Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/jleox2qWXaYNINq8UA7RisfzYV8.roa
File: jleox2qWXaYNINq8UA7RisfzYV8.roa (raw, json)
Hash identifier: SfxvLdJBIVjonCSuEHCgtpj6urndCz5nWhSTf0QJbCo=
Subject key identifier: 8E:57:A8:C7:6A:96:5D:A6:0D:20:DA:BC:50:0E:D1:8A:C7:F3:61:5F
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 02796E2D
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/jleox2qWXaYNINq8UA7RisfzYV8.roa
Signing time: Sat 01 Jan 2022 06:05:43 +0000
ROA not before: Sat 01 Jan 2022 06:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198317
IP address blocks: 91.200.104.0/22 maxlen: 22
185.96.120.0/22 maxlen: 22
185.235.124.0/22 maxlen: 22
195.88.144.0/23 maxlen: 23
155.133.57.0/24 maxlen: 24
155.133.56.0/24 maxlen: 24
155.133.58.0/23 maxlen: 23
91.239.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41512493 (0x2796e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Jan 1 06:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e57a8c76a965da60d20dabc500ed18ac7f3615f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:07:b0:a5:b5:14:ae:dc:34:3e:4b:58:b9:25:
b1:8c:80:61:a2:db:51:5d:75:10:a8:5c:e4:25:ba:
15:91:d3:5b:b6:6d:5d:20:5c:3a:b2:93:f7:e3:9b:
0c:85:c3:9e:6c:49:f8:b0:95:bb:93:df:4c:26:cd:
23:ea:1d:0e:5a:03:2c:a8:6a:86:fe:e0:49:c7:b0:
8d:52:fe:e5:e3:1c:a9:89:ee:aa:0b:23:35:d3:5d:
27:3f:52:c5:af:90:08:3c:36:33:83:a9:ff:99:54:
30:3a:36:3b:7b:4a:e0:a7:47:ce:3f:a2:29:6f:d5:
53:22:b8:a5:ef:db:97:50:10:08:fa:78:e0:78:75:
c9:4b:44:15:b2:c7:82:0e:04:c1:9a:3e:9f:96:8d:
18:90:56:1a:d1:7e:5d:9f:1c:11:4e:cd:fe:f7:57:
78:01:1f:4c:e5:47:3f:f6:79:bf:88:fa:8e:b7:b8:
e2:03:92:7c:ae:0c:14:91:e9:87:65:13:db:b6:06:
df:28:71:b2:02:3c:c8:69:ed:4a:d2:57:e4:85:d3:
38:3e:ec:39:7f:a7:f0:92:84:4f:b2:1c:11:88:68:
51:d0:de:cf:f5:b5:67:b2:e7:de:1a:75:bf:a7:90:
77:af:60:e4:24:f5:c6:76:98:da:f9:4f:f9:28:44:
11:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:57:A8:C7:6A:96:5D:A6:0D:20:DA:BC:50:0E:D1:8A:C7:F3:61:5F
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/jleox2qWXaYNINq8UA7RisfzYV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.104.0/22
91.239.196.0/22
155.133.56.0/22
185.96.120.0/22
185.235.124.0/22
195.88.144.0/23
Signature Algorithm: sha256WithRSAEncryption
76:52:93:ea:3d:3f:f0:cf:49:33:2a:0e:44:e9:25:3e:51:d0:
6d:c0:0c:0e:80:63:b5:41:02:41:0d:53:3b:8b:0e:32:40:d2:
89:b3:a4:b9:55:5d:81:ce:ae:bc:d0:81:70:35:c7:33:68:9b:
5b:df:57:9b:c3:48:e6:2f:e4:52:5a:83:3f:73:ad:fe:94:84:
c8:16:6c:45:0b:2c:03:9b:5a:14:ee:46:f5:b7:82:df:4a:ee:
8e:51:46:a6:95:f5:2a:ae:29:27:0f:d9:5a:7f:f5:0b:99:62:
c1:74:61:a0:f8:cd:7c:e0:01:1a:6e:9b:6d:5c:5a:c8:d3:18:
18:95:7b:bf:db:74:4d:ea:7d:5e:5a:29:05:32:ca:c1:0b:14:
06:a3:b2:eb:88:db:45:02:14:4a:f3:51:c1:35:17:7a:5c:24:
37:fc:d9:c9:6b:4a:28:f7:ac:61:18:1e:05:71:41:57:5f:6e:
e2:1d:ff:49:43:40:f8:30:77:0d:94:f9:59:63:3d:d7:34:6b:
ae:2e:1e:79:cf:21:79:d1:61:f7:4f:29:6e:d6:c8:7f:c4:b4:
b3:f9:a9:f6:e7:55:61:ca:df:c6:b5:00:ef:85:e3:72:7c:df:
ef:f7:c9:d6:3e:29:03:2a:c1:a7:9b:d3:5b:ad:fa:fa:87:ba:
46:56:ab:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:17 2025 by rpki-client