Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/JHKZik7v_nikLn1X4yVsLHu6W7g.roa
File: JHKZik7v_nikLn1X4yVsLHu6W7g.roa (raw, json)
Hash identifier: FdAY9pw2ogSTrG2KvpdFB/D0tnvLyRLnWQak2auJOHQ=
Subject key identifier: 24:72:99:8A:4E:EF:FE:78:A4:2E:7D:57:E3:25:6C:2C:7B:BA:5B:B8
Certificate issuer: /CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Certificate serial: 3ED8EDCD
Authority key identifier: 1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/JHKZik7v_nikLn1X4yVsLHu6W7g.roa
Signing time: Thu 28 Apr 2022 08:25:13 +0000
ROA not before: Thu 28 Apr 2022 08:25:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206977
IP address blocks: 192.150.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1054404045 (0x3ed8edcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Validity
Not Before: Apr 28 08:25:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2472998a4eeffe78a42e7d57e3256c2c7bba5bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f0:19:b2:1b:43:b0:36:8f:73:44:9c:ab:84:
f2:18:1e:b0:d1:7b:14:4c:05:74:1b:fc:e1:17:14:
6d:8b:bd:81:bb:8b:b5:82:be:3f:30:9e:b6:29:93:
a2:5d:87:05:f0:80:85:1a:12:a3:f8:30:a9:48:0b:
14:7e:a3:1e:d3:22:1c:86:8f:e9:01:ef:34:73:4e:
8b:65:41:06:12:4c:fb:bc:a3:bb:2e:e2:bc:76:42:
94:2d:d1:2a:3e:56:ae:69:3e:a6:28:84:96:4e:46:
41:02:5d:ae:16:61:b2:7f:c2:63:f7:d7:15:0a:28:
85:e4:78:01:5d:86:2c:8b:fe:03:6a:be:18:1c:d1:
99:76:12:4a:31:2d:40:02:73:63:bb:26:6e:99:1e:
a4:20:9a:f9:9b:93:ac:a6:e7:da:78:a9:a6:5a:11:
ce:18:a8:5f:e4:a2:cf:d4:f3:1b:50:a8:07:8e:e3:
22:b3:2e:57:c9:c1:99:82:38:54:6e:a0:53:3d:66:
36:55:29:74:4a:59:39:f0:9a:17:79:00:ce:43:fe:
82:34:87:e6:89:f3:83:26:2f:d8:f7:13:30:64:72:
f7:9f:1f:e5:aa:4d:56:b9:86:47:35:00:26:7c:42:
f8:17:c1:05:8b:c9:e7:c3:73:ae:29:db:c2:d0:2c:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:72:99:8A:4E:EF:FE:78:A4:2E:7D:57:E3:25:6C:2C:7B:BA:5B:B8
X509v3 Authority Key Identifier:
keyid:1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/JHKZik7v_nikLn1X4yVsLHu6W7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.150.82.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f8:e6:8d:c3:68:bb:36:9c:fe:eb:41:4d:3b:85:2b:a0:25:
9d:1e:57:14:d3:f9:14:9a:c7:82:5e:1e:66:7f:25:66:26:7b:
69:c8:3d:9c:0a:61:65:4e:b8:f5:b7:19:09:72:8d:1b:78:c6:
84:58:2c:96:50:7b:79:25:7d:59:94:f2:9f:37:bb:f5:3e:0f:
01:66:fb:0a:23:89:40:59:05:92:ad:37:64:e7:13:ba:3b:48:
53:81:06:2a:5a:76:d1:99:66:05:f0:46:8e:86:8f:be:1e:5b:
ff:76:97:00:58:87:e6:7f:bf:1d:0b:73:c8:dc:e2:79:00:36:
4c:2d:9a:fe:2b:80:11:69:89:16:fa:81:03:ba:07:d2:e2:0c:
6a:f5:5f:7a:3b:52:20:10:69:16:68:a7:a2:a9:5b:80:cb:c5:
c3:be:e9:14:85:b4:2d:c0:72:d8:c9:64:c4:1e:6e:6c:f7:55:
63:e4:2b:4c:be:f5:b1:a9:6e:af:a5:ed:85:eb:45:a9:66:7d:
0d:e3:8c:32:11:b0:ca:9b:6b:5b:51:25:14:ed:06:f1:e1:c5:
7e:33:c6:85:b5:b5:d4:68:fb:f6:1d:f6:bd:45:88:aa:3c:4b:
cf:4c:50:9b:76:56:0d:fd:0a:e7:b8:d2:13:b4:d2:2a:d1:70:
92:43:b4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:07 2025 by rpki-client