Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Jh44HC0xOF_RgeLfeZqkSIpdngU.roa
File: Jh44HC0xOF_RgeLfeZqkSIpdngU.roa (raw, json)
Hash identifier: IvjNtkuFNHTv1hfFsIqrkTb7ignusxam2lPE0Syk+6w=
Subject key identifier: 26:1E:38:1C:2D:31:38:5F:D1:81:E2:DF:79:9A:A4:48:8A:5D:9E:05
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01942747E8C28D2C7745EA9F9528A7FF9798
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Jh44HC0xOF_RgeLfeZqkSIpdngU.roa
Signing time: Thu 02 Jan 2025 13:50:11 +0000
ROA not before: Thu 02 Jan 2025 13:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35183
IP address blocks: 62.176.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:e8:c2:8d:2c:77:45:ea:9f:95:28:a7:ff:97:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 2 13:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=261e381c2d31385fd181e2df799aa4488a5d9e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:58:66:5b:17:f7:d4:55:26:4f:d0:dd:30:d9:
a1:7c:2c:94:87:b4:10:10:08:00:ab:56:62:c3:83:
c9:c1:78:07:5b:fa:e2:98:6c:08:48:1d:11:7c:cb:
97:dc:25:04:ad:05:2f:c5:e0:db:33:ff:01:06:60:
94:85:5f:73:6d:b3:57:73:79:65:3d:9e:5e:fa:7b:
f9:80:00:de:44:1e:d4:91:21:92:24:09:08:b9:e3:
a8:f8:b3:84:62:ee:82:d4:53:1d:ca:36:56:a7:eb:
29:dc:a5:f8:1e:69:3b:ae:17:f0:96:77:e2:72:ab:
98:e5:37:97:c1:29:21:1d:5c:33:e7:ad:86:ad:2f:
01:ff:18:44:88:97:52:a9:75:a3:98:32:ec:33:ab:
71:6a:f8:99:1c:0a:9f:a9:4d:d6:bc:11:7d:42:47:
9f:57:3e:2a:b0:5d:77:f4:61:20:42:c2:02:b6:44:
e0:a7:89:f7:fa:a0:25:fc:eb:79:56:74:60:cf:4c:
fb:24:18:12:d1:64:09:8c:dd:da:c8:ec:fd:7b:9d:
8b:bf:6c:e3:84:50:9d:12:f8:4b:7b:58:28:aa:f2:
90:f8:d5:9f:05:bb:ee:d2:c7:4c:35:1f:83:28:ea:
4e:c8:a9:cd:11:c1:9f:5b:46:04:0e:a2:02:57:e4:
6b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1E:38:1C:2D:31:38:5F:D1:81:E2:DF:79:9A:A4:48:8A:5D:9E:05
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Jh44HC0xOF_RgeLfeZqkSIpdngU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:66:ab:f9:84:95:44:c3:11:de:ac:7e:7e:b2:b7:83:c4:c7:
e2:91:46:af:7a:dc:7a:6b:46:6d:c0:d7:eb:32:90:f1:ca:06:
2d:6b:2e:87:59:af:dc:76:9e:3d:b8:66:1a:05:31:3e:b8:8a:
9b:a0:0e:26:cf:a0:73:fc:3f:30:c0:67:1c:66:0d:72:30:af:
bd:1f:9a:30:80:3f:9d:d1:9a:ef:a9:f3:99:bd:7e:95:de:77:
cb:ac:e5:a2:8e:48:42:cd:6b:79:a4:b3:97:76:c5:89:ff:76:
8f:6f:bf:2a:bf:f3:da:24:c8:5d:43:98:88:f2:ac:b2:c7:cb:
ac:fa:c9:31:c6:2d:3d:08:ae:d4:83:1f:d0:cb:f3:d9:c8:bd:
cf:f8:36:69:f2:6d:b2:32:fd:52:e5:65:04:de:be:28:a2:0b:
0f:db:11:58:55:1b:31:39:5c:97:66:b8:de:e3:e2:f9:39:ec:
80:2e:95:6c:52:b5:df:a1:b2:73:1f:42:30:84:4e:fd:17:71:
b6:b7:93:7a:61:dc:cb:37:1d:72:f3:6a:1e:44:dd:97:af:35:
e8:ae:63:e1:25:0a:42:03:77:de:96:7b:c1:46:de:dd:23:11:
bb:45:22:58:8d:29:a8:23:35:a5:ca:f9:93:21:6d:1c:f1:3e:
25:f8:6c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:23:29 2025 by rpki-client