Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXx-Jb61BGQ7tjZ7mIqF6uDTqZo.roa
File: jXx-Jb61BGQ7tjZ7mIqF6uDTqZo.roa (raw, json)
Hash identifier: 4ys2/MA8xz9CmSD10zd4Zcy1au1x4jMEW7R2vOy+3+0=
Subject key identifier: 8D:7C:7E:25:BE:B5:04:64:3B:B6:36:7B:98:8A:85:EA:E0:D3:A9:9A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01919DEB355D5E32CC06EF16FB080BD4795E
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXx-Jb61BGQ7tjZ7mIqF6uDTqZo.roa
Signing time: Thu 29 Aug 2024 11:35:23 +0000
ROA not before: Thu 29 Aug 2024 11:35:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25515
IP address blocks: 77.51.0.0/16 maxlen: 16
85.94.0.0/19 maxlen: 19
89.109.192.0/18 maxlen: 18
90.154.120.0/21 maxlen: 21
91.188.223.0/24 maxlen: 24
95.72.0.0/15 maxlen: 15
146.19.98.0/24 maxlen: 24
185.141.236.0/23 maxlen: 23
185.202.109.0/24 maxlen: 24
193.3.188.0/24 maxlen: 24
213.140.224.0/19 maxlen: 19
217.107.96.0/21 maxlen: 21
217.107.104.0/23 maxlen: 23
2a00:56c0:40d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:eb:35:5d:5e:32:cc:06:ef:16:fb:08:0b:d4:79:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 29 11:35:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d7c7e25beb504643bb6367b988a85eae0d3a99a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:98:56:2f:48:80:a7:44:6a:84:a0:cd:f7:
0a:6d:8f:4c:5e:ba:5a:90:1d:d7:64:6a:10:7a:79:
3a:a6:5a:cc:ee:08:c3:c7:54:2b:d2:55:c7:91:c1:
08:20:42:0f:53:1d:a2:89:45:fe:6d:28:8f:5c:ae:
e9:18:d1:11:c7:86:60:eb:0d:c0:9f:d3:0f:4e:ca:
59:5b:66:a2:30:b0:08:0e:01:ae:89:fe:44:b0:12:
46:70:22:66:25:f6:9e:9b:77:0f:5f:04:73:fd:60:
59:81:d5:36:01:e0:be:06:38:d1:56:01:40:fd:d0:
34:62:d8:b1:5a:18:38:73:4a:e8:a1:9a:c0:12:7b:
22:e7:58:36:16:6f:e7:c6:29:f6:02:7c:66:c4:80:
8d:c6:b8:ea:f2:ca:68:6a:05:f7:17:52:95:b4:bd:
79:cf:ba:59:11:d0:e4:a4:01:03:d1:aa:8a:14:40:
58:40:d8:86:63:64:51:57:3d:35:ff:48:25:13:39:
fb:86:cf:c1:de:c3:65:d9:3b:51:22:ed:db:0b:c7:
87:fc:c9:81:a7:13:db:6e:02:eb:be:04:e4:9c:6a:
a4:60:f7:20:55:3e:1e:2a:6c:b0:da:e7:3e:9a:f6:
b3:9d:e2:2d:94:98:4f:ca:f0:05:d3:05:2c:fc:31:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7C:7E:25:BE:B5:04:64:3B:B6:36:7B:98:8A:85:EA:E0:D3:A9:9A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXx-Jb61BGQ7tjZ7mIqF6uDTqZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.51.0.0/16
85.94.0.0/19
89.109.192.0/18
90.154.120.0/21
91.188.223.0/24
95.72.0.0/15
146.19.98.0/24
185.141.236.0/23
185.202.109.0/24
193.3.188.0/24
213.140.224.0/19
217.107.96.0-217.107.105.255
IPv6:
2a00:56c0:40d::/48
Signature Algorithm: sha256WithRSAEncryption
61:4d:4d:aa:c2:bc:43:29:be:e1:fe:fa:be:d9:df:f7:e2:bb:
d4:16:d7:31:85:56:73:91:d5:bc:a0:4d:d1:78:df:23:b5:dd:
9b:c0:9f:81:32:50:c2:84:20:69:e6:cd:ee:2d:d1:41:28:ae:
84:db:01:b7:6a:6e:96:d8:cf:62:cc:1d:bf:e4:1c:68:82:cc:
a6:c7:ed:73:f2:f0:f6:dd:d6:81:8e:a3:e7:2f:12:5b:df:81:
a7:01:80:bd:2b:1f:90:41:06:d1:38:24:76:be:ca:e9:80:ce:
a1:a5:30:53:36:53:7c:4a:da:4e:59:0b:1b:b8:7f:28:8a:75:
ad:16:95:19:5d:0c:3f:a8:78:78:94:f3:dd:f3:16:47:a3:b0:
9b:63:5a:08:c5:75:05:3d:9b:10:de:55:94:8f:83:05:17:5a:
0c:85:fb:21:ba:96:14:f3:2c:9f:6e:f2:37:51:90:c5:f5:7c:
76:b6:da:89:da:6f:aa:83:8d:45:34:fa:c6:37:20:aa:18:ce:
df:3a:33:d4:1b:a7:be:e1:85:27:70:00:45:42:7a:64:85:c4:
08:ce:3c:4a:79:19:24:6b:82:63:f5:82:65:f5:11:83:8a:71:
e7:2d:04:96:aa:91:3e:5c:87:26:4e:55:4d:73:98:86:72:74:
0f:8f:91:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 06:13:23 2024 by rpki-client on console.sobornost.net