Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/zFUJjDGEsZJOucFbVCUxDXzsMU8.roa
File: zFUJjDGEsZJOucFbVCUxDXzsMU8.roa (raw, json)
Hash identifier: 2ZiCqHTVImshB2FLBBPRqOl/4XNJLXBYYXR20S0fJAg=
Subject key identifier: CC:55:09:8C:31:84:B1:92:4E:B9:C1:5B:54:25:31:0D:7C:EC:31:4F
Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73
Certificate serial: 019423D7C691ADC11036E97FA55417CF3D54
Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/zFUJjDGEsZJOucFbVCUxDXzsMU8.roa
Signing time: Wed 01 Jan 2025 21:48:51 +0000
ROA not before: Wed 01 Jan 2025 21:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197293
IP address blocks: 45.144.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:c6:91:ad:c1:10:36:e9:7f:a5:54:17:cf:3d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73
Validity
Not Before: Jan 1 21:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc55098c3184b1924eb9c15b5425310d7cec314f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a2:d3:7d:c5:5b:4d:6c:81:4e:ca:86:c7:2c:
3e:55:41:12:3c:30:cd:30:2b:24:57:5a:97:f9:31:
c4:ae:0f:c6:c8:b8:c0:da:a5:82:c2:e7:9f:eb:ba:
ca:4a:89:51:6d:9a:13:29:28:d7:33:3c:aa:22:89:
ad:64:58:c1:27:2d:46:0f:d7:c7:20:f7:cf:97:95:
7f:1d:03:0d:a1:94:f3:f0:6e:c3:fb:c3:25:1c:4c:
d8:5f:83:99:eb:68:38:20:e3:79:eb:35:29:4e:46:
64:37:65:49:6e:81:bf:15:c5:e5:67:4c:c4:5f:39:
88:17:70:7a:37:d8:62:18:a8:80:42:fa:54:a9:14:
ed:4a:77:a0:4d:76:dc:c6:23:a4:4f:a8:f7:9b:bb:
1c:2f:ba:c8:6b:37:b2:8c:ba:19:b7:4b:a9:4b:5d:
53:2c:fe:2b:cf:29:87:eb:51:0e:b5:20:e6:ce:fc:
67:30:ef:22:a3:c2:2b:34:ba:ac:ea:7e:e0:fc:29:
48:aa:c8:ba:b9:98:1c:20:f7:4f:80:ab:cc:1f:bf:
32:40:22:93:8d:57:75:23:4a:31:60:e9:ab:ff:b6:
4d:ab:ac:67:f6:96:d7:dd:fb:b6:64:a9:a4:ba:b9:
73:f7:52:f5:83:80:2b:1d:b8:bf:25:1c:55:e4:64:
0d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:55:09:8C:31:84:B1:92:4E:B9:C1:5B:54:25:31:0D:7C:EC:31:4F
X509v3 Authority Key Identifier:
keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/zFUJjDGEsZJOucFbVCUxDXzsMU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.140.0/22
Signature Algorithm: sha256WithRSAEncryption
18:e3:48:74:a4:18:d8:60:d9:8c:60:27:f1:e7:99:7e:7e:46:
6d:7b:40:17:41:87:f1:fa:32:aa:37:18:6f:29:1b:ba:41:f1:
88:a0:fa:6c:88:3d:91:a2:49:90:cd:fe:f8:36:62:8c:00:b2:
6a:27:4b:20:c2:53:e6:1b:34:9e:d7:9d:0c:94:89:bf:2f:1f:
c3:ce:15:41:e1:0e:4f:a8:81:3f:1e:8c:12:f1:10:b0:98:e5:
35:fc:de:6b:2b:98:e5:74:c2:84:c9:69:ad:a3:5b:3e:11:fb:
32:41:79:ad:b1:9e:bb:9d:d7:8b:4b:cf:fc:41:64:bc:ff:3c:
6c:65:bd:82:f7:b3:0d:eb:03:c4:5d:80:76:8c:d7:a1:a1:f0:
12:bd:09:26:44:d7:ea:78:6a:23:c2:8a:d0:a7:7c:8b:18:e1:
1f:20:a5:a3:c9:c4:79:f2:bb:fc:fa:2e:2d:03:d1:2c:f3:9e:
b1:72:da:01:c5:8d:97:47:cc:dd:37:e3:91:d4:70:0f:7c:13:
78:fc:d4:60:25:e2:3b:4d:22:63:7d:0e:ac:20:d0:ac:93:33:
34:b4:64:ba:a9:da:f0:98:ca:9b:51:ac:d0:bf:1a:6e:41:6e:
97:42:b1:d0:c9:77:5f:27:37:d9:e6:d5:5a:b8:24:a5:66:d6:
9d:c0:c6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:03 2025 by rpki-client on console.sobornost.net