Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa
File: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (raw, json)
Hash identifier: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=
Subject key identifier: 26:C8:1D:D9:03:12:E2:FF:22:29:BA:8A:63:B9:A9:2F:AA:E0:76:BC
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 0194228E0328EF3BCF02FD2C67430784CA6C
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa
Signing time: Wed 01 Jan 2025 15:48:39 +0000
ROA not before: Wed 01 Jan 2025 15:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204168
IP address blocks: 185.111.208.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:03:28:ef:3b:cf:02:fd:2c:67:43:07:84:ca:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: Jan 1 15:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26c81dd90312e2ff2229ba8a63b9a92faae076bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:81:75:fe:9f:b8:ba:fd:71:82:a0:8c:e4:8a:
b5:f0:5f:6d:09:ba:6c:d0:f1:c5:6f:45:78:93:b4:
93:c0:a5:5a:bc:98:2c:61:8a:83:c8:22:23:fd:13:
fd:8c:f7:20:29:94:ca:ac:ff:36:7e:2b:40:3e:ba:
88:1a:a7:6f:19:f3:20:7c:d1:3d:00:c9:41:62:b3:
36:b0:4d:1f:ad:81:45:f6:c9:fb:2b:3c:00:76:ab:
b3:bb:5d:91:da:6e:fb:34:50:e2:24:86:bf:16:04:
6f:93:ea:f2:4b:ab:02:cb:70:42:b7:bc:b0:dd:e6:
f1:e1:96:2f:7f:65:7d:c4:9d:e2:39:46:d5:31:a9:
47:35:db:f8:ce:d0:13:5b:f5:4a:25:4d:f1:73:a7:
af:93:45:ac:ff:d9:46:13:f5:1f:00:0c:ae:46:35:
eb:9a:a3:2b:a0:7e:16:9c:75:2d:1d:a1:6a:e4:70:
71:62:ce:30:a4:f5:0c:a1:2e:5a:5b:cc:f0:73:36:
7d:61:ab:76:4f:98:89:77:0f:28:c9:65:93:fb:d3:
92:c6:65:77:bb:23:f0:fb:d7:d4:fb:8a:70:cc:8e:
ba:09:6f:08:cd:e8:d7:50:7c:1c:33:d6:54:85:c2:
a8:d9:2d:98:20:69:87:a2:a8:73:b2:e2:5f:f2:c0:
85:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C8:1D:D9:03:12:E2:FF:22:29:BA:8A:63:B9:A9:2F:AA:E0:76:BC
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.208.0/22
Signature Algorithm: sha256WithRSAEncryption
19:fb:8f:c4:fc:a4:01:2c:33:38:9f:84:8b:80:13:c9:80:0c:
d8:7f:f3:8e:6d:4a:c1:f2:84:97:99:d7:60:3a:74:3a:c8:24:
83:20:5f:45:6c:38:3c:5c:f5:63:44:0e:04:87:03:12:df:41:
e6:87:92:7b:a4:66:1e:54:ee:08:78:b1:e3:e7:5f:e0:11:5d:
7d:4a:be:78:df:38:ce:b6:7d:74:a0:69:4e:56:10:7f:d4:73:
27:d9:35:af:58:54:60:ad:99:d3:86:0a:22:21:fe:4d:70:ce:
72:22:f4:a4:bf:c4:36:54:dc:0c:74:b8:e9:59:a0:e3:79:8d:
cb:c8:fa:df:9d:b4:8d:59:56:7c:b4:c1:4a:18:0f:61:b4:4b:
c3:5e:2f:a5:30:ad:02:d7:54:6b:5d:85:b8:40:30:cf:bd:ad:
e5:0c:a8:e3:60:fd:e3:f1:42:2b:e0:52:b8:8f:b8:c5:d5:3c:
43:2a:77:64:05:2f:05:4e:03:4f:47:40:7a:48:ef:69:e9:51:
6a:e8:0f:00:3b:2f:d5:9e:2a:3e:62:c5:dc:44:42:be:2d:50:
eb:97:69:ad:a3:9e:73:60:15:35:9f:e9:bf:88:e2:50:54:1a:
a5:85:78:77:1a:c4:73:e0:1a:11:be:fc:54:b2:45:3a:d4:27:
c8:36:46:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:54 2025 by rpki-client