Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a81707-4152-42bb-a38c-2bf3b6ce101b/1/JBNuiPGwR26YIaQCNdmDNkbm7S4.roa
File: JBNuiPGwR26YIaQCNdmDNkbm7S4.roa (raw, json)
Hash identifier: C6dWEdzn7DjPQgaKoqEI2ld+mr7jgxWU3/ttFiJpqvU=
Subject key identifier: 24:13:6E:88:F1:B0:47:6E:98:21:A4:02:35:D9:83:36:46:E6:ED:2E
Certificate issuer: /CN=5cdf588879026a1b483d799a8e8c3638b621ae5b
Certificate serial: 894D26
Authority key identifier: 5C:DF:58:88:79:02:6A:1B:48:3D:79:9A:8E:8C:36:38:B6:21:AE:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XN9YiHkCahtIPXmajow2OLYhrls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a81707-4152-42bb-a38c-2bf3b6ce101b/1/JBNuiPGwR26YIaQCNdmDNkbm7S4.roa
Signing time: Sat 01 Jan 2022 03:51:37 +0000
ROA not before: Sat 01 Jan 2022 03:51:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 195.96.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8998182 (0x894d26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cdf588879026a1b483d799a8e8c3638b621ae5b
Validity
Not Before: Jan 1 03:51:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24136e88f1b0476e9821a40235d9833646e6ed2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0b:30:27:43:e2:e8:ac:64:8f:e6:9a:88:2c:
6c:62:00:38:55:34:1a:02:2c:d9:39:f3:16:9f:5e:
7f:dd:84:c7:bb:5b:80:1a:18:e6:1b:52:bd:9c:fe:
a6:72:44:c0:94:3e:a9:9b:ef:72:2d:0d:25:c4:d3:
eb:34:9e:0c:1b:63:d6:be:25:6d:0f:5d:d8:4d:11:
53:04:2f:dc:e0:2f:27:6b:95:e6:d4:f3:86:89:7c:
d9:67:8a:78:f9:a6:fd:76:fc:49:c5:90:ab:26:24:
da:68:2c:ea:73:f1:69:2b:54:7c:79:8a:b0:a3:05:
90:12:a5:ad:88:fd:ce:fe:04:13:8c:57:3b:a6:9e:
1d:60:85:66:f7:ac:0d:18:3e:37:92:40:c0:dc:6b:
43:58:0f:81:7b:df:02:a7:4d:07:12:75:92:3b:1a:
20:26:a9:c4:0b:3c:92:bf:55:c4:2b:14:1b:82:d7:
9d:75:ff:8e:d2:24:78:c7:a2:a1:97:6b:b4:79:82:
e9:4d:43:e9:f4:09:72:a1:d0:63:19:af:be:c0:a3:
fb:d7:62:1b:ff:d4:b1:7d:e3:44:fc:ea:cc:4a:63:
7b:43:6f:03:87:c5:7c:98:5b:77:60:e6:9e:fb:28:
8c:87:fc:53:e9:66:9e:f3:70:87:aa:38:b5:19:c4:
c6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:13:6E:88:F1:B0:47:6E:98:21:A4:02:35:D9:83:36:46:E6:ED:2E
X509v3 Authority Key Identifier:
keyid:5C:DF:58:88:79:02:6A:1B:48:3D:79:9A:8E:8C:36:38:B6:21:AE:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XN9YiHkCahtIPXmajow2OLYhrls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a81707-4152-42bb-a38c-2bf3b6ce101b/1/JBNuiPGwR26YIaQCNdmDNkbm7S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a81707-4152-42bb-a38c-2bf3b6ce101b/1/XN9YiHkCahtIPXmajow2OLYhrls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.146.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a0:d7:62:11:5e:82:83:0e:73:6e:c8:74:50:b3:f6:9d:b0:
db:da:22:9d:da:e3:5d:2f:c5:26:01:0c:06:3a:7f:09:3f:c4:
57:27:b3:ee:24:3d:63:17:05:60:56:e4:a1:b9:3f:ce:46:65:
e9:cb:1e:72:e7:49:d7:60:98:65:70:c7:b0:19:3f:3d:07:96:
f2:6d:67:c4:0d:91:63:b6:d8:38:eb:54:6b:44:44:1e:18:a9:
05:b7:75:6d:b1:26:59:bc:3d:3c:9b:31:52:e7:78:29:91:88:
9a:44:e6:b6:9b:12:57:ed:27:aa:2b:4d:12:4d:d5:12:ae:86:
45:0b:17:32:71:31:bf:a5:f5:c0:a1:60:ce:fa:34:20:2c:b3:
e5:a7:e3:6f:78:2c:ca:9e:08:00:be:64:3a:33:e3:f3:27:da:
79:25:4e:71:bc:de:91:9c:ac:18:e4:3f:96:4e:39:69:c5:88:
c7:27:73:1e:eb:2e:e7:85:1d:c5:08:ee:3a:a4:61:8a:0b:e4:
f8:6f:44:c9:74:8a:42:9d:8b:6b:d5:65:e9:2a:82:c5:c9:39:
b1:2c:e0:3e:8a:e2:3e:9e:92:db:92:3c:58:51:15:82:9e:18:
93:41:75:05:8f:15:25:36:3f:f8:75:a4:84:2e:40:b3:5a:8b:
d9:8a:82:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:38 2025 by rpki-client