Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JBJDitDPQDp7uau__zLA0UwhCgw.roa
File: JBJDitDPQDp7uau__zLA0UwhCgw.roa (raw, json)
Hash identifier: R106/g5VQisRMQ9a+37PX+GheT0rDv2YD6EjIhwfsDo=
Subject key identifier: 24:12:43:8A:D0:CF:40:3A:7B:B9:AB:BF:FF:32:C0:D1:4C:21:0A:0C
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 0194266BCEB54DCB2D101D2E0C11AF802EA1
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JBJDitDPQDp7uau__zLA0UwhCgw.roa
Signing time: Thu 02 Jan 2025 09:49:46 +0000
ROA not before: Thu 02 Jan 2025 09:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205902
IP address blocks: 212.183.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:ce:b5:4d:cb:2d:10:1d:2e:0c:11:af:80:2e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 2 09:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2412438ad0cf403a7bb9abbfff32c0d14c210a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:93:18:65:9c:21:b6:d2:f2:3f:02:74:eb:35:
bd:ba:48:59:cc:48:48:f7:b4:b3:93:c6:46:33:5f:
ab:88:a9:b6:81:49:a3:38:01:8c:e2:cb:17:5d:72:
b2:01:f7:8b:38:fa:c4:01:33:b1:58:1d:e7:87:0d:
f4:42:5a:06:b7:79:e0:9e:2d:25:bd:97:b3:ee:34:
ae:46:20:1c:b4:02:a2:c4:bc:fa:a1:e9:ec:2d:31:
c9:c1:03:62:fc:4d:86:4b:df:5a:ef:93:8c:84:24:
a5:b3:a7:69:b8:a8:b7:57:f7:65:29:24:55:3d:5a:
62:a1:d3:c2:f3:07:7f:c4:ba:92:94:f1:18:4c:bb:
38:04:de:1d:d8:d3:f8:37:3b:11:02:37:2d:c2:92:
19:09:55:c7:f7:e6:43:cb:8e:56:f6:e3:64:24:05:
a9:81:d7:d1:3d:e1:1c:89:02:eb:11:c4:4b:5e:06:
c0:d9:a0:23:b0:5a:d6:8b:68:f5:26:95:e7:92:ab:
70:85:ad:6c:bd:d9:66:52:0e:f9:26:a7:5e:5e:69:
54:d1:12:d3:5c:2f:48:58:10:ab:f1:93:35:0e:0d:
17:2e:3e:f6:ee:31:5e:85:4c:fd:61:62:5c:4c:7c:
3a:ac:56:de:88:a5:6a:0f:06:18:32:3b:c9:1b:ea:
bc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:12:43:8A:D0:CF:40:3A:7B:B9:AB:BF:FF:32:C0:D1:4C:21:0A:0C
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/JBJDitDPQDp7uau__zLA0UwhCgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.27.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ad:7c:5e:8a:99:f3:3e:20:35:6c:12:d1:f3:54:e8:ec:bf:
a7:88:74:4b:1f:08:d9:f2:2c:b0:e2:8e:07:71:b3:12:a0:a0:
bf:b3:85:a3:6d:53:91:8c:e3:c9:36:00:48:74:58:09:19:c2:
cc:1c:aa:38:5b:41:ce:19:a0:2e:50:cc:2f:99:b1:ce:ae:9b:
15:8f:e3:a0:81:cf:78:18:03:0e:27:de:39:eb:27:c8:6c:cd:
56:6c:b8:ea:34:1b:e6:f4:22:af:c1:24:9e:5d:4a:56:9b:44:
15:04:98:c0:ba:bc:78:86:8a:67:24:90:47:89:56:ea:23:4c:
af:e4:3c:38:85:2f:7e:4b:7d:11:d7:8e:12:54:64:5e:1c:77:
8d:80:3a:47:5f:fe:1b:1a:ce:0f:c6:93:54:e1:35:0c:f3:4e:
e2:4b:26:80:12:5e:4a:62:d6:f5:a4:b9:82:b4:da:de:ce:d5:
b3:66:79:7d:9d:b9:f8:13:28:37:e0:e9:dd:9d:78:88:24:52:
03:f9:34:f5:46:e6:8e:a0:3e:1f:d1:be:54:e8:71:e9:e7:06:
20:6a:5e:71:ba:ad:38:3f:cc:cc:41:9c:62:58:63:ce:f9:49:
c5:ee:49:e6:aa:1e:69:78:c5:87:58:b9:90:3b:46:a5:00:4f:
1e:5e:d6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:19 2025 by rpki-client