Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/Jzm46CCydGnaow81u1_xNN5mK1k.roa
File: Jzm46CCydGnaow81u1_xNN5mK1k.roa (raw, json)
Hash identifier: 6dqJE3+wgexU/DPorZ1i735/Z7zxtOoeBz+MZoeVtcw=
Subject key identifier: 27:39:B8:E8:20:B2:74:69:DA:A3:0F:35:BB:5F:F1:34:DE:66:2B:59
Certificate issuer: /CN=11e5af4c72869209539b1194597b03fa3a4a554a
Certificate serial: 01942827389E39655ACFD3B819F025C8E7CA
Authority key identifier: 11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/Jzm46CCydGnaow81u1_xNN5mK1k.roa
Signing time: Thu 02 Jan 2025 17:54:06 +0000
ROA not before: Thu 02 Jan 2025 17:54:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 193.3.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:38:9e:39:65:5a:cf:d3:b8:19:f0:25:c8:e7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11e5af4c72869209539b1194597b03fa3a4a554a
Validity
Not Before: Jan 2 17:54:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2739b8e820b27469daa30f35bb5ff134de662b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:8e:e0:e5:03:f7:e1:04:53:40:65:27:7e:
c6:3c:d2:e8:d3:a1:3a:27:bd:d3:a8:dc:67:73:c0:
f1:d1:60:2b:21:bb:8a:80:7d:e8:5c:5d:aa:74:83:
43:82:a3:0b:5d:47:21:32:21:3d:c0:a4:db:05:90:
1b:e3:7d:84:d0:2f:11:ac:e2:2f:e6:f7:a4:74:48:
8a:ff:09:07:71:f5:4e:fa:54:c7:2d:6b:cb:bd:9b:
c9:a9:c8:68:ec:53:c8:e9:72:b1:b3:3f:47:1f:ee:
ad:fa:ca:39:c2:e3:06:ce:16:f8:c4:16:f1:70:4d:
08:9b:01:5e:8d:5e:ef:d5:ea:61:0a:a5:56:36:d7:
29:3b:39:91:53:c8:b8:40:07:2c:bb:8f:1b:42:19:
89:54:0f:99:86:33:97:b3:b8:85:cb:17:f4:4c:ea:
32:1f:21:20:b7:4c:15:54:36:7f:cb:39:e6:c8:c3:
b4:f2:c0:e9:e0:84:41:e8:a0:2b:60:07:5a:19:cb:
ec:0e:cb:b8:12:9e:6c:b9:fd:39:fd:e9:44:df:3a:
9e:c2:d5:94:d6:1c:66:3c:fb:0e:2b:6f:40:8e:0e:
09:22:32:14:0c:29:ac:c5:a9:12:72:03:96:2c:0b:
cf:d8:a9:14:b6:16:87:39:13:be:08:d1:00:09:31:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:39:B8:E8:20:B2:74:69:DA:A3:0F:35:BB:5F:F1:34:DE:66:2B:59
X509v3 Authority Key Identifier:
keyid:11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/Jzm46CCydGnaow81u1_xNN5mK1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/EeWvTHKGkglTmxGUWXsD-jpKVUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.160.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b9:7a:08:5e:70:ca:30:ef:72:25:5f:66:62:53:9b:f5:4c:
bd:9d:7a:58:03:f2:9b:f6:8e:f4:a5:00:e6:34:d9:57:c9:92:
a3:25:95:30:ec:3e:7f:35:af:3d:02:30:35:55:b7:13:a3:63:
e8:e1:fb:ab:9c:9d:ff:52:b6:a3:e9:b9:ff:3f:12:04:c7:2e:
ab:94:36:6d:3d:96:19:89:e0:68:cb:cc:8c:f3:b4:68:c9:12:
6d:c8:c5:0b:76:46:06:09:5d:31:1a:1e:c1:50:cd:53:c8:b6:
e4:ea:3a:5f:06:dd:3b:2e:5b:77:90:af:81:da:f0:01:51:1b:
d3:98:b5:56:fd:92:eb:cd:ac:df:17:bf:ae:0d:29:59:04:fa:
a3:12:64:9a:d6:d6:d5:81:6a:00:c7:4f:91:82:01:a8:2d:62:
b1:a5:57:86:db:e5:2b:6b:3f:e5:68:10:e5:b5:6f:6c:8f:d3:
17:d3:19:2d:67:ed:ad:5c:ca:1e:08:e0:07:08:ed:48:cd:68:
53:20:1a:13:0f:ac:cf:fd:34:94:16:85:f1:51:be:0c:d3:e0:
8d:0b:2a:fb:27:12:e4:14:24:a3:ff:d5:c2:fe:50:61:60:8d:
05:c9:e6:e3:f1:07:92:43:bd:bb:9a:26:f1:85:13:f4:5a:4e:
e5:35:d4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:01 2025 by rpki-client on console.sobornost.net