Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/jCidCoQkb9m_tYCwbsjakuBhgIs.roa
File: jCidCoQkb9m_tYCwbsjakuBhgIs.roa (raw, json)
Hash identifier: jOA4Ka8w8nTlTA322uZQYTOcTgRSM76k9RTxieaFemI=
Subject key identifier: 8C:28:9D:0A:84:24:6F:D9:BF:B5:80:B0:6E:C8:DA:92:E0:61:80:8B
Certificate issuer: /CN=5f75203151d3b23ecccb64f520fb42549860cff0
Certificate serial: 019424448524BA1670F2762A650EB97EA226
Authority key identifier: 5F:75:20:31:51:D3:B2:3E:CC:CB:64:F5:20:FB:42:54:98:60:CF:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3UgMVHTsj7My2T1IPtCVJhgz_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/jCidCoQkb9m_tYCwbsjakuBhgIs.roa
Signing time: Wed 01 Jan 2025 23:47:37 +0000
ROA not before: Wed 01 Jan 2025 23:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43532
IP address blocks: 185.191.48.0/22 maxlen: 22
2a0a:1540::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:85:24:ba:16:70:f2:76:2a:65:0e:b9:7e:a2:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f75203151d3b23ecccb64f520fb42549860cff0
Validity
Not Before: Jan 1 23:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c289d0a84246fd9bfb580b06ec8da92e061808b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:43:72:88:fc:b1:e2:51:93:48:43:68:55:
42:0e:dc:44:c0:b6:e5:38:d8:dc:a5:8e:bd:7b:64:
3c:0d:f1:94:ad:fa:0d:b3:6f:1c:6b:9d:ee:f7:3e:
e3:05:28:d9:91:d7:3b:5e:29:57:43:af:b6:bb:79:
2d:5c:f0:ad:b5:a4:b4:e6:9a:07:62:c4:2c:8d:da:
d9:0a:63:0f:bf:04:65:4e:ef:67:4d:28:d4:83:f1:
27:72:8e:50:9e:49:00:05:11:94:79:65:f4:69:d5:
40:8c:bc:d8:05:ae:01:37:5a:98:07:1f:b9:d1:a4:
d9:cb:1c:05:28:b6:5f:1a:a8:e4:4b:68:9e:4e:7f:
49:ba:d1:9f:82:4e:e4:21:82:f0:95:13:fb:5c:4f:
0f:03:17:bd:14:b2:26:58:8c:64:48:be:51:35:62:
70:08:22:05:bd:1f:16:49:c2:ba:4a:a8:93:36:bf:
c4:9e:cf:d9:19:21:9d:ff:0e:fa:87:1f:bb:dd:2c:
2e:f4:bc:2b:f7:59:34:0f:74:b9:74:51:e9:65:0a:
db:03:7c:a3:aa:d6:d3:d0:63:56:ea:36:36:4a:06:
bf:61:6a:68:a5:e8:b4:f6:cb:d5:5b:12:bc:1f:2a:
db:a1:49:16:20:97:4a:63:55:26:19:a2:7e:9a:34:
5c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:28:9D:0A:84:24:6F:D9:BF:B5:80:B0:6E:C8:DA:92:E0:61:80:8B
X509v3 Authority Key Identifier:
keyid:5F:75:20:31:51:D3:B2:3E:CC:CB:64:F5:20:FB:42:54:98:60:CF:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3UgMVHTsj7My2T1IPtCVJhgz_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/jCidCoQkb9m_tYCwbsjakuBhgIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/f2a66f-2b4a-4610-8da8-09dd4c28b1e4/1/X3UgMVHTsj7My2T1IPtCVJhgz_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.48.0/22
IPv6:
2a0a:1540::/29
Signature Algorithm: sha256WithRSAEncryption
26:4f:6d:dd:75:87:3c:9a:76:30:2d:ec:b2:5d:ba:0b:9e:5e:
3e:92:90:73:f6:42:2c:7b:b9:e9:7a:15:78:94:c1:5f:20:75:
da:8e:68:c7:0a:a7:bd:7c:8d:fe:a8:ac:88:31:85:33:ad:f9:
f6:36:b9:ee:12:1c:27:22:9d:43:78:10:b5:c9:5a:47:40:13:
31:50:0b:2b:79:1f:6d:1e:55:3c:b0:ef:3b:6f:8e:53:a4:e1:
67:5f:38:50:d3:39:4f:08:51:cb:33:28:cb:f0:e8:8a:df:26:
a4:d4:e1:a0:92:98:bd:49:ca:19:1c:af:da:58:0a:9f:a9:1c:
1e:ca:63:cb:fc:2f:10:31:a4:be:ba:71:b8:af:fe:8e:80:db:
bf:e2:25:8d:78:d9:bf:52:eb:36:12:de:9d:9c:10:00:5b:ab:
c6:70:37:2a:aa:bd:46:b2:a1:f1:b0:b2:e4:f7:37:2e:e3:eb:
e0:ef:29:75:85:95:39:21:83:fa:a6:96:b4:d3:91:9a:b1:8c:
be:27:f4:20:75:65:df:80:b2:fa:f4:6a:26:9e:bd:f4:de:e0:
97:94:f6:6c:84:55:1c:f5:9d:66:4b:3a:d1:82:cc:a9:87:96:
41:07:9f:6f:54:e2:5b:dc:40:38:0a:5e:6b:2a:1e:e8:54:96:
34:ef:f0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:28:29 2025 by rpki-client