Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/JwJsqgN8tMHBb8-cKphUDXDGdjk.roa
File: JwJsqgN8tMHBb8-cKphUDXDGdjk.roa (raw, json)
Hash identifier: YTrRh6JikNqs6WlmNDRrBNlOxew2Uxiz3hinZoGWt2Y=
Subject key identifier: 27:02:6C:AA:03:7C:B4:C1:C1:6F:CF:9C:2A:98:54:0D:70:C6:76:39
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 019425FD2D26828EBF6F013B76179F955F8C
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/JwJsqgN8tMHBb8-cKphUDXDGdjk.roa
Signing time: Thu 02 Jan 2025 07:48:56 +0000
ROA not before: Thu 02 Jan 2025 07:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213894
IP address blocks: 104.238.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:2d:26:82:8e:bf:6f:01:3b:76:17:9f:95:5f:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 2 07:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27026caa037cb4c1c16fcf9c2a98540d70c67639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:81:78:2b:f4:0b:0b:44:42:6a:2e:f0:c1:
b1:99:c3:1c:83:69:95:8b:22:e4:0d:df:04:38:b3:
ba:1e:04:f3:ea:f1:54:45:0a:cd:e2:0e:8e:81:28:
1a:3a:96:19:1d:e6:93:aa:69:dd:52:9b:7b:d1:20:
1c:0d:2a:da:38:35:6c:ef:c5:3b:bb:95:c1:8c:e2:
a9:cc:31:de:63:0e:3f:4a:57:8e:d5:f8:ed:db:19:
b8:03:c2:8a:ec:27:29:db:0c:68:81:11:3e:ec:cb:
a0:5b:14:97:a6:98:52:fa:f3:d1:a8:b1:76:a5:e1:
a0:d3:d8:73:28:bf:45:dc:ac:62:09:c1:40:16:fb:
8c:9c:9c:f3:48:cd:85:7f:fc:fc:73:e1:b9:28:b3:
e9:99:9c:49:b8:d6:e3:6b:c0:cb:5b:7d:25:e7:a9:
be:94:f4:7b:89:72:5d:57:14:cf:a6:c9:fe:f4:cb:
07:46:5d:bb:55:48:fd:f7:80:a1:26:8b:ee:a7:56:
64:f2:fa:85:3b:c7:5c:54:c3:60:22:02:d0:67:f7:
a8:7c:a2:07:36:2a:47:da:2b:a9:cc:54:2b:94:55:
09:6a:c8:5b:89:fd:93:7a:b9:f1:0f:26:33:79:6f:
43:9c:f2:83:c0:53:4f:aa:39:13:5a:03:1e:57:bf:
37:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:02:6C:AA:03:7C:B4:C1:C1:6F:CF:9C:2A:98:54:0D:70:C6:76:39
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/JwJsqgN8tMHBb8-cKphUDXDGdjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.238.17.0/24
Signature Algorithm: sha256WithRSAEncryption
07:eb:1b:33:93:61:21:8a:84:10:0f:a1:ad:30:90:23:80:d1:
26:1a:1f:bf:52:7f:f0:43:75:f9:cb:7e:58:41:27:9d:ba:1b:
fd:6f:53:79:60:5b:2d:56:f8:e2:49:e0:47:a6:fc:94:30:16:
1c:c9:71:67:53:a1:e8:0c:2e:d1:1f:c5:f5:0a:00:c1:59:10:
5f:3e:aa:0d:f9:ea:6b:5c:61:9f:09:88:46:11:12:f9:d3:32:
67:3a:6c:4f:f9:c3:84:16:66:49:89:8a:4a:c9:80:fe:f7:91:
9f:cc:58:3b:fd:68:50:5a:24:cd:07:58:c7:2b:9b:7a:fa:e5:
c7:5f:fe:99:dc:fa:af:bd:6b:1a:55:14:62:51:17:b7:6f:d7:
0e:cd:8a:86:b0:e0:bb:d1:e4:bb:cf:06:9e:e8:c3:11:cf:75:
5b:55:53:76:13:b2:bf:84:33:68:65:c9:24:e2:94:c6:fe:99:
a4:76:50:c5:83:b5:cb:18:c5:a5:c6:2d:42:e8:05:4f:91:5d:
2b:67:a4:e1:66:ae:0b:db:f8:e6:19:aa:fd:ba:89:ac:9e:5e:
74:49:ea:7a:25:14:0e:22:0c:13:dd:b3:e6:da:ba:d0:3e:c0:
4a:be:d5:d2:b9:dd:30:e5:a1:ec:66:89:e2:00:19:ef:a3:71:
f5:aa:f1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:41 2025 by rpki-client on console.sobornost.net