Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jaxkmoKj_xEPdxf0DdwaqzoT7VM.roa
File: jaxkmoKj_xEPdxf0DdwaqzoT7VM.roa (raw, json)
Hash identifier: Y/AjDYnpAcaWJ2ftrWZo/LCwI09/eGeIK1EbNbMPprg=
Subject key identifier: 8D:AC:64:9A:82:A3:FF:11:0F:77:17:F4:0D:DC:1A:AB:3A:13:ED:53
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01946DC3F5E5BB4771BA046503A482113987
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jaxkmoKj_xEPdxf0DdwaqzoT7VM.roa
Signing time: Thu 16 Jan 2025 06:19:06 +0000
ROA not before: Thu 16 Jan 2025 06:19:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3320
IP address blocks: 37.202.219.0/24 maxlen: 24
37.202.223.0/24 maxlen: 24
151.242.92.0/24 maxlen: 24
151.242.93.0/24 maxlen: 24
151.242.94.0/24 maxlen: 24
151.242.95.0/24 maxlen: 24
151.242.96.0/24 maxlen: 24
151.242.98.0/24 maxlen: 24
151.242.100.0/24 maxlen: 24
151.242.101.0/24 maxlen: 24
151.242.103.0/24 maxlen: 24
151.242.105.0/24 maxlen: 24
151.242.107.0/24 maxlen: 24
151.242.109.0/24 maxlen: 24
151.242.112.0/24 maxlen: 24
151.242.113.0/24 maxlen: 24
151.242.115.0/24 maxlen: 24
151.243.168.0/24 maxlen: 24
151.243.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6d:c3:f5:e5:bb:47:71:ba:04:65:03:a4:82:11:39:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 16 06:19:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8dac649a82a3ff110f7717f40ddc1aab3a13ed53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:f2:59:bb:0d:a1:af:40:fa:18:b1:43:80:
c3:8b:e2:ed:e0:c2:0b:2d:c8:fe:c2:17:ee:bb:f4:
fe:d1:b1:01:a0:83:46:05:48:fb:68:70:dc:20:5f:
09:06:2c:0e:1b:10:42:e1:ce:71:34:c7:92:3e:1b:
6d:3b:34:ad:7e:76:e1:4b:d9:58:d9:a2:19:88:bd:
03:b2:8f:8d:08:d8:1e:bb:e8:68:6d:46:66:54:b1:
96:dc:d4:5e:3b:e7:2f:72:04:4c:36:67:99:60:4a:
7b:73:d6:cc:f3:d0:df:f5:a6:ec:a4:31:81:d6:b4:
1b:cb:17:aa:cc:8d:fb:3b:26:d3:d1:4d:7b:f5:06:
9d:9c:dd:a9:35:9a:5f:cc:e4:06:9a:5b:94:07:be:
00:e9:7c:2e:6f:91:76:99:d5:30:ab:3f:8b:2c:3a:
67:36:28:54:b7:9e:db:46:be:06:2f:63:42:76:cb:
4f:0f:7c:d9:a1:16:9f:6e:7a:e7:b4:46:97:75:93:
76:e2:90:aa:e6:e8:40:bb:78:f4:0c:99:2f:79:a9:
db:ae:6e:0d:f7:2b:97:52:e9:67:b9:47:fb:bb:b0:
c7:0c:a9:66:78:87:57:69:f2:11:14:da:94:02:ed:
d5:02:6b:67:63:5c:22:33:8b:0b:de:67:11:01:28:
e2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:AC:64:9A:82:A3:FF:11:0F:77:17:F4:0D:DC:1A:AB:3A:13:ED:53
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jaxkmoKj_xEPdxf0DdwaqzoT7VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.219.0/24
37.202.223.0/24
151.242.92.0-151.242.96.255
151.242.98.0/24
151.242.100.0/23
151.242.103.0/24
151.242.105.0/24
151.242.107.0/24
151.242.109.0/24
151.242.112.0/23
151.242.115.0/24
151.243.168.0/24
151.243.173.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ff:96:58:53:c4:0a:26:a6:91:31:82:65:e4:c0:38:8e:b9:
13:56:16:91:b9:d8:21:30:38:16:e5:fc:95:fa:9f:92:b1:11:
c5:4c:b3:4f:a1:bd:b5:f1:aa:d5:fb:90:aa:e5:e0:00:38:7f:
69:07:76:9e:35:26:fd:ae:0a:b4:d6:7d:a9:17:08:77:a7:ab:
cf:32:e8:2d:77:20:8b:52:1a:8b:66:6e:79:76:31:74:a0:11:
3e:5b:3a:3f:56:d4:e1:aa:3c:ab:14:1f:0d:c1:60:43:66:cb:
d1:0e:ca:0b:ba:71:fa:ae:3c:d5:06:22:26:57:12:51:97:3b:
e5:57:3c:49:1d:a0:36:5a:be:35:5f:2a:7d:7b:4d:0c:dd:11:
aa:86:7a:56:d8:7e:27:50:97:03:7c:3b:62:e8:d4:fc:3d:7a:
8c:e6:16:09:1f:24:c9:b4:da:da:cb:3e:38:31:d7:77:05:9c:
0d:45:26:d2:75:fd:87:e9:fe:ff:f4:5c:0d:49:4c:e1:65:76:
af:7a:0c:5b:d3:d5:07:fe:15:43:2a:49:a5:81:66:ad:be:21:
f8:db:7d:d7:1c:27:9c:b2:93:99:fc:95:e9:d3:f8:6b:0a:68:
a7:6f:78:6f:18:5c:a2:f2:0b:ca:ee:ee:98:6e:8f:e2:a6:6f:
64:5a:16:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:55 2025 by rpki-client