Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/JTPQ-3ZtL69HYLU6CBqZrlq1Z2I.roa
File: JTPQ-3ZtL69HYLU6CBqZrlq1Z2I.roa (raw, json)
Hash identifier: bbxTO7bA9/ZeQUTjDTk/VKmsSgxo67NHwh6Y/9SVa6I=
Subject key identifier: 25:33:D0:FB:76:6D:2F:AF:47:60:B5:3A:08:1A:99:AE:5A:B5:67:62
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 0192E6853186645CC03D4F4965FD31888652
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/JTPQ-3ZtL69HYLU6CBqZrlq1Z2I.roa
Signing time: Fri 01 Nov 2024 06:59:01 +0000
ROA not before: Fri 01 Nov 2024 06:59:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205747
IP address blocks: 91.212.77.0/24 maxlen: 24
185.188.196.0/22 maxlen: 24
192.175.38.0/23 maxlen: 23
193.247.254.0/24 maxlen: 24
2a0b:d080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e6:85:31:86:64:5c:c0:3d:4f:49:65:fd:31:88:86:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Nov 1 06:59:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2533d0fb766d2faf4760b53a081a99ae5ab56762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b4:9d:9a:dc:bc:29:03:f0:ce:0b:ce:7c:f2:
d3:a8:b1:a8:de:92:77:7e:98:7c:f9:b1:ad:92:71:
ca:21:7a:4e:b8:8f:50:de:19:22:27:e0:d4:82:9a:
b7:67:58:02:2b:74:93:25:f2:4f:a4:74:68:81:6d:
07:8d:86:58:43:b5:68:3f:99:0a:0a:3e:a9:14:b8:
a5:13:99:32:48:2a:ad:77:40:be:73:d6:63:d2:12:
2d:c1:6b:be:a9:4f:f9:41:4d:38:44:32:64:04:34:
27:4c:36:2d:7b:65:6d:07:d5:66:36:30:da:42:08:
e0:84:b0:68:26:8b:f4:ff:e5:b8:7b:e0:08:88:e9:
cc:ee:d2:b9:a5:e8:a8:75:87:b8:26:62:ff:c1:6f:
1a:b6:32:26:57:8e:00:d6:aa:61:4f:62:2d:d4:ac:
4d:98:d8:0c:1d:ef:93:d2:2b:86:5e:9e:86:c3:82:
19:03:9a:b8:91:fc:2d:19:64:33:71:ff:c9:f9:2d:
00:f1:c3:93:0d:f1:0d:75:c1:cb:89:b1:c9:20:40:
dd:04:31:12:96:57:58:a3:69:52:cc:f7:49:98:c2:
ec:1d:ab:15:d5:3c:e7:95:47:31:49:9b:1d:b3:80:
99:e1:7e:a3:25:be:99:d2:06:61:e1:37:ce:07:55:
94:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:33:D0:FB:76:6D:2F:AF:47:60:B5:3A:08:1A:99:AE:5A:B5:67:62
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/JTPQ-3ZtL69HYLU6CBqZrlq1Z2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.77.0/24
185.188.196.0/22
192.175.38.0/23
193.247.254.0/24
IPv6:
2a0b:d080::/32
Signature Algorithm: sha256WithRSAEncryption
20:f2:b1:bc:80:24:de:ca:c4:6a:28:d1:7e:50:cb:4a:72:b3:
f3:2b:82:15:ab:78:f3:13:c8:9a:d6:7a:c2:a8:18:5b:24:af:
36:60:c3:ca:3a:85:b4:78:20:68:21:63:4d:61:55:3b:7a:54:
5d:7a:46:f6:f9:a7:5a:29:b6:13:a0:c4:13:ea:f6:14:50:5a:
5d:c3:97:4c:fb:fa:ea:ca:8d:d5:af:26:d9:ad:d5:ce:b6:21:
7c:32:99:55:70:25:bf:ee:c2:ac:a4:07:b0:99:1c:ad:9e:3c:
1b:43:16:f9:55:62:60:f2:ac:4a:c9:4f:91:8d:ad:5d:24:36:
c2:67:c6:a4:78:45:03:31:71:7a:b7:bc:56:35:ad:1f:70:0b:
ee:b1:39:83:96:c7:c5:d6:52:28:b1:4a:78:8a:00:27:29:31:
8f:75:fc:57:c4:fd:3b:f9:ae:a9:f3:a7:5a:88:1a:7b:86:75:
ac:75:5b:fc:8c:f7:25:2d:be:b9:c6:7f:20:58:bb:4c:ca:2c:
20:cc:a4:81:34:94:3b:bf:a5:83:00:40:cc:50:9d:63:2d:ec:
cd:a9:dc:04:a6:6e:6a:1a:77:ec:fc:ac:07:80:8f:73:f4:40:
f4:32:b0:c5:61:b5:bb:d5:93:08:e1:25:7c:d4:38:a5:15:94:
02:77:1e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:40 2024 by rpki-client on console.sobornost.net