Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/JBQhfo3FsnwUsx-UTgXPIZt7kJ8.roa
File: JBQhfo3FsnwUsx-UTgXPIZt7kJ8.roa (raw, json)
Hash identifier: bUlQWyP27AxXkVN39P96vABHByOo3DKe+DZOr/q89dA=
Subject key identifier: 24:14:21:7E:8D:C5:B2:7C:14:B3:1F:94:4E:05:CF:21:9B:7B:90:9F
Certificate issuer: /CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Certificate serial: 0193A46154ADF841AFFFAF712ABEE189AB19
Authority key identifier: 2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/JBQhfo3FsnwUsx-UTgXPIZt7kJ8.roa
Signing time: Sun 08 Dec 2024 03:47:42 +0000
ROA not before: Sun 08 Dec 2024 03:47:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6939
IP address blocks: 23.252.67.0/24 maxlen: 24
23.252.68.0/24 maxlen: 24
23.252.71.0/24 maxlen: 24
23.252.75.0/24 maxlen: 24
23.252.76.0/24 maxlen: 24
23.252.79.0/24 maxlen: 24
107.150.162.0/23 maxlen: 23
162.222.88.0/23 maxlen: 23
162.222.90.0/24 maxlen: 24
167.160.4.0/24 maxlen: 24
167.160.11.0/24 maxlen: 24
167.160.19.0/24 maxlen: 24
167.160.21.0/24 maxlen: 24
167.160.27.0/24 maxlen: 24
167.160.30.0/24 maxlen: 24
185.4.224.0/23 maxlen: 23
185.162.72.0/23 maxlen: 23
185.165.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a4:61:54:ad:f8:41:af:ff:af:71:2a:be:e1:89:ab:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Validity
Not Before: Dec 8 03:47:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2414217e8dc5b27c14b31f944e05cf219b7b909f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:83:0c:31:1f:76:7c:88:37:2c:f1:6e:14:
66:7e:15:72:5d:d9:85:28:90:39:47:12:9d:6f:ad:
9c:79:ce:23:ca:43:57:b2:5f:68:94:5e:07:ed:ef:
29:fd:83:0a:be:c7:7e:1d:a8:d7:04:55:b8:fe:22:
ee:5f:fe:b1:c8:c0:1a:c7:9c:24:b9:a8:33:18:b4:
94:d9:60:8b:73:7b:52:9a:b2:c2:7a:6f:65:02:cf:
df:fa:bf:29:16:6d:72:5e:69:ac:02:73:ea:b0:ad:
f2:34:16:b8:ff:6e:18:b5:90:5a:38:d3:a2:53:06:
9a:10:14:9d:fb:c9:e6:04:51:b0:98:3f:63:41:48:
e9:ba:a9:fb:45:ae:6c:22:01:e7:3f:df:3c:9c:6a:
ca:28:f4:a8:52:ca:6b:7e:fb:21:49:10:1b:62:ae:
70:a5:7d:9f:5b:f3:51:e7:91:de:a7:70:87:87:b1:
25:b9:3e:dc:e0:3e:31:f4:28:60:03:6f:0c:dc:f3:
46:de:62:bc:18:50:3d:28:04:7f:c0:9a:5f:da:9b:
0d:a1:3e:0e:9a:93:30:1e:0f:74:15:c2:44:86:e5:
bb:1e:36:d3:ba:66:6e:8a:df:89:a5:19:93:2e:74:
4c:a8:32:1d:c0:70:8a:92:de:f7:c2:72:e1:3e:06:
bb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:14:21:7E:8D:C5:B2:7C:14:B3:1F:94:4E:05:CF:21:9B:7B:90:9F
X509v3 Authority Key Identifier:
keyid:2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/JBQhfo3FsnwUsx-UTgXPIZt7kJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/LjaLCuxsf9SNDZa0B3oj-Qaoakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.252.67.0-23.252.68.255
23.252.71.0/24
23.252.75.0-23.252.76.255
23.252.79.0/24
107.150.162.0/23
162.222.88.0-162.222.90.255
167.160.4.0/24
167.160.11.0/24
167.160.19.0/24
167.160.21.0/24
167.160.27.0/24
167.160.30.0/24
185.4.224.0/23
185.162.72.0/23
185.165.47.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:87:62:12:a2:9e:cb:8d:7b:af:77:a3:3b:13:61:1c:75:e3:
ce:17:7a:76:e0:23:c7:4f:ec:13:f8:bd:1d:8f:2f:c8:e2:55:
dd:33:8e:5a:86:86:af:55:e3:c1:14:a3:ca:c7:03:77:6d:45:
f7:55:a7:67:d2:6f:a6:18:6c:1e:24:64:47:d0:dc:1f:e2:31:
16:6d:11:96:9d:00:15:f0:3e:62:55:cd:b0:c2:2a:be:b6:9b:
e4:c7:29:ce:09:10:20:c8:ec:38:6c:68:50:cb:34:ad:2e:cd:
98:d6:d2:8c:2f:5e:09:6e:a7:38:1a:b5:9f:1d:5c:f1:0d:d5:
ff:01:e4:ad:65:37:aa:5e:9f:74:4d:7a:1a:61:c2:4f:6f:93:
d9:1e:51:d4:ba:f5:f5:7e:24:57:75:6e:87:9e:f0:57:c0:36:
20:4a:91:69:0e:8e:85:d1:7a:dc:39:8c:dd:7b:48:b2:a6:8b:
6a:10:c5:e9:d1:32:2e:a2:fc:47:50:01:c3:32:55:b3:dc:e2:
43:8d:68:2f:41:00:e1:c6:da:a0:63:e8:77:f5:d5:72:57:f8:
50:a3:64:45:47:57:7f:08:2c:ec:5d:f9:ae:48:d7:ef:cd:b4:
3c:28:c1:45:e0:0a:b9:ee:bb:a2:06:bb:c8:48:81:57:83:5b:
62:66:e8:d8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:23 2024 by rpki-client on console.sobornost.net