Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ZDrZ1mjoS2voGn-ACVQHaHdTwkM.roa
File: ZDrZ1mjoS2voGn-ACVQHaHdTwkM.roa (raw, json)
Hash identifier: ZGiNQJZYPw7E0PhOtB1tG4vpo/4veSkL6bOJ9GvYWRE=
Subject key identifier: 64:3A:D9:D6:68:E8:4B:6B:E8:1A:7F:80:09:54:07:68:77:53:C2:43
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 01962C74E220504560DE5DEBBA8F6241846D
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ZDrZ1mjoS2voGn-ACVQHaHdTwkM.roa
Signing time: Sun 13 Apr 2025 00:02:59 +0000
ROA not before: Sun 13 Apr 2025 00:02:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 824
IP address blocks: 207.244.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:74:e2:20:50:45:60:de:5d:eb:ba:8f:62:41:84:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Apr 13 00:02:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=643ad9d668e84b6be81a7f80095407687753c243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:07:e7:da:25:87:e7:18:30:0f:a5:bc:d9:1d:
e2:7c:58:b8:fb:a2:36:e7:9a:c7:86:25:a3:df:8c:
0e:b0:2c:0d:2a:b2:d6:33:b0:8e:43:f9:48:4b:bc:
7d:d0:ba:93:11:0c:ed:b7:9f:b8:bd:d8:52:09:ea:
68:a9:89:a1:65:a2:f9:e8:14:d4:e6:72:c6:d0:50:
18:53:79:a7:06:da:54:fa:7e:b8:04:ac:83:9d:db:
0a:c9:9f:2e:14:18:ea:3b:18:9c:51:2a:13:62:3e:
0c:76:0c:4b:02:e1:5a:6c:85:2e:76:ce:3a:99:fd:
4f:43:41:53:50:f0:e6:7c:75:91:d4:54:21:0f:5f:
78:7a:bf:ca:29:da:04:96:0d:43:80:7a:3d:35:e2:
ec:6e:5f:83:76:4e:2b:d9:66:01:02:03:4b:b3:db:
82:98:7f:49:e7:dd:45:11:83:5e:e3:77:5f:5d:2a:
a4:17:9a:a9:73:27:f9:79:be:0c:8b:a0:e8:9a:c0:
9a:1b:10:de:6b:79:20:89:71:fc:01:5e:36:19:83:
a2:5b:b1:e8:38:38:91:1c:0b:df:ed:a7:a0:aa:37:
46:a4:b2:ec:3b:00:8d:7f:64:b2:06:bb:db:79:f5:
15:2d:b0:24:13:4b:44:1d:01:d8:cc:77:a3:3f:59:
6e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3A:D9:D6:68:E8:4B:6B:E8:1A:7F:80:09:54:07:68:77:53:C2:43
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ZDrZ1mjoS2voGn-ACVQHaHdTwkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.244.197.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a9:e0:90:14:b6:cf:12:48:dd:56:ed:c6:8c:72:0c:a6:35:
e8:89:bd:49:68:98:92:43:67:52:80:37:6c:1b:8b:69:91:d3:
40:b3:d9:eb:44:ce:40:67:4a:17:d8:4f:e7:b8:8b:2c:98:66:
b7:e8:92:89:7e:94:8c:0a:cf:17:de:fc:61:28:53:85:32:6a:
05:32:be:fa:55:7d:06:4c:58:b2:df:56:61:c1:88:d3:3b:1b:
6b:40:9d:9b:bf:65:9b:e9:3b:28:b6:9a:7a:e0:19:9e:b9:8b:
1b:d2:e8:0c:63:58:bd:43:a9:1e:d4:77:da:c0:2c:8f:d6:7d:
87:1c:53:20:20:81:59:98:cc:83:8a:55:7d:aa:bc:3b:a5:ed:
16:d2:b3:a6:a0:ee:c4:f0:29:70:86:68:eb:c5:60:56:e9:e0:
7a:3b:3a:fc:11:5b:4b:81:8f:c0:88:37:bd:fc:05:70:5c:12:
17:34:c4:e9:36:dc:bd:84:d7:cc:1a:44:ec:b3:61:9b:1e:6c:
c4:9b:bd:4f:e9:be:29:0b:2b:59:4d:70:95:ba:ff:16:0a:8c:
98:3e:b5:2a:88:a1:f4:1e:46:2c:ec:d0:dd:df:6f:46:df:a7:
5d:32:26:05:3f:0b:fb:f9:88:e2:a6:cd:b6:cc:ef:81:f2:83:
c9:3d:6c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:08 2025 by rpki-client on console.sobornost.net