Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/jNKVMMdFoTlq407WSxJG2wl397A.roa
File: jNKVMMdFoTlq407WSxJG2wl397A.roa (raw, json)
Hash identifier: f7XfjeV34Q2856LzefHFdP3T+Gd6ci7hnd1cgyUQwpI=
Subject key identifier: 8C:D2:95:30:C7:45:A1:39:6A:E3:4E:D6:4B:12:46:DB:09:77:F7:B0
Certificate issuer: /CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Certificate serial: 0194258F3BDF9F1C41E1DCA602DF1B75C006
Authority key identifier: 97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/jNKVMMdFoTlq407WSxJG2wl397A.roa
Signing time: Thu 02 Jan 2025 05:48:51 +0000
ROA not before: Thu 02 Jan 2025 05:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30848
IP address blocks: 185.249.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:3b:df:9f:1c:41:e1:dc:a6:02:df:1b:75:c0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaa555a329edd86606cc0e3e296bd478ac73de
Validity
Not Before: Jan 2 05:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cd29530c745a1396ae34ed64b1246db0977f7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:d9:21:9f:51:bb:3f:12:6e:25:25:bf:5d:
cd:42:e1:3b:f8:a5:00:b0:ca:b9:0f:0c:49:41:d9:
aa:8b:cc:11:ba:8b:54:b5:16:46:a5:04:ad:06:8f:
9e:31:70:bf:98:24:5c:9d:b4:21:a5:df:28:d7:9d:
7a:e3:50:f4:2a:b5:51:a9:c7:50:84:16:ae:eb:a2:
ac:45:b5:a9:63:26:d9:51:1a:36:a6:41:1d:1a:c7:
77:db:0f:d3:38:1e:65:80:a7:fc:ff:12:f4:12:5b:
44:de:0b:79:89:29:1e:a5:f1:55:ee:0e:f5:fb:a4:
52:03:d3:2f:09:e6:43:70:01:a4:5c:c2:08:e8:17:
13:c9:c6:f0:06:31:b0:74:d9:9c:05:a4:24:5f:67:
0a:23:5b:55:c3:af:54:cb:54:7b:63:53:bd:d9:c9:
c5:7a:43:14:20:60:37:18:f3:ca:20:1f:1b:6d:28:
8f:80:f9:25:86:fe:b2:4e:e4:48:dd:02:f4:09:7f:
b0:1a:6d:3a:d0:ad:8c:31:f3:d4:66:ff:8a:f9:b1:
4a:93:1b:c7:9f:73:02:f8:2c:87:ff:d0:73:42:49:
7c:a9:9d:66:a3:55:d0:c1:a9:a5:4e:84:16:1d:52:
6e:6c:96:c5:95:df:8d:59:13:3c:46:26:d6:80:7f:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D2:95:30:C7:45:A1:39:6A:E3:4E:D6:4B:12:46:DB:09:77:F7:B0
X509v3 Authority Key Identifier:
keyid:97:AA:A5:55:A3:29:ED:D8:66:06:CC:0E:3E:29:6B:D4:78:AC:73:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6qlVaMp7dhmBswOPilr1Hisc94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/jNKVMMdFoTlq407WSxJG2wl397A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1195ab-ed41-452f-bc22-7fd0deae32c5/1/l6qlVaMp7dhmBswOPilr1Hisc94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.17.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ec:a7:b5:24:b2:69:7b:40:92:af:82:32:1f:1e:d8:66:8b:
82:40:fc:5f:ad:87:f3:90:b9:c1:7b:b4:bd:60:dc:8f:d2:a8:
86:98:5b:7d:b6:c6:c2:ee:60:e4:52:aa:eb:4c:b8:40:df:17:
89:67:af:71:bd:61:84:76:a3:f7:66:b6:60:52:2f:53:08:00:
47:27:e8:ea:b7:4b:bf:5e:be:7b:a2:c5:cb:93:0d:e8:f8:a1:
69:60:a6:ae:fe:9a:7a:c9:3e:1a:88:7d:8e:f2:7e:7a:9a:4e:
bf:f4:f7:83:19:51:98:af:bf:7c:9b:07:e3:03:f7:53:dd:d3:
83:e2:cf:25:06:af:32:81:54:34:90:60:6b:3b:0a:49:f1:35:
04:be:29:53:09:9d:c4:e3:df:f7:4c:02:32:8e:e7:31:57:ba:
8a:11:8d:ae:48:a3:dd:af:37:6f:d4:05:58:c6:70:ce:57:81:
25:6b:c9:1b:9f:46:22:0f:63:4d:5d:17:89:b9:eb:56:9f:6d:
c0:9b:dc:2a:ad:cb:12:0d:98:80:44:2e:16:57:ff:c1:ac:ef:
9c:6f:15:9d:10:13:42:91:08:7c:b1:de:e2:5e:2c:76:43:c5:
44:c8:6a:89:06:2f:da:b2:00:b4:b4:b5:24:a1:7b:27:20:63:
15:56:3f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net