Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/JaJTfkcMlPavkQgIWd6Q5PErN44.roa
File: JaJTfkcMlPavkQgIWd6Q5PErN44.roa (raw, json)
Hash identifier: xdZi+om1DwYfwvuK4ikXRudvdwfTqYCO5L9ilWGS09U=
Subject key identifier: 25:A2:53:7E:47:0C:94:F6:AF:91:08:08:59:DE:90:E4:F1:2B:37:8E
Certificate issuer: /CN=03f3f8259b30ec03722f942035a94e209f882861
Certificate serial: 019424B3B2BB16D00761F0EF0D25E9FEC6BE
Authority key identifier: 03:F3:F8:25:9B:30:EC:03:72:2F:94:20:35:A9:4E:20:9F:88:28:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P4JZsw7ANyL5QgNalOIJ-IKGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/JaJTfkcMlPavkQgIWd6Q5PErN44.roa
Signing time: Thu 02 Jan 2025 01:49:03 +0000
ROA not before: Thu 02 Jan 2025 01:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43341
IP address blocks: 193.46.36.0/22 maxlen: 22
2a0c:d240::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b2:bb:16:d0:07:61:f0:ef:0d:25:e9:fe:c6:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3f8259b30ec03722f942035a94e209f882861
Validity
Not Before: Jan 2 01:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25a2537e470c94f6af91080859de90e4f12b378e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:9f:a3:4d:af:94:ea:ed:a9:d0:c1:c7:03:
7d:f7:ac:5c:28:a5:82:01:60:95:75:cb:12:c2:54:
b3:ab:db:27:f1:08:2a:43:0b:f2:f5:97:59:b7:97:
df:62:87:6c:58:9f:b3:cf:d2:72:12:f6:5d:4c:c7:
cb:1f:96:6b:67:f9:7a:d8:b9:a4:d0:5e:18:9b:09:
72:4d:65:f0:9b:48:a6:6b:9f:74:59:f1:99:62:c9:
50:21:83:eb:e5:d5:c9:07:2a:c3:70:cb:a1:c8:a1:
14:16:ac:f9:11:e1:78:9b:86:ca:ae:da:d0:df:83:
2b:aa:72:62:cf:bb:eb:6d:f5:4f:5f:21:da:12:19:
76:d9:cd:a2:42:df:1f:fc:14:d4:1e:0b:d8:dd:50:
3c:84:8b:82:5d:8d:d5:56:4a:6c:2f:c1:5f:55:a3:
5e:11:16:54:3c:f4:cc:36:dd:8b:11:7a:94:2d:b3:
45:70:45:98:6f:a0:d8:7f:5a:32:a3:60:16:35:f6:
b8:f3:e7:1a:75:fd:31:40:ac:c0:98:3e:3f:52:c3:
25:a7:a2:08:9f:6b:90:c2:24:b9:c4:dd:ea:49:08:
0c:66:3f:f1:74:0b:03:e0:f5:70:18:2b:6f:88:65:
4b:0b:9b:ad:06:a3:b9:ba:a1:cd:28:df:51:39:33:
01:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A2:53:7E:47:0C:94:F6:AF:91:08:08:59:DE:90:E4:F1:2B:37:8E
X509v3 Authority Key Identifier:
keyid:03:F3:F8:25:9B:30:EC:03:72:2F:94:20:35:A9:4E:20:9F:88:28:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P4JZsw7ANyL5QgNalOIJ-IKGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/JaJTfkcMlPavkQgIWd6Q5PErN44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a4582e-1a4d-4d4a-a5f4-ab13356e5fec/1/A_P4JZsw7ANyL5QgNalOIJ-IKGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.36.0/22
IPv6:
2a0c:d240::/29
Signature Algorithm: sha256WithRSAEncryption
8a:0b:ed:cd:90:9a:cf:b7:e7:76:f1:85:73:b0:ce:02:75:f7:
18:6b:e4:ca:4a:14:c5:7f:27:b8:84:d8:00:64:d7:c3:90:25:
67:e3:c5:81:3e:ea:cb:1e:02:7e:34:bc:d2:c3:7c:db:da:fc:
e3:36:32:69:52:1c:37:74:0c:ef:cb:2c:a8:a4:12:b1:7e:28:
1d:59:ad:60:1f:f2:ca:ac:54:32:4d:ae:cd:36:48:f6:2a:64:
2c:10:66:98:86:54:1c:a7:64:e0:8c:d5:e7:52:96:d0:40:b0:
3b:41:a1:b0:19:97:c7:be:3e:91:3c:76:32:9c:67:ae:3d:06:
6c:63:48:97:fe:12:f3:63:f9:61:84:ec:77:01:74:7e:a5:3f:
08:e3:82:02:f8:44:17:b5:5f:1e:0e:60:72:6f:03:99:bb:6f:
45:9d:be:f4:08:72:fa:49:6a:69:d2:a5:ee:ad:37:be:e1:51:
53:0a:55:90:af:fa:39:55:f4:c7:d6:8f:09:f6:9d:b0:fe:89:
06:f6:34:c9:c6:7d:df:ed:7c:e5:12:70:3b:3f:94:33:f2:42:
74:8a:ed:79:9a:4c:7c:07:c3:7f:d8:f9:3a:0e:7b:dc:dd:be:
a6:9a:81:bc:d5:09:8e:e6:f7:7b:24:74:23:e7:1e:b0:d0:69:
8b:b5:34:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net