Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/351113-ed85-42b2-b64f-9ea64862a9ab/1/jmbXitTxYDhXxX8Sm7GQvdd6SyE.roa
File: jmbXitTxYDhXxX8Sm7GQvdd6SyE.roa (raw, json)
Hash identifier: zVpGoN0B3V4SBK16rXtn4P+ZIoIETx7c6+rwVBVyUtc=
Subject key identifier: 8E:66:D7:8A:D4:F1:60:38:57:C5:7F:12:9B:B1:90:BD:D7:7A:4B:21
Certificate issuer: /CN=94dec641051b026b95c8459150ca47ddaec89668
Certificate serial: 019426D8F494FED4D5D8884256AE0C7F1A5C
Authority key identifier: 94:DE:C6:41:05:1B:02:6B:95:C8:45:91:50:CA:47:DD:AE:C8:96:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lN7GQQUbAmuVyEWRUMpH3a7Ilmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/351113-ed85-42b2-b64f-9ea64862a9ab/1/jmbXitTxYDhXxX8Sm7GQvdd6SyE.roa
Signing time: Thu 02 Jan 2025 11:49:00 +0000
ROA not before: Thu 02 Jan 2025 11:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60708
IP address blocks: 91.228.39.0/24 maxlen: 24
2a01:7640:400::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:f4:94:fe:d4:d5:d8:88:42:56:ae:0c:7f:1a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94dec641051b026b95c8459150ca47ddaec89668
Validity
Not Before: Jan 2 11:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e66d78ad4f1603857c57f129bb190bdd77a4b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fe:c3:a0:9b:2c:62:2e:5f:52:5e:fd:9c:54:
51:cc:35:2f:0a:55:c6:29:0d:66:b6:20:ac:07:92:
a4:2e:70:2d:6e:2d:93:d0:14:fa:13:44:8c:20:c9:
78:52:17:bb:c9:c6:ec:cf:cd:6e:14:a0:89:c5:98:
cc:4b:75:44:33:40:2a:de:90:8d:56:56:00:e3:04:
56:30:44:86:b6:86:02:a3:44:49:78:5a:38:d5:c8:
1f:c3:93:88:7d:6f:67:89:1b:ac:f2:13:8e:d7:7e:
d5:a7:06:97:5f:e4:9d:58:0e:c2:72:95:cd:7a:f5:
d5:71:b1:5f:1d:77:37:a9:d2:87:dd:3f:57:1c:9c:
90:60:eb:40:94:b5:52:03:83:72:ae:d2:2c:cd:a5:
b4:38:8d:72:b6:ec:6e:47:bf:b6:97:f4:48:bb:3d:
f3:8a:b9:06:90:28:61:d9:10:25:72:86:bc:94:83:
93:be:44:24:07:5c:cc:41:fb:00:27:2d:33:57:f3:
ce:6f:5b:48:11:dc:08:e1:ef:e6:fd:d2:a3:dd:ce:
89:f8:d8:1e:80:5b:7d:0d:42:2b:a5:9a:7e:3c:1c:
03:31:c8:8e:e7:77:73:21:a8:02:3f:3d:83:93:17:
ae:80:4c:c1:0b:db:f1:aa:64:c8:77:3a:02:a4:92:
12:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:66:D7:8A:D4:F1:60:38:57:C5:7F:12:9B:B1:90:BD:D7:7A:4B:21
X509v3 Authority Key Identifier:
keyid:94:DE:C6:41:05:1B:02:6B:95:C8:45:91:50:CA:47:DD:AE:C8:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lN7GQQUbAmuVyEWRUMpH3a7Ilmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/351113-ed85-42b2-b64f-9ea64862a9ab/1/jmbXitTxYDhXxX8Sm7GQvdd6SyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/351113-ed85-42b2-b64f-9ea64862a9ab/1/lN7GQQUbAmuVyEWRUMpH3a7Ilmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.39.0/24
IPv6:
2a01:7640:400::/48
Signature Algorithm: sha256WithRSAEncryption
d7:a4:3d:d7:cd:33:77:c3:67:32:d4:6d:1c:30:16:d8:ff:1c:
f8:b3:64:8d:73:a5:50:1a:44:4c:93:1a:f2:90:2c:d6:d8:fb:
ca:cf:b9:ae:4d:16:d1:b8:38:da:76:12:3e:b8:3e:72:1f:77:
97:17:78:70:60:ce:64:a6:0a:63:df:95:e8:f3:d5:30:14:96:
b4:97:6d:75:e5:52:80:f9:5b:93:d5:6a:59:8e:d5:b6:7a:a2:
4d:87:00:70:3b:40:5c:c7:75:db:b5:36:41:f2:b3:48:72:03:
31:47:bf:fe:c0:ce:8e:68:b8:24:9a:39:1b:6f:03:1c:a6:13:
19:da:3e:65:75:bb:80:7f:3b:41:29:c9:88:1f:aa:e0:4b:67:
b4:28:f1:f8:01:13:01:d8:cf:44:1e:5b:b3:bb:28:63:c3:05:
f8:7b:4c:40:55:64:c6:20:37:af:4c:e1:8f:2f:f3:be:ed:89:
8f:2f:a6:92:66:6a:26:6d:de:c5:08:47:1c:ff:38:3f:9f:d2:
91:1b:40:90:a6:eb:28:f8:08:84:7b:63:c5:08:80:0d:5e:31:
60:af:19:4e:86:bc:82:af:d0:2c:ed:90:eb:11:33:3b:d8:a9:
7b:d4:0d:cc:90:2f:98:ae:03:d3:03:27:55:cb:ab:c9:30:f6:
02:bd:9f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net