Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/9_JGTVW5qMW7yCkdP0E_-NpXB0s.roa
File: 9_JGTVW5qMW7yCkdP0E_-NpXB0s.roa (raw, json)
Hash identifier: WnTsDGxoDG2mHWxyzgJxMMHknGyiRAiwLMWZ5xXwktI=
Subject key identifier: F7:F2:46:4D:55:B9:A8:C5:BB:C8:29:1D:3F:41:3F:F8:DA:57:07:4B
Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701
Certificate serial: 0194236A26B3CC97BDB1D78190AE636A5AD7
Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/9_JGTVW5qMW7yCkdP0E_-NpXB0s.roa
Signing time: Wed 01 Jan 2025 19:49:06 +0000
ROA not before: Wed 01 Jan 2025 19:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31079
IP address blocks: 195.20.106.0/24 maxlen: 24
2001:678:2e4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:26:b3:cc:97:bd:b1:d7:81:90:ae:63:6a:5a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f25e6a6893f466d2695e90670c047443643701
Validity
Not Before: Jan 1 19:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7f2464d55b9a8c5bbc8291d3f413ff8da57074b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7e:09:38:98:e4:d9:23:a9:ae:9b:88:89:44:
67:20:0c:7f:06:0f:0a:22:80:99:98:96:24:7c:7f:
dc:33:a8:bc:a6:fe:c4:a4:f0:76:f8:58:b4:75:4e:
25:48:90:26:b1:27:17:f6:5e:d5:48:32:b1:0a:03:
fe:33:34:77:2d:9d:17:6f:4c:43:b8:eb:43:7b:69:
cf:06:f0:46:8e:e2:c8:b4:a7:66:21:02:19:2c:86:
c4:dd:98:01:21:32:14:ec:64:36:e2:0a:e8:13:4d:
24:4a:f9:1c:25:99:cb:0e:1c:cb:a3:d9:23:7a:28:
af:af:2e:85:55:10:90:d8:38:52:7b:75:b8:65:de:
60:e4:8d:cb:36:63:f1:c8:b8:cd:58:c1:fd:4c:cf:
77:03:ae:1a:60:78:72:89:17:82:ae:d9:06:60:22:
4d:cc:8a:6e:5a:ea:2b:45:cb:d6:30:0b:8d:4b:83:
cc:20:e4:e5:80:07:c1:44:cd:ca:ad:0b:0c:d8:b0:
95:ef:ee:a6:1e:5e:99:5a:da:95:97:01:cc:e1:9a:
0e:2a:2c:73:a2:75:1f:f0:f2:44:d2:0a:50:61:e6:
6f:09:08:e5:ac:ef:63:d0:fa:ff:fb:eb:cc:44:a1:
d9:4d:67:f0:28:2f:82:6b:7d:55:3c:00:e2:63:84:
1b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F2:46:4D:55:B9:A8:C5:BB:C8:29:1D:3F:41:3F:F8:DA:57:07:4B
X509v3 Authority Key Identifier:
keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/9_JGTVW5qMW7yCkdP0E_-NpXB0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.106.0/24
IPv6:
2001:678:2e4::/48
Signature Algorithm: sha256WithRSAEncryption
7b:a1:5b:0e:27:fd:4e:55:6e:88:f7:fc:55:73:25:c2:11:cf:
9e:08:f4:38:7c:c2:a6:e8:b7:24:53:ef:b5:db:94:6b:77:7b:
01:51:9e:49:67:31:23:a4:99:bd:6f:c9:eb:09:d5:fa:ff:e8:
c7:bb:33:16:8c:17:00:a7:a6:51:88:6f:68:d6:e9:0a:dd:e1:
e2:80:35:a6:ae:97:3b:8d:f3:b7:5d:e7:4b:ea:43:33:ba:79:
2f:bf:e4:14:25:f0:da:0d:8a:7a:2e:78:d1:51:73:86:e7:6b:
8b:36:6e:bb:cd:8b:37:a0:15:39:85:2c:9d:08:4c:ae:4c:18:
1a:68:fe:c9:16:eb:f5:ef:eb:1c:79:3a:7b:44:58:cf:5f:15:
27:65:38:53:5f:1c:ce:17:6b:87:24:be:cb:05:c2:fb:44:83:
c2:65:ab:c0:43:7a:a7:23:78:d7:23:17:6c:09:b5:35:7c:19:
11:41:c4:7d:91:de:d4:63:24:79:0a:1a:88:0b:90:29:22:66:
52:3b:b5:5d:c1:bc:38:93:bf:f8:ba:7e:30:24:5a:cc:c0:f0:
ac:10:9e:00:61:3c:9f:85:c0:f2:bf:3c:76:07:6f:fb:a3:7c:
d7:d4:4c:9b:9a:6e:b5:71:3e:5b:69:8a:25:37:d3:c1:4f:6d:
90:2d:8e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:56 2025 by rpki-client