Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/jApoV3TPijmDENgKWwRdkZM6Uqw.roa
File: jApoV3TPijmDENgKWwRdkZM6Uqw.roa (raw, json)
Hash identifier: wjaBS2EulT/rr6COKOCOvpHYjfAwFBqUAYltHqRp+s4=
Subject key identifier: 8C:0A:68:57:74:CF:8A:39:83:10:D8:0A:5B:04:5D:91:93:3A:52:AC
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 0184D31A5BA5752F249BA402B9E2193AC81F
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/jApoV3TPijmDENgKWwRdkZM6Uqw.roa
Signing time: Fri 02 Dec 2022 13:50:30 +0000
ROA not before: Fri 02 Dec 2022 13:50:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203619
IP address blocks: 89.23.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:1a:5b:a5:75:2f:24:9b:a4:02:b9:e2:19:3a:c8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Dec 2 13:50:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c0a685774cf8a398310d80a5b045d91933a52ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b4:eb:ac:43:ff:da:51:04:f4:27:ae:04:78:
86:6e:ce:8d:f2:f7:0e:cf:2d:d2:b1:84:53:03:78:
ac:c0:88:ab:e4:e9:ed:8d:52:83:c2:fe:1b:0d:ba:
e0:27:ad:a2:f5:cd:10:dd:91:97:08:9c:71:7c:59:
a4:b1:15:29:39:7c:fe:b1:90:69:ae:2f:5b:64:95:
72:c1:c8:72:63:37:78:19:5b:a5:76:02:24:32:f0:
81:7e:ea:d1:4b:85:da:4b:b7:c7:86:6d:8e:b1:c5:
3e:23:de:39:37:dc:f2:69:e8:77:f3:c7:3e:5e:5b:
2d:73:90:7e:c8:41:ff:ee:48:98:37:45:29:85:c8:
ca:d1:89:38:36:45:47:14:ef:bf:26:d2:9a:13:1b:
b9:52:de:c2:3c:5f:4d:27:87:51:83:55:83:d7:9b:
11:9a:2e:ed:95:6d:70:7d:23:74:65:95:c8:7e:fd:
07:39:b5:c2:a0:99:37:79:c4:c3:18:a5:1c:4c:c3:
88:ef:85:8a:f5:13:aa:66:5a:f7:47:e3:15:6c:70:
e9:40:aa:d8:6c:ad:3f:bf:4c:da:12:59:31:64:72:
f8:5b:b9:29:92:05:ad:bb:d3:90:3c:7e:87:02:c1:
79:63:88:c2:67:b3:fa:30:bd:51:71:83:f4:54:0d:
9e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0A:68:57:74:CF:8A:39:83:10:D8:0A:5B:04:5D:91:93:3A:52:AC
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/jApoV3TPijmDENgKWwRdkZM6Uqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.83.0/24
Signature Algorithm: sha256WithRSAEncryption
35:bd:8b:2c:fc:be:2b:4e:af:be:ce:3e:4c:60:f9:8e:ef:ac:
5d:80:e7:1a:8e:41:d2:66:fc:e3:cd:85:78:be:01:79:a2:71:
6c:89:4b:27:9a:8d:36:50:c0:93:83:74:b3:bc:a8:11:97:11:
5a:1a:0a:07:75:cf:e6:64:b6:b2:77:35:b5:a2:c7:08:ef:f0:
f7:d3:35:1f:f3:3b:aa:3d:c5:75:b0:8e:1b:d0:b3:e5:1a:9d:
23:f8:e2:df:65:15:64:e6:30:0a:ce:f1:34:92:70:2d:38:e6:
8a:3f:f3:31:c2:30:f7:f2:4d:4b:f0:28:b1:be:66:c2:71:22:
a7:59:db:58:8d:3c:df:db:ac:35:14:c7:e0:e3:60:c8:0f:c4:
db:85:db:6f:3b:80:fd:d4:9e:eb:14:91:4e:f2:8f:aa:65:5f:
49:b4:fc:5c:5e:51:92:44:dd:42:6f:d2:a2:eb:98:96:2f:1a:
2f:ba:62:64:de:10:17:a0:73:8d:b1:5e:75:e0:c2:58:e3:91:
3c:a4:25:d5:aa:11:98:d6:64:fb:05:15:59:92:b9:b0:8b:59:
b8:81:22:93:0f:18:96:27:ef:69:59:50:66:c6:49:bd:3a:a3:
f5:ef:6d:86:62:d7:6a:69:56:40:25:19:3a:f9:da:67:f2:3b:
c4:34:f1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:05:02 2025 by rpki-client