Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa
File: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (raw, json)
Hash identifier: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=
Subject key identifier: 24:3D:59:17:55:D6:2E:E1:1F:63:FC:59:2B:F1:E2:48:1F:96:E5:27
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 019426D9831D588121E742C21C3F761F1F63
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa
Signing time: Thu 02 Jan 2025 11:49:36 +0000
ROA not before: Thu 02 Jan 2025 11:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15497
IP address blocks: 193.41.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:83:1d:58:81:21:e7:42:c2:1c:3f:76:1f:1f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Jan 2 11:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=243d591755d62ee11f63fc592bf1e2481f96e527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:96:9b:16:da:87:29:98:41:a3:9a:fd:61:
f9:c2:a3:cc:f8:35:20:cb:97:f9:57:70:7c:17:78:
ad:78:01:ae:1c:7a:5e:60:2a:c4:3b:47:7d:2e:58:
f7:23:8a:bb:c9:2c:58:4c:e0:1a:ef:08:fe:16:92:
b0:b4:11:4d:a7:10:b9:43:18:15:dd:54:22:60:36:
e5:1e:c4:86:f8:02:2c:8e:71:53:12:7f:44:38:b4:
70:9f:d1:59:6e:69:ab:df:8c:81:fd:00:06:2b:60:
4a:4a:97:57:a8:0f:8f:09:86:be:6e:3a:b9:d5:72:
f5:7b:51:50:8e:9d:e1:15:6b:c6:d6:02:a8:61:dc:
9f:9e:b0:43:35:8a:18:48:f8:d5:14:31:c9:0e:f6:
fe:1e:6a:2f:49:35:07:ce:f3:fa:8b:dc:ea:66:73:
1a:f2:d1:7b:a9:94:e7:03:72:9a:51:7d:68:af:4c:
f8:3d:27:be:1a:dc:9d:b8:ee:e2:0f:0d:83:5a:d6:
1b:5a:b3:e8:5f:5e:1a:25:c3:5b:df:c2:db:7e:62:
d1:3b:4d:bb:61:36:d1:52:9e:7b:e5:d5:4d:cb:de:
a5:35:4c:96:81:80:c1:d9:f9:2c:71:53:5c:b0:e4:
5b:d9:3a:0c:24:5c:cc:3f:3e:5d:e6:4b:46:9f:09:
09:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3D:59:17:55:D6:2E:E1:1F:63:FC:59:2B:F1:E2:48:1F:96:E5:27
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.239.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:f1:9a:8d:e5:d0:7f:f6:df:51:85:76:bb:1d:49:6c:88:7d:
d8:d2:d9:52:62:87:a3:34:28:78:17:0e:20:96:64:5a:79:dd:
f6:ab:3f:62:3e:a0:e7:87:74:77:55:58:40:fe:3e:40:ec:e8:
9a:e9:fe:38:3e:1c:a5:7c:65:79:6c:d8:0a:fd:63:0f:fd:f9:
71:67:9c:52:14:f8:25:6c:ab:46:fb:0c:d1:67:bb:a9:88:93:
6f:14:78:b6:67:11:e7:b9:7c:97:ec:78:32:c4:29:1b:d3:47:
d0:75:44:8a:b2:68:7c:1e:d2:25:2c:96:fb:91:3e:3c:fd:be:
67:fb:17:f3:26:9f:b6:e5:b5:35:5d:58:a7:6c:9a:f2:03:0a:
b6:08:ed:ef:13:13:fd:fb:63:10:51:73:e3:17:21:fb:ed:d8:
e8:02:8f:88:ed:e0:e9:4a:a6:55:b6:16:e7:90:b2:fe:76:38:
b2:16:77:e5:34:88:7b:c0:7e:c5:89:ad:ec:45:f4:77:fc:7a:
7a:c9:eb:fc:b2:51:08:e3:e1:91:83:c1:4f:ff:9c:75:8d:c5:
e6:31:d3:aa:2b:42:c8:f4:93:b7:b1:d2:03:88:d6:c3:28:88:
cd:ee:af:95:d3:34:98:b0:34:d5:aa:b4:c4:e7:90:50:cc:d9:
c6:15:64:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net