Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/jZDFfglCAVXqMiHQiNaCS_ykt5c.roa
File: jZDFfglCAVXqMiHQiNaCS_ykt5c.roa (raw, json)
Hash identifier: Z9pj0iwTHPQ+PmAz+kp9u4GZKNWWC8RI/dko3M2WedQ=
Subject key identifier: 8D:90:C5:7E:09:42:01:55:EA:32:21:D0:88:D6:82:4B:FC:A4:B7:97
Certificate issuer: /CN=845c2379efed10056cf865d52c32e1e1eba8c140
Certificate serial: 019426D8F2CF179301567EC030DB38D4D2D7
Authority key identifier: 84:5C:23:79:EF:ED:10:05:6C:F8:65:D5:2C:32:E1:E1:EB:A8:C1:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFwjee_tEAVs-GXVLDLh4euowUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/jZDFfglCAVXqMiHQiNaCS_ykt5c.roa
Signing time: Thu 02 Jan 2025 11:48:59 +0000
ROA not before: Thu 02 Jan 2025 11:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209061
IP address blocks: 212.40.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:f2:cf:17:93:01:56:7e:c0:30:db:38:d4:d2:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845c2379efed10056cf865d52c32e1e1eba8c140
Validity
Not Before: Jan 2 11:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d90c57e09420155ea3221d088d6824bfca4b797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a9:83:5f:70:99:f4:45:26:96:b7:47:dd:55:
a9:20:7b:7f:5f:69:d6:e6:b0:c4:64:d5:d4:29:d8:
d9:89:68:e0:c5:20:31:13:4f:ba:a5:fa:ee:5c:6b:
ee:89:27:6f:e7:55:3b:e1:51:dc:51:bd:ec:0c:a8:
c3:22:ca:21:32:9e:4f:c7:cd:24:e7:e6:49:d0:2e:
7f:cf:b5:d8:ff:aa:9d:31:be:75:7c:4b:53:0f:f7:
30:cb:52:fb:af:39:8e:41:93:ac:ae:f5:c0:90:73:
58:08:f7:41:f0:ed:dc:7c:00:06:1f:92:cd:77:76:
2b:a6:69:49:9d:4c:17:82:a1:54:55:83:fb:a1:86:
07:b2:49:fd:8d:64:b7:4f:fc:01:81:0d:ec:63:1b:
d9:61:09:24:bd:49:d9:28:db:06:5d:95:79:d7:0c:
a9:18:f6:79:19:a5:b9:ae:ab:85:05:55:7c:cb:dc:
04:ed:4e:5b:0c:57:0a:15:b0:08:de:10:6f:95:d8:
9f:6d:54:c4:d7:50:a6:ff:28:71:f6:8a:91:63:f7:
0a:5f:97:91:54:03:87:17:25:64:d3:08:09:14:a0:
f3:64:e1:6c:5d:08:c6:c7:04:28:b9:e9:30:62:eb:
d9:d8:4e:6a:c6:6a:9c:56:81:1d:b4:0d:42:2c:8d:
20:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:90:C5:7E:09:42:01:55:EA:32:21:D0:88:D6:82:4B:FC:A4:B7:97
X509v3 Authority Key Identifier:
keyid:84:5C:23:79:EF:ED:10:05:6C:F8:65:D5:2C:32:E1:E1:EB:A8:C1:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFwjee_tEAVs-GXVLDLh4euowUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/jZDFfglCAVXqMiHQiNaCS_ykt5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/hFwjee_tEAVs-GXVLDLh4euowUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.40.64.0/22
Signature Algorithm: sha256WithRSAEncryption
21:74:c1:5b:07:67:3b:62:d5:fb:c1:c3:c6:cc:0c:c6:e4:3b:
31:18:7a:3b:30:ab:ba:4d:d9:28:93:50:43:08:b8:81:9a:6f:
2d:fc:e3:ce:69:86:0c:8f:46:d4:e7:45:b5:a3:f4:37:bd:f0:
c1:fe:ae:02:dd:8b:8a:a3:10:04:bd:ab:00:c2:4f:1c:26:b5:
0a:44:5e:ef:e2:13:aa:12:c3:68:20:2a:af:e9:0f:06:4e:7d:
07:9e:fd:6f:9c:2a:5b:2d:e8:a0:dc:37:b9:d8:27:4f:f5:cf:
e9:fb:1d:ef:d4:a9:9e:13:b9:0d:b8:a1:c8:bf:dd:4d:a7:29:
b4:af:4b:7b:d1:52:a7:c2:3a:88:9d:94:bf:23:f9:46:e0:9f:
34:4f:71:02:4c:d0:12:8f:06:3c:47:b0:af:2a:a3:70:d8:8f:
9b:ae:50:c7:56:89:9e:e2:9c:ba:cd:cd:24:c8:73:66:9b:38:
3e:0e:a5:0d:6e:d6:8d:09:33:59:93:6e:9d:0f:83:16:a5:6a:
c8:d7:ec:ff:d3:bb:fc:d4:c2:ed:6f:be:a2:cf:27:20:0c:88:
1a:c4:88:26:a2:4c:6f:00:90:1c:65:9b:61:3f:54:49:77:39:
d3:82:b9:14:b8:3e:da:23:0b:9d:96:88:98:fb:ad:35:b4:e8:
56:d8:c5:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:48 2025 by rpki-client on console.sobornost.net