Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/JnJqFmDhNgJ1JGArmOojJE33wfw.roa
File: JnJqFmDhNgJ1JGArmOojJE33wfw.roa (raw, json)
Hash identifier: 7liUzifAT9c5gKUv3lS9FajpmhpGLZvypUY4kLmeLWg=
Subject key identifier: 26:72:6A:16:60:E1:36:02:75:24:60:2B:98:EA:23:24:4D:F7:C1:FC
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 0F3D402D
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/JnJqFmDhNgJ1JGArmOojJE33wfw.roa
Signing time: Sat 01 Jan 2022 11:03:47 +0000
ROA not before: Sat 01 Jan 2022 11:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64200
IP address blocks: 185.198.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255672365 (0xf3d402d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 1 11:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26726a1660e136027524602b98ea23244df7c1fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d6:46:d3:d2:59:32:98:85:f6:e1:8b:a3:5d:
04:8f:d4:f4:97:d5:b1:4d:e3:0e:4b:82:88:23:76:
02:ef:c6:e2:2e:1c:e2:b2:bd:aa:ac:68:bc:07:76:
ca:e1:7a:f1:38:b9:e0:cd:f0:1d:6d:47:d5:f2:8c:
e0:6f:ab:a5:7f:00:d3:5c:fe:a1:b8:d4:4c:a7:9d:
87:3c:70:1c:dd:a3:b4:31:9e:d9:19:0d:57:98:35:
2c:7e:29:91:a2:64:b8:c9:16:e8:9c:95:04:1d:82:
38:09:e0:88:a4:7b:81:ff:e2:79:1a:a6:be:1f:61:
59:16:64:a2:25:1d:9d:ca:87:8f:ca:f2:47:61:61:
6d:d6:77:5a:38:b3:b9:42:0d:73:23:d5:d4:b9:d1:
6e:09:b1:a3:0b:27:85:f4:38:84:f1:19:75:e6:eb:
ea:76:67:bd:ce:95:21:51:a8:d9:93:46:f3:3b:74:
9b:2b:8b:9f:60:a8:92:83:14:89:1d:c5:3c:7c:71:
75:61:7c:02:17:4a:2c:f9:ab:34:8c:47:7d:65:75:
76:f7:19:18:ec:56:7c:0e:9c:8b:a9:8e:b7:18:ee:
79:48:c2:5e:b1:57:df:84:c6:82:d5:1d:cf:b1:bf:
1a:98:75:3e:aa:d7:d5:e2:fa:50:d6:39:48:bb:46:
2e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:72:6A:16:60:E1:36:02:75:24:60:2B:98:EA:23:24:4D:F7:C1:FC
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/JnJqFmDhNgJ1JGArmOojJE33wfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.88.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:db:9e:c5:c9:ab:7f:2d:67:a1:4a:bf:88:c7:46:d3:ff:f1:
b0:30:6e:bb:6f:3d:2d:9d:6c:61:a4:19:7f:46:4d:3b:3c:8e:
a1:ae:aa:e8:69:66:76:ed:a4:97:1e:cc:e7:38:e3:f6:7a:1d:
90:9c:ca:c2:f9:3b:1b:5f:4a:8a:de:c4:7e:ac:f6:84:b0:80:
19:2d:dc:e7:6b:6a:8f:8b:30:b9:70:af:38:48:74:8d:fd:22:
ea:93:d1:3e:47:55:11:c2:75:1e:60:51:3e:24:19:dc:95:f3:
81:c0:ef:52:58:82:72:0d:17:04:93:2c:51:1c:86:be:07:9b:
a1:8d:8e:8a:15:b8:22:3c:f7:de:13:82:c8:b8:cf:3c:ca:c5:
52:f8:de:29:8c:c8:b8:0f:e3:b7:54:9b:cc:76:82:ec:fe:f2:
df:24:8e:43:c9:a7:dd:9d:2e:2a:34:23:a4:df:fb:95:d3:d6:
f7:01:96:c5:df:2b:8a:82:c4:a3:3c:ef:25:61:1e:d8:d4:3f:
45:ea:01:ed:b6:57:c1:13:41:0e:f5:2f:44:d2:a6:76:42:0b:
d0:8f:59:32:6e:af:53:0f:a1:06:3f:e9:8a:56:28:9c:5e:76:
92:31:c6:62:8d:ad:f8:47:0f:13:37:ca:ee:55:84:13:1f:44:
08:fa:fa:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:43 2025 by rpki-client