Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0f92bd-35d0-4570-b5d3-6f31f6f7f16b/1/J9IdjUhrnmdPlVz9AGQjjVXnZY4.roa
File: J9IdjUhrnmdPlVz9AGQjjVXnZY4.roa (raw, json)
Hash identifier: /POjVrGUKaeCRXBaJsPW90/VSUb2DNJJX57AghjcdVQ=
Subject key identifier: 27:D2:1D:8D:48:6B:9E:67:4F:95:5C:FD:00:64:23:8D:55:E7:65:8E
Certificate issuer: /CN=ca5e3ec5a90623ccb97784d3cef24212a31cbaf1
Certificate serial: 019426D912B21959EC8876377A0F99902BAC
Authority key identifier: CA:5E:3E:C5:A9:06:23:CC:B9:77:84:D3:CE:F2:42:12:A3:1C:BA:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yl4-xakGI8y5d4TTzvJCEqMcuvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0f92bd-35d0-4570-b5d3-6f31f6f7f16b/1/J9IdjUhrnmdPlVz9AGQjjVXnZY4.roa
Signing time: Thu 02 Jan 2025 11:49:07 +0000
ROA not before: Thu 02 Jan 2025 11:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15924
IP address blocks: 185.114.216.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:12:b2:19:59:ec:88:76:37:7a:0f:99:90:2b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5e3ec5a90623ccb97784d3cef24212a31cbaf1
Validity
Not Before: Jan 2 11:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27d21d8d486b9e674f955cfd0064238d55e7658e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dc:21:44:30:73:df:41:43:2a:ee:61:b2:19:
1b:aa:d5:a0:41:a4:33:e0:d3:ca:25:9d:0a:ff:3e:
90:f4:92:68:2a:96:ff:1e:e4:61:7e:e8:c4:7b:d2:
9c:71:cc:6f:92:df:6c:1f:41:b3:e0:71:37:5e:04:
cf:c0:ac:fe:65:77:59:4b:fd:fa:fe:58:85:0d:f5:
52:be:06:7e:24:f9:97:b9:a2:eb:45:23:9c:c9:cf:
ce:52:ef:ad:11:86:4a:2f:bc:e8:35:65:e7:21:fa:
41:0c:64:49:82:8f:35:69:ae:86:8c:e7:2e:ce:0e:
4e:c5:06:a5:4a:bb:b9:cf:f5:7b:e3:9a:27:2a:10:
1e:20:71:3b:84:70:22:95:81:46:ff:f9:8a:f8:20:
48:df:bf:bf:83:79:01:f8:2d:8f:b4:2e:c8:8c:e0:
20:bf:96:b3:47:c8:b5:ec:cf:20:8c:88:59:9b:93:
5e:02:5f:d5:2c:06:43:ac:85:0c:9d:20:bb:ca:5e:
65:ef:48:99:35:bd:5e:31:99:e0:e3:e2:f0:3e:c6:
31:b6:25:db:b6:71:8b:e1:a5:fd:60:fb:ef:af:56:
8a:20:5d:55:9c:8e:93:bb:3a:fb:f3:ca:f6:9a:3d:
be:c7:bb:3c:eb:26:83:ad:65:8c:99:e0:f3:07:4d:
92:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D2:1D:8D:48:6B:9E:67:4F:95:5C:FD:00:64:23:8D:55:E7:65:8E
X509v3 Authority Key Identifier:
keyid:CA:5E:3E:C5:A9:06:23:CC:B9:77:84:D3:CE:F2:42:12:A3:1C:BA:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yl4-xakGI8y5d4TTzvJCEqMcuvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0f92bd-35d0-4570-b5d3-6f31f6f7f16b/1/J9IdjUhrnmdPlVz9AGQjjVXnZY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0f92bd-35d0-4570-b5d3-6f31f6f7f16b/1/yl4-xakGI8y5d4TTzvJCEqMcuvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.216.0/23
Signature Algorithm: sha256WithRSAEncryption
67:4c:c3:91:b1:d4:6d:61:f6:78:3f:3e:46:95:95:92:71:eb:
f9:5f:c2:4a:ff:9e:4d:3b:23:fd:5b:e9:9b:10:8a:b5:56:43:
79:f1:e2:f8:02:f4:ab:3e:03:24:79:e0:13:f4:bd:1c:70:8a:
a9:45:41:f2:db:90:96:85:bb:d9:fb:e2:be:3c:7a:62:39:fb:
0e:28:a3:25:3f:1a:1a:eb:19:b9:87:f8:6b:fc:51:66:2a:16:
31:e8:b2:06:b3:c3:0e:72:ae:27:5e:92:a4:c5:f1:4f:9e:1b:
0a:17:11:a0:2f:f8:76:45:06:a9:8b:b6:6a:1f:f1:37:ef:52:
f4:81:49:f5:69:bb:d8:1a:70:a4:18:fc:74:4d:85:78:a6:18:
36:7a:cf:93:21:89:41:2a:65:04:b4:b2:e4:e5:20:b4:fa:84:
26:b6:f1:0c:cc:36:20:7a:90:cf:f2:51:c0:36:45:ad:01:3d:
20:ad:b6:2f:4f:c6:55:23:45:ee:c6:a5:4e:76:d8:01:9c:13:
16:77:32:66:3c:ed:95:ba:3f:a7:37:72:82:d6:eb:d5:06:81:
0c:47:f8:2b:1a:08:88:46:00:94:bf:bf:f1:bb:09:ef:27:3c:
c2:f3:23:e1:03:b6:00:7e:72:7a:b3:5a:28:a0:b8:6a:d4:60:
58:bf:6d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:07:27 2025 by rpki-client