Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/300983-4dfd-419c-bc20-202c2689dfa0/1/ZOtgfqLDYdNWH5fYDhWkm9PND4Y.roa
File: ZOtgfqLDYdNWH5fYDhWkm9PND4Y.roa (raw, json)
Hash identifier: JwgLkVzCQiB/ULcLxd8PPGsr5tfW+toDKbyYKCvjGSc=
Subject key identifier: 64:EB:60:7E:A2:C3:61:D3:56:1F:97:D8:0E:15:A4:9B:D3:CD:0F:86
Certificate issuer: /CN=cb324555940ae51af5d1f42bd5ac715864fa1829
Certificate serial: 0194206816699ABDD4EB1E3A9E2010204ABE
Authority key identifier: CB:32:45:55:94:0A:E5:1A:F5:D1:F4:2B:D5:AC:71:58:64:FA:18:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzJFVZQK5Rr10fQr1axxWGT6GCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/300983-4dfd-419c-bc20-202c2689dfa0/1/ZOtgfqLDYdNWH5fYDhWkm9PND4Y.roa
Signing time: Wed 01 Jan 2025 05:47:59 +0000
ROA not before: Wed 01 Jan 2025 05:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60393
IP address blocks: 194.55.232.0/23 maxlen: 24
2001:67c:bfc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:16:69:9a:bd:d4:eb:1e:3a:9e:20:10:20:4a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb324555940ae51af5d1f42bd5ac715864fa1829
Validity
Not Before: Jan 1 05:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64eb607ea2c361d3561f97d80e15a49bd3cd0f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:26:e6:10:7d:09:63:c9:2e:69:f9:46:5f:
49:73:1f:5d:34:39:73:6f:e0:71:30:85:4a:7d:34:
96:04:cd:14:cd:d0:86:b4:c7:15:53:c7:d0:4d:5e:
76:72:23:bb:14:a4:28:e8:aa:42:84:40:df:1a:cb:
84:f6:47:d1:9f:21:ab:5c:5b:82:c8:b2:9d:8b:98:
a8:c0:33:3d:fc:2d:6e:7a:12:e4:83:94:80:ff:4a:
c7:43:32:d8:d4:12:4b:44:37:28:16:bd:67:4b:3e:
3b:0b:e8:25:0f:da:fb:4b:67:64:4c:ad:67:1e:d3:
92:38:95:d9:46:05:70:d0:42:71:0f:52:60:40:8f:
13:d5:cc:6e:cd:ca:c2:ee:be:a1:87:db:53:c9:5b:
10:c2:79:47:df:8d:e3:49:a6:af:a3:35:77:c0:57:
ed:9f:48:f2:44:c2:d7:e7:01:b2:7f:65:77:5a:49:
eb:5e:b2:48:bd:41:c8:96:f6:5e:5c:88:77:7a:e6:
be:4a:cb:d3:fd:b0:53:88:2e:83:b5:82:41:12:da:
a7:5c:6c:9e:5d:1e:1a:54:23:36:db:d3:38:87:eb:
8e:f1:00:1e:18:33:70:e2:b4:ef:88:6c:7a:ef:d0:
0c:17:e6:fb:e2:f7:c5:03:c0:d9:fd:33:7f:89:cb:
bb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:EB:60:7E:A2:C3:61:D3:56:1F:97:D8:0E:15:A4:9B:D3:CD:0F:86
X509v3 Authority Key Identifier:
keyid:CB:32:45:55:94:0A:E5:1A:F5:D1:F4:2B:D5:AC:71:58:64:FA:18:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzJFVZQK5Rr10fQr1axxWGT6GCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/300983-4dfd-419c-bc20-202c2689dfa0/1/ZOtgfqLDYdNWH5fYDhWkm9PND4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/300983-4dfd-419c-bc20-202c2689dfa0/1/yzJFVZQK5Rr10fQr1axxWGT6GCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.232.0/23
IPv6:
2001:67c:bfc::/48
Signature Algorithm: sha256WithRSAEncryption
5e:97:2f:26:a3:b8:72:f2:b5:0b:a1:77:6a:bb:0b:d1:5b:42:
5c:92:bb:b9:5e:9c:0a:04:c1:01:4f:98:14:86:d2:f7:9b:e1:
b1:fd:3f:5f:6a:21:e7:f5:7e:7f:dd:3f:4f:16:6a:77:c6:4f:
50:d0:fa:79:99:26:53:fa:9d:50:d1:b2:cc:f3:db:26:5b:c8:
1f:f1:8a:06:ac:be:a0:77:a1:fd:98:3c:a7:cb:84:76:b3:6e:
48:b8:d8:15:9f:39:5c:cd:63:44:27:84:09:8b:f7:03:09:af:
5c:5e:24:77:11:ad:e5:69:a8:62:10:22:8f:aa:39:6f:ef:a6:
45:da:11:b4:f4:f3:f0:81:9c:f4:b6:80:b0:5a:1d:a8:cd:df:
94:79:b0:15:ae:fc:e5:2f:2a:b4:79:cc:f4:93:b2:1f:bc:a5:
0a:6d:c0:d1:8d:96:57:2b:98:46:7d:b4:a7:36:a7:79:b8:e5:
85:7f:05:29:f7:de:db:8b:f1:4e:9b:84:8c:d3:00:a5:4c:ca:
7e:56:9a:6b:b5:a8:97:ff:1f:8e:dc:7f:47:c1:68:63:97:80:
a8:f5:57:ac:86:67:75:55:be:a4:c3:5a:1b:53:23:f6:8e:a1:
a7:d5:92:ab:8e:3e:7c:c8:c5:8e:e3:5a:8c:4a:2b:ee:8a:8e:
77:f0:eb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net