65:24:90:a6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 1 22:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ecaced9d31dd43accdd68ff961fff6f1397e531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fa:00:01:3b:44:c9:0e:da:ec:25:56:41:ed:
dc:85:4f:dd:a9:36:42:18:3f:4a:cc:49:bd:6a:48:
e8:a9:2d:21:78:25:11:2d:35:51:13:4d:e5:15:a3:
15:9b:33:7d:78:e6:36:fd:7d:a9:b2:f0:a5:67:46:
d9:4c:85:d5:62:7a:6f:4e:52:a1:ea:89:ed:c1:af:
1b:2b:b6:fc:30:ba:d9:bc:ad:e9:f4:3e:a2:09:11:
29:ef:95:39:60:8a:15:1e:b7:23:22:22:15:89:9e:
d3:27:70:aa:cd:67:8c:24:7e:d8:a7:2b:ee:3d:66:
59:05:64:48:1e:e2:80:1a:2e:72:81:7e:df:97:3c:
ee:04:ec:c5:22:1d:84:44:c6:6a:6c:c7:0d:e5:1f:
7b:3f:d5:56:13:ce:c8:f5:9a:30:d5:ac:59:72:5d:
6c:cb:ee:56:e8:be:74:a5:5b:3b:05:4d:b2:b4:76:
f8:7d:d2:78:c9:15:8f:54:ff:8b:6d:e5:c5:53:3b:
1e:37:db:c4:d8:c4:81:66:5a:5f:8c:6f:2a:e2:98:
5b:a8:f6:63:df:7b:e9:6d:3f:b2:f3:45:de:70:cd:
c3:68:62:f0:96:71:79:bf:36:10:19:36:15:ee:05:
66:7b:9c:2a:23:32:ca:66:46:2a:f8:57:26:ab:7a:
b9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:CA:CE:D9:D3:1D:D4:3A:CC:DD:68:FF:96:1F:FF:6F:13:97:E5:31
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/jsrO2dMd1DrM3Wj_lh__bxOX5TE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.208.0/20
80.64.96.0/20
81.27.240.0/20
185.5.160.0/22
IPv6:
2a00:1c28::/29
Signature Algorithm: sha256WithRSAEncryption
9e:f2:09:50:7d:ba:fb:5e:ce:1b:63:27:34:dd:5a:db:82:df:
91:59:94:6b:69:72:0f:f7:c8:0a:5d:f1:5f:71:5d:53:64:77:
3b:2d:1f:2b:23:8f:16:ee:05:97:83:e5:b5:fe:65:90:aa:9f:
ec:f2:e9:0a:30:6a:39:d4:8b:46:04:0f:58:7e:4c:47:b6:68:
15:40:27:16:8c:63:63:d5:5f:13:8d:1a:4a:fc:f4:e5:1c:61:
a8:13:8e:e5:b9:d2:6a:f3:c1:ed:ac:54:af:aa:8a:61:f8:03:
d6:63:b0:54:a1:06:ea:f8:28:a0:e2:94:1e:26:d1:01:85:73:
69:93:d8:7d:7d:7f:f8:70:ea:3e:ee:7a:0e:67:8a:6c:e2:0d:
21:ee:b3:a7:ff:2b:d0:a9:cf:2f:c5:0b:65:72:56:b7:14:fc:
db:ed:a1:e9:32:e7:12:aa:36:43:a1:79:d6:88:83:4c:9b:71:
52:95:90:58:ec:ad:29:83:37:ab:8f:d2:04:78:0b:3e:f7:05:
22:dc:83:13:d8:ad:41:21:1c:bc:f6:ac:d3:46:97:17:8b:dd:
d2:ef:4b:00:f3:c5:83:a1:aa:61:48:47:97:f6:9e:2c:b3:0d:
31:11:5a:79:bb:ab:d2:cd:0c:c0:cc:84:a1:e7:bd:9c:ed:aa:
ff:5a:2f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:22:12 2025 by rpki-client