Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/f27821-4ccf-4d2e-8b15-6e12774f851e/1/Jpf_P9oPL5mbhYATk6InQFxSKus.roa
File: Jpf_P9oPL5mbhYATk6InQFxSKus.roa (raw, json)
Hash identifier: REjTVNAZ4a+vs3Zpzyld21GsGCX5Et3pb534cGoCrrI=
Subject key identifier: 26:97:FF:3F:DA:0F:2F:99:9B:85:80:13:93:A2:27:40:5C:52:2A:EB
Certificate issuer: /CN=210da9e7af01de75448f4906aac41bd2964e8847
Certificate serial: 01857195851E6BB19DEF87BBCC077F5EADBF
Authority key identifier: 21:0D:A9:E7:AF:01:DE:75:44:8F:49:06:AA:C4:1B:D2:96:4E:88:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ2p568B3nVEj0kGqsQb0pZOiEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/f27821-4ccf-4d2e-8b15-6e12774f851e/1/Jpf_P9oPL5mbhYATk6InQFxSKus.roa
Signing time: Mon 02 Jan 2023 08:25:02 +0000
ROA not before: Mon 02 Jan 2023 08:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 46.197.69.0/24 maxlen: 24
178.233.156.0/23 maxlen: 23
178.233.164.0/23 maxlen: 23
24.133.118.0/23 maxlen: 23
176.240.2.0/24 maxlen: 24
176.240.3.0/24 maxlen: 24
176.240.0.0/23 maxlen: 23
46.197.16.0/21 maxlen: 21
176.240.228.0/22 maxlen: 22
94.54.8.0/22 maxlen: 22
94.54.12.0/23 maxlen: 23
178.233.112.0/20 maxlen: 20
94.55.116.0/22 maxlen: 24
178.233.36.0/22 maxlen: 22
94.55.124.0/23 maxlen: 24
94.55.120.0/21 maxlen: 24
94.55.122.0/23 maxlen: 24
94.55.126.0/24 maxlen: 24
94.55.127.0/24 maxlen: 24
24.133.225.0/24 maxlen: 24
2a00:1d58::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:85:1e:6b:b1:9d:ef:87:bb:cc:07:7f:5e:ad:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210da9e7af01de75448f4906aac41bd2964e8847
Validity
Not Before: Jan 2 08:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2697ff3fda0f2f999b85801393a227405c522aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:d6:8e:80:fc:c5:ca:d3:fe:19:6a:09:8e:
46:88:d4:dd:d1:64:a2:fe:ad:a7:a6:40:44:6b:0e:
03:e0:58:3a:d3:ef:7f:b7:7e:9c:82:99:d4:09:99:
2e:2b:bd:e0:93:cf:a3:87:b2:6f:d3:5c:b6:32:32:
81:ca:22:ff:55:96:31:f9:ff:8d:8a:4d:da:64:51:
f2:11:bf:3a:ef:ab:ff:e8:65:ec:13:7a:2f:d0:0c:
8b:e2:5f:23:5f:c4:2b:7e:c8:2d:e0:48:25:00:6d:
e5:fb:1a:7a:43:3b:28:4a:26:df:21:8a:f1:8e:88:
20:8b:a5:a1:af:87:d7:88:98:e6:59:3b:42:cb:d9:
b8:2a:f5:93:f6:de:bb:ba:85:c5:aa:4f:bf:44:5b:
4e:e3:2a:f5:b4:93:c9:53:a4:cb:e9:8a:b2:ea:e6:
d8:f7:2b:5d:c0:50:fe:9d:dd:03:4b:0b:c9:a5:81:
a4:8f:c8:4a:a7:8d:bc:dc:d7:0f:72:98:ea:f0:08:
de:a7:7a:5f:87:ff:0b:88:9f:ff:00:ad:e9:06:22:
5d:bb:81:7c:fa:44:0b:73:79:22:f2:bd:99:ad:c1:
ef:b1:45:41:61:3e:96:7e:a3:8e:28:a6:a9:0c:0c:
78:84:c0:26:42:69:5a:d9:7b:ed:ab:fc:11:c4:f6:
bf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:97:FF:3F:DA:0F:2F:99:9B:85:80:13:93:A2:27:40:5C:52:2A:EB
X509v3 Authority Key Identifier:
keyid:21:0D:A9:E7:AF:01:DE:75:44:8F:49:06:AA:C4:1B:D2:96:4E:88:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ2p568B3nVEj0kGqsQb0pZOiEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f27821-4ccf-4d2e-8b15-6e12774f851e/1/Jpf_P9oPL5mbhYATk6InQFxSKus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/f27821-4ccf-4d2e-8b15-6e12774f851e/1/IQ2p568B3nVEj0kGqsQb0pZOiEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.133.118.0/23
24.133.225.0/24
46.197.16.0/21
46.197.69.0/24
94.54.8.0-94.54.13.255
94.55.116.0-94.55.127.255
176.240.0.0/22
176.240.228.0/22
178.233.36.0/22
178.233.112.0/20
178.233.156.0/23
178.233.164.0/23
IPv6:
2a00:1d58::/36
Signature Algorithm: sha256WithRSAEncryption
76:78:17:d8:a5:36:c8:d3:fc:4d:dc:e5:6f:83:1b:dc:5b:6d:
3d:36:55:51:ac:75:2b:e3:6a:a3:46:c4:a3:89:7d:fc:e7:38:
2a:33:5e:bd:73:28:b7:a4:d1:2d:36:c9:a1:76:db:c8:a4:e0:
26:73:d7:03:24:cf:8f:a6:75:e8:0e:f2:33:a9:76:c9:7e:14:
a0:45:5d:12:42:0c:3c:06:51:6d:6a:a6:2a:ce:27:d1:3a:93:
74:1f:a3:78:6d:ce:fa:50:e3:75:b7:73:3a:a1:94:a6:34:dd:
e7:99:b9:39:22:3a:74:cc:cf:73:a8:fa:c4:e4:0b:4a:f1:a2:
68:96:91:c3:39:b2:3c:77:89:81:ad:d7:ae:4c:a1:ad:55:85:
8b:5f:bd:1c:13:c4:d6:ac:70:52:74:30:0c:d4:95:aa:00:c9:
fd:da:ab:c2:3c:28:20:8e:b2:db:ae:ca:88:19:f5:a0:69:2b:
80:3b:6d:19:f4:32:60:20:9b:33:3e:dc:46:b6:a3:5d:6a:79:
aa:f1:c8:1b:c8:63:12:1a:94:0b:9c:dd:8b:4b:e0:4f:bb:4d:
57:03:40:6d:b4:60:8b:64:66:2c:3a:a0:c3:6e:70:8d:e0:c7:
a9:69:93:9e:11:b5:6f:10:c8:21:f7:93:27:eb:97:7c:d2:a5:
7a:ac:66:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:01:10 2025 by rpki-client