Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JsTqnRrE8Z55Bd-lRXhUYp57hYU.roa
File: JsTqnRrE8Z55Bd-lRXhUYp57hYU.roa (raw, json)
Hash identifier: nNYgS0nZyQDhri5zVJa4wwTft5vzxEGXe8UGWjeo4Os=
Subject key identifier: 26:C4:EA:9D:1A:C4:F1:9E:79:05:DF:A5:45:78:54:62:9E:7B:85:85
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B22DB27B8702F9ECB9379F39758776
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JsTqnRrE8Z55Bd-lRXhUYp57hYU.roa
Signing time: Wed 01 Jan 2025 11:48:32 +0000
ROA not before: Wed 01 Jan 2025 11:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202403
IP address blocks: 195.136.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:2d:b2:7b:87:02:f9:ec:b9:37:9f:39:75:87:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26c4ea9d1ac4f19e7905dfa5457854629e7b8585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:32:33:c0:f4:de:77:b8:e5:35:31:e1:dd:a9:
d9:2e:ec:8f:a6:d8:6a:ed:b4:4c:cb:64:ec:0c:11:
fd:8e:7f:1e:f7:58:c6:b0:3e:0f:5f:80:30:9f:43:
3e:83:5a:6a:ba:44:8b:c0:98:90:cf:25:b0:b5:1f:
ae:83:54:50:45:40:ee:2b:08:3c:6a:27:cd:a8:aa:
d5:e1:b0:26:fa:55:08:0a:da:06:8b:b9:a9:46:ca:
ec:fc:d7:ac:1b:45:27:99:d7:ea:cb:07:62:22:4b:
9a:fc:80:aa:79:46:f9:86:5d:21:8c:a6:01:1d:e4:
df:9f:25:94:55:45:64:90:25:8d:a5:b6:f4:82:3d:
2e:a3:92:8e:84:2a:05:03:58:a4:5e:dc:39:aa:a2:
de:c3:36:e5:c0:19:3f:a8:f0:0b:7d:77:d5:b2:1f:
6b:6c:67:61:31:66:8f:3d:de:e0:a2:74:dc:ea:95:
85:fa:ba:cc:d4:2c:87:77:8e:7c:eb:2f:c1:12:b7:
3f:1f:cf:52:2b:23:16:49:38:ec:d9:75:2c:5b:65:
dc:92:30:a7:06:f3:b4:a7:31:2a:d1:3e:04:f4:bb:
74:dd:a2:41:cb:f1:ed:76:f4:20:43:99:4f:87:11:
ec:a5:f9:ce:6b:ad:39:4b:63:b2:2b:15:96:88:96:
36:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C4:EA:9D:1A:C4:F1:9E:79:05:DF:A5:45:78:54:62:9E:7B:85:85
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/JsTqnRrE8Z55Bd-lRXhUYp57hYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.76.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:03:14:29:c2:7d:c0:9c:d3:18:e5:07:5e:10:f5:a6:98:27:
55:b0:0c:15:24:c6:45:37:c8:fc:20:d5:48:48:de:b8:d8:b8:
ad:48:5a:02:d7:6f:2d:22:90:4c:e6:47:fe:5d:82:7f:cc:50:
96:66:87:d0:5b:f0:e0:ff:f1:24:15:e8:70:13:b4:34:db:5b:
65:f3:8e:3b:f8:c4:34:23:08:a8:28:3e:6a:33:de:0c:24:6c:
33:69:ac:80:80:9a:d5:d8:48:19:2d:7b:b9:6a:0b:ec:61:c2:
5e:74:29:e4:f2:90:55:2e:d3:c6:31:15:e8:ae:23:45:66:7c:
00:7b:fc:25:a1:c7:5a:17:f4:b7:5f:f6:28:10:9d:33:e9:40:
37:05:de:6c:3e:a9:82:5a:69:ce:40:5f:2b:90:05:8c:d7:71:
3c:0a:33:77:18:09:81:63:7e:44:2c:6c:1b:08:e5:ed:e3:2d:
8e:6d:5f:8d:5c:d1:28:2c:e3:1a:ec:81:48:bc:58:e4:cb:7f:
6c:b4:de:3e:04:68:a1:a1:21:2d:09:56:ab:d8:3c:96:f9:d2:
13:b7:74:6d:cc:50:28:99:ba:ff:10:5d:f4:87:9a:f9:41:8f:
00:68:24:59:f8:5b:27:d7:69:80:68:c1:7f:8f:d5:6f:53:13:
18:e6:41:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:13 2025 by rpki-client