Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/JUMv7Yi2cpE5n4jH_daU8-Wkj_s.roa
File: JUMv7Yi2cpE5n4jH_daU8-Wkj_s.roa (raw, json)
Hash identifier: 8Ur2YBrwEIHwiqas+AFAXGNfkZXPANsLJAnLoARlVGk=
Subject key identifier: 25:43:2F:ED:88:B6:72:91:39:9F:88:C7:FD:D6:94:F3:E5:A4:8F:FB
Certificate issuer: /CN=485375191d1c2e50982108fdd407bbcf73e9795c
Certificate serial: 01941FFA40F970B9DBE2F1BE29D7A96D1932
Authority key identifier: 48:53:75:19:1D:1C:2E:50:98:21:08:FD:D4:07:BB:CF:73:E9:79:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFN1GR0cLlCYIQj91Ae7z3PpeVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/JUMv7Yi2cpE5n4jH_daU8-Wkj_s.roa
Signing time: Wed 01 Jan 2025 03:48:01 +0000
ROA not before: Wed 01 Jan 2025 03:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17350
IP address blocks: 204.13.56.0/22 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:40:f9:70:b9:db:e2:f1:be:29:d7:a9:6d:19:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=485375191d1c2e50982108fdd407bbcf73e9795c
Validity
Not Before: Jan 1 03:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25432fed88b67291399f88c7fdd694f3e5a48ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:33:b8:ea:fc:4d:5c:63:6c:9e:67:9e:90:06:
f7:82:ad:d4:cb:bb:e2:be:8a:db:7f:66:81:bb:93:
86:c5:0c:89:12:db:ca:67:21:86:8f:26:c7:91:e5:
76:fe:61:a8:4e:7d:67:25:73:3b:ee:7a:2c:01:45:
24:26:7f:5a:8a:46:67:1e:fc:ef:0a:2e:45:29:72:
be:f1:aa:e5:cf:ad:ee:3c:28:97:c8:ad:41:04:96:
14:cd:1f:82:60:c7:25:1a:6f:34:68:13:ed:4d:d8:
58:9d:87:95:72:1b:50:9b:d6:e8:25:ce:91:e9:8e:
1f:b4:4d:fe:96:10:4c:28:36:e2:7c:5e:d4:7a:8b:
69:0c:84:72:c6:05:13:6a:e7:a0:5a:e2:53:ca:59:
9b:08:67:7a:9f:9c:4a:83:86:c6:fa:96:2b:f3:c7:
1d:01:27:57:a3:fb:06:aa:8f:b2:4e:75:61:dd:01:
ab:ff:4e:4c:7a:fe:19:84:ba:7b:8b:2a:d6:6e:20:
c8:19:ef:1b:70:39:60:7a:e0:9d:18:df:75:63:34:
24:39:50:c9:4a:e6:95:a2:59:8c:e7:6e:50:11:15:
f2:b4:ac:67:48:2c:a5:73:c2:ba:28:aa:08:d2:0a:
a2:45:8c:2f:4e:3b:b8:48:7f:5e:8a:c1:cf:cc:5e:
23:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:43:2F:ED:88:B6:72:91:39:9F:88:C7:FD:D6:94:F3:E5:A4:8F:FB
X509v3 Authority Key Identifier:
keyid:48:53:75:19:1D:1C:2E:50:98:21:08:FD:D4:07:BB:CF:73:E9:79:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFN1GR0cLlCYIQj91Ae7z3PpeVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/JUMv7Yi2cpE5n4jH_daU8-Wkj_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b2609b-ae39-429f-a505-6ebff64bca1c/1/SFN1GR0cLlCYIQj91Ae7z3PpeVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.13.56.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:24:f9:00:92:46:27:2b:c3:91:94:d8:13:3c:a7:fb:e2:e4:
91:26:6a:33:b7:ed:04:b6:64:38:fa:b9:0f:e3:66:db:f9:b4:
09:ea:e4:5d:24:89:9f:eb:08:ff:ab:89:5b:64:19:a7:dc:3a:
d2:58:b0:55:22:35:15:be:48:19:45:1e:51:aa:da:d0:c0:35:
d0:96:a0:e6:3a:ce:74:96:a9:7b:c7:ee:55:8b:37:64:76:0f:
4a:b6:91:ba:db:a2:c8:c9:f5:07:84:d6:11:46:df:e9:67:25:
65:29:31:5a:ae:c9:f3:a8:fb:c0:3c:e5:7a:0b:3b:34:b5:70:
f7:f9:05:98:76:04:3a:a8:6c:06:32:cf:b2:6c:87:b8:65:f7:
b6:5e:37:b9:9d:4f:99:63:1e:dd:d1:8f:2e:d1:bf:55:15:24:
5f:64:ea:5e:16:85:ae:83:6c:8f:a1:3c:76:db:f9:ff:82:5b:
14:56:4f:f4:59:7e:cd:af:47:58:16:79:6a:5b:0e:47:32:f1:
17:72:e2:05:0f:1f:b4:5d:ca:1d:1c:57:f6:92:8a:92:29:1c:
69:c1:6c:80:db:a0:2e:f1:43:28:41:c5:2e:69:0e:e7:c6:05:
96:8f:7a:70:7e:85:be:6b:71:9f:49:2b:fb:61:24:de:b4:f7:
c1:22:f9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:28 2025 by rpki-client on console.sobornost.net