Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3fd753-7327-4aa2-b556-f93692fc1818/1/jdne--t4KSDI3CLlSCrxJzcwLtE.roa
File: jdne--t4KSDI3CLlSCrxJzcwLtE.roa (raw, json)
Hash identifier: smvL8VtHisswUK7ImnMNMCRcqnIXXxAxnAT0+3LHfMU=
Subject key identifier: 8D:D9:DE:FB:EB:78:29:20:C8:DC:22:E5:48:2A:F1:27:37:30:2E:D1
Certificate issuer: /CN=ab102577f0c83c8c679eed43568c7abcbeccb54f
Certificate serial: 0188FDCE05E8DBA02EF348A372A4B967BB70
Authority key identifier: AB:10:25:77:F0:C8:3C:8C:67:9E:ED:43:56:8C:7A:BC:BE:CC:B5:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxAld_DIPIxnnu1DVox6vL7MtU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3fd753-7327-4aa2-b556-f93692fc1818/1/jdne--t4KSDI3CLlSCrxJzcwLtE.roa
Signing time: Tue 27 Jun 2023 17:01:57 +0000
ROA not before: Tue 27 Jun 2023 17:01:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44852
IP address blocks: 195.66.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fd:ce:05:e8:db:a0:2e:f3:48:a3:72:a4:b9:67:bb:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab102577f0c83c8c679eed43568c7abcbeccb54f
Validity
Not Before: Jun 27 17:01:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dd9defbeb782920c8dc22e5482af12737302ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:08:33:8a:f0:50:9e:2c:13:2d:6b:26:b6:90:
6c:9d:3d:fb:39:c5:94:17:46:d7:61:61:b4:41:3c:
36:5c:ac:58:84:0e:84:bc:43:a4:9d:2b:a4:d5:ee:
2f:60:ea:01:aa:37:22:a0:2f:cf:30:43:6e:b6:9a:
e3:75:dd:fa:a3:7e:3f:47:06:c0:1c:86:67:ad:29:
a9:2b:66:99:e6:74:24:ac:6c:6d:ef:ce:76:c1:a8:
22:4d:bf:d2:5e:54:c0:5a:10:18:ee:ba:fe:48:16:
ef:fd:8e:1b:a4:01:c6:18:c4:6f:66:e1:5c:c7:f7:
50:29:d1:a4:9a:ba:e2:e5:26:5b:17:d6:f7:27:6e:
e1:ba:34:f9:fa:dd:61:2b:0d:81:d5:0d:e1:18:4e:
d7:14:78:bd:15:64:51:c1:87:d7:71:93:7c:1e:bc:
d0:eb:6f:3f:19:99:34:e2:81:d6:13:8e:78:37:89:
7d:18:15:5f:3b:a2:5b:6b:04:4b:26:46:2b:77:7c:
19:4a:6d:60:97:de:a3:bf:5d:18:64:8b:73:8d:17:
a3:9a:a0:2a:bd:75:da:c5:82:7d:06:8a:b1:87:14:
08:bc:e5:ed:4a:f7:88:f1:4b:3f:39:99:93:8a:fb:
51:1e:af:5a:f6:e3:e0:22:36:3f:da:3b:6b:7d:9a:
b5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D9:DE:FB:EB:78:29:20:C8:DC:22:E5:48:2A:F1:27:37:30:2E:D1
X509v3 Authority Key Identifier:
keyid:AB:10:25:77:F0:C8:3C:8C:67:9E:ED:43:56:8C:7A:BC:BE:CC:B5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxAld_DIPIxnnu1DVox6vL7MtU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3fd753-7327-4aa2-b556-f93692fc1818/1/jdne--t4KSDI3CLlSCrxJzcwLtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3fd753-7327-4aa2-b556-f93692fc1818/1/qxAld_DIPIxnnu1DVox6vL7MtU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
65:1c:15:f9:15:c5:5a:4c:d5:2b:44:97:1d:1a:1f:39:43:05:
e7:d2:0f:05:f9:67:8c:8f:21:d3:93:36:bb:d4:29:41:ac:20:
be:b7:aa:6d:73:0b:9f:93:48:5f:64:06:bc:0c:9b:ca:56:76:
a9:d1:d1:44:13:d1:b8:2d:e3:97:71:d3:05:d0:11:c8:07:ee:
eb:d3:9e:6a:c9:fc:9c:ec:e8:14:68:b2:33:43:ed:53:42:c1:
ae:bb:cc:5d:2f:08:a2:c8:03:c5:5d:74:51:21:e9:ed:2d:98:
d6:f1:f2:94:c5:95:23:f7:d9:d6:f4:35:33:24:a5:17:6c:95:
d1:12:26:ed:6c:f8:fe:17:76:de:cb:4a:75:fa:80:c8:7d:20:
d7:ef:ea:54:1d:d0:ee:7e:b9:8d:31:c3:11:9a:a6:6e:01:57:
99:8d:bf:92:d0:c9:3d:01:4a:48:da:89:cb:5c:db:a7:93:7b:
13:a0:2e:34:20:ae:ed:f4:3a:f7:42:bd:4c:bc:ea:dc:97:4f:
c3:e6:49:cb:f1:36:28:b1:8f:0b:b6:b3:db:79:9e:78:17:8a:
27:1b:1b:ae:e8:32:13:b9:87:fa:cd:91:fe:7c:c9:2c:7e:07:
94:7e:59:8f:db:31:f6:6b:bc:a4:49:ad:6e:cb:b6:85:c0:89:
f1:65:c8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:44:21 2025 by rpki-client