Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c787a2-d28c-436d-85e9-5ceb34564f09/1/jj4Fs6tF4xq0DkAC9XMLg7s4mmw.roa
File: jj4Fs6tF4xq0DkAC9XMLg7s4mmw.roa (raw, json)
Hash identifier: sivrAn80+5m3Ncmw+RXEZVkYOB9TZa2z37JwsZzW78E=
Subject key identifier: 8E:3E:05:B3:AB:45:E3:1A:B4:0E:40:02:F5:73:0B:83:BB:38:9A:6C
Certificate issuer: /CN=d41b081c0df9940a2b020a4ebe8a9749cbfead55
Certificate serial: 019421441C16AF17253AE70F59C9C6665EA6
Authority key identifier: D4:1B:08:1C:0D:F9:94:0A:2B:02:0A:4E:BE:8A:97:49:CB:FE:AD:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BsIHA35lAorAgpOvoqXScv-rVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c787a2-d28c-436d-85e9-5ceb34564f09/1/jj4Fs6tF4xq0DkAC9XMLg7s4mmw.roa
Signing time: Wed 01 Jan 2025 09:48:19 +0000
ROA not before: Wed 01 Jan 2025 09:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216450
IP address blocks: 85.239.92.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:1c:16:af:17:25:3a:e7:0f:59:c9:c6:66:5e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41b081c0df9940a2b020a4ebe8a9749cbfead55
Validity
Not Before: Jan 1 09:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e3e05b3ab45e31ab40e4002f5730b83bb389a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:95:59:ef:d2:5e:f3:e1:d4:85:34:68:e6:3c:
f6:df:ad:44:54:40:28:ea:82:a8:ea:02:bc:fe:04:
12:f9:65:5d:c5:24:8a:ae:03:69:51:72:27:37:e4:
74:82:4c:ed:e9:5c:f5:6d:76:f0:96:de:3e:01:35:
ac:f6:18:ff:10:08:06:07:9d:fd:be:df:e6:bd:82:
f5:a2:35:f8:d1:9e:41:1a:08:19:cb:e8:cb:6b:da:
1e:a1:b5:ad:f7:44:5e:a7:1c:46:9c:35:3d:17:42:
f1:84:35:f6:6a:43:df:d7:1a:a7:b5:2c:27:e9:bb:
d1:53:d8:1b:8c:dd:21:33:12:67:27:30:95:11:3e:
a3:28:63:57:ca:14:2b:5c:3c:75:8f:4a:dd:d8:03:
77:cf:28:cb:e9:d9:ec:3f:47:f2:ab:bb:b6:87:58:
20:98:a2:ad:31:6a:28:0d:92:82:57:8a:62:7c:63:
66:73:fa:c1:18:33:f5:1d:65:4f:c0:14:3d:23:c6:
b1:bd:ec:da:55:6f:80:aa:c3:f4:d7:e5:ae:aa:17:
0f:27:84:8d:bd:a5:ba:b8:a8:62:c7:f0:a4:00:f5:
d2:0c:4f:29:7c:42:cf:8a:14:18:c6:eb:85:c0:e1:
c0:34:96:3b:d8:c1:57:97:5e:3e:b4:22:e3:33:45:
c0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3E:05:B3:AB:45:E3:1A:B4:0E:40:02:F5:73:0B:83:BB:38:9A:6C
X509v3 Authority Key Identifier:
keyid:D4:1B:08:1C:0D:F9:94:0A:2B:02:0A:4E:BE:8A:97:49:CB:FE:AD:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BsIHA35lAorAgpOvoqXScv-rVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c787a2-d28c-436d-85e9-5ceb34564f09/1/jj4Fs6tF4xq0DkAC9XMLg7s4mmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c787a2-d28c-436d-85e9-5ceb34564f09/1/1BsIHA35lAorAgpOvoqXScv-rVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.92.0/22
Signature Algorithm: sha256WithRSAEncryption
42:24:17:a5:2f:f1:96:70:84:98:97:e6:ae:f1:70:32:9b:65:
7d:24:7b:70:52:e3:21:17:cc:a5:30:40:60:79:fe:18:94:5c:
fc:bd:04:f0:e4:d8:e7:93:22:2d:fb:08:63:5a:7a:8b:e3:b3:
37:fa:c7:de:48:d0:02:b8:0b:e2:bf:ef:af:c3:2a:8b:a4:3a:
15:ec:c7:b8:bc:14:8d:61:03:a7:c1:c9:38:46:ab:c2:10:12:
5d:1c:4c:72:cf:95:99:a6:4a:89:ec:5f:73:b6:f0:1b:12:6e:
3c:d5:37:7e:9d:7f:8b:11:03:41:d7:39:fe:0a:e9:6e:d7:eb:
f3:37:d5:d7:8f:63:89:a2:89:00:39:21:12:de:53:1f:04:2a:
6d:f9:56:67:f9:d2:20:73:e4:fe:70:50:98:02:ee:3b:56:80:
ed:c5:41:36:41:75:80:31:0a:97:1c:3f:32:3b:b1:db:00:f1:
30:9c:09:0f:5a:19:d7:23:1d:90:43:fc:cc:8c:b5:d5:bf:f8:
f0:48:ef:14:34:82:06:d9:a6:54:c9:78:f6:0c:93:16:8b:4b:
06:39:02:c2:d6:fa:f1:93:5b:be:95:e7:32:3c:de:3f:98:8d:
84:2b:14:62:e3:93:d3:89:7d:ce:38:bc:d0:4d:2c:17:ec:1e:
77:f6:6f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net