Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/Z_2-Zbi4vsdnVpg2d_lnWwbhvN4.roa
File: Z_2-Zbi4vsdnVpg2d_lnWwbhvN4.roa (raw, json)
Hash identifier: 8GDUJ7ZhRwTXBlYLdtF6LAMc571ge2c8D8UbSUf3lg0=
Subject key identifier: 67:FD:BE:65:B8:B8:BE:C7:67:56:98:36:77:F9:67:5B:06:E1:BC:DE
Certificate issuer: /CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Certificate serial: 019422FBCDFFE323B7321583F1240251D820
Authority key identifier: 21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/Z_2-Zbi4vsdnVpg2d_lnWwbhvN4.roa
Signing time: Wed 01 Jan 2025 17:48:35 +0000
ROA not before: Wed 01 Jan 2025 17:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34950
IP address blocks: 193.164.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:cd:ff:e3:23:b7:32:15:83:f1:24:02:51:d8:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Validity
Not Before: Jan 1 17:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67fdbe65b8b8bec76756983677f9675b06e1bcde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f2:bf:cc:c3:77:7e:0a:b3:52:7b:14:bc:52:
c9:9f:6d:a8:44:c9:99:3b:f0:90:13:1b:cc:10:b5:
91:0f:7d:92:50:e7:b5:5e:d0:70:92:ea:f1:44:db:
0c:d4:04:98:4d:0e:3c:0e:aa:70:1d:e6:e4:85:2f:
52:dc:dd:cc:28:e3:54:2b:2b:8f:76:5e:82:c8:6f:
df:91:67:e6:37:c1:9b:67:94:6f:e8:61:be:97:6b:
a8:70:bc:ca:0e:fb:09:27:7a:fb:01:1a:93:bc:9e:
05:57:fd:9c:5c:a0:b0:fa:19:79:bf:96:28:ec:7c:
ba:c2:d1:56:55:67:d0:bc:bf:9c:91:91:e5:12:26:
60:72:3b:00:c1:12:a6:5a:e4:6c:8c:3a:82:01:9f:
6c:d1:02:85:1e:d2:e2:5e:70:08:0a:9e:60:f3:02:
10:1c:43:0c:6b:26:73:2d:ce:ff:53:1e:9c:e5:92:
11:d6:cb:1f:1f:f8:08:8f:0c:bd:02:8a:68:95:ac:
26:8a:20:c7:84:52:2d:37:a8:f9:f7:d6:68:45:5a:
16:0f:e8:76:d5:65:8e:65:79:de:af:72:b9:0e:e0:
c7:6b:57:51:a8:dc:fc:e4:3f:e0:0a:a6:a6:69:d1:
7f:96:e9:16:6c:d6:e0:48:23:95:41:7d:a7:df:0f:
34:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:FD:BE:65:B8:B8:BE:C7:67:56:98:36:77:F9:67:5B:06:E1:BC:DE
X509v3 Authority Key Identifier:
keyid:21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/Z_2-Zbi4vsdnVpg2d_lnWwbhvN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/IWmMHNxm3ChdD4B2KcRiYaiLLec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.88.0/24
Signature Algorithm: sha256WithRSAEncryption
67:50:a1:4d:65:f9:fb:7b:40:e0:4c:57:2a:1c:d9:dd:09:3a:
dc:0d:d7:f6:dd:b6:f3:20:62:27:fd:e2:34:47:67:53:bb:a9:
b3:33:1a:eb:bd:8c:26:34:5f:c6:91:77:41:97:1f:e3:8c:e9:
23:f0:b4:c2:27:b8:de:ca:9d:8b:8a:6b:70:2a:55:30:c5:76:
d1:b3:fe:94:29:da:cd:62:45:b0:2d:65:2e:05:c3:17:33:b9:
83:4d:13:8d:de:b0:93:08:6f:17:72:e4:16:89:db:e8:89:f6:
00:77:4f:f1:d5:22:b3:5e:ea:2e:c9:10:22:e8:d7:bd:36:d4:
d7:fb:c4:6b:27:af:c8:d8:64:a9:c7:4b:5e:9d:3a:04:08:e0:
a9:0c:48:b3:c4:9f:ba:de:41:fa:22:ba:5a:ff:be:b9:8e:c6:
44:04:af:b0:29:70:b7:57:5c:c4:a1:1a:fb:f8:b1:f7:25:c0:
cb:47:53:36:09:49:7e:16:4b:0e:ec:59:0d:14:67:41:a6:be:
5e:8e:23:e1:98:48:fd:8d:a7:2a:81:91:49:c8:53:b8:0d:cf:
af:65:c2:75:43:a4:b8:51:cf:04:72:7e:92:3e:b0:47:30:56:
0d:74:ee:9b:32:e5:d2:73:e7:bf:ae:85:b8:71:7c:65:4a:2e:
11:89:38:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:57 2025 by rpki-client on console.sobornost.net