Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/zTYC0rihbvQfm9oWRaiGAXMBQqs.roa
File: zTYC0rihbvQfm9oWRaiGAXMBQqs.roa (raw, json)
Hash identifier: 6o0tQLujWnAnKLQhjlOk4ynnEvtZuILHNK+l2Zgw0QA=
Subject key identifier: CD:36:02:D2:B8:A1:6E:F4:1F:9B:DA:16:45:A8:86:01:73:01:42:AB
Certificate issuer: /CN=a7c7544e8b482d2311903706eed724049fe385bf
Certificate serial: 01942143CEFE0D0761961F6843967AE68CE2
Authority key identifier: A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/zTYC0rihbvQfm9oWRaiGAXMBQqs.roa
Signing time: Wed 01 Jan 2025 09:47:59 +0000
ROA not before: Wed 01 Jan 2025 09:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33932
IP address blocks: 185.120.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ce:fe:0d:07:61:96:1f:68:43:96:7a:e6:8c:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7c7544e8b482d2311903706eed724049fe385bf
Validity
Not Before: Jan 1 09:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd3602d2b8a16ef41f9bda1645a88601730142ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0b:11:3c:4e:41:29:16:a9:fb:48:13:25:55:
eb:72:16:5c:8b:28:9b:9c:8f:53:ed:08:af:d0:9e:
97:89:b2:a6:4e:00:b4:7a:d6:75:44:9f:e0:85:d2:
06:1b:8c:ed:42:04:50:81:c9:94:4d:61:9c:36:fa:
5f:b3:7d:98:03:d4:25:2c:c1:40:1c:80:b8:a7:3d:
83:0f:1f:eb:34:8e:13:cf:8f:00:b3:64:5a:5b:c4:
c1:f1:45:3f:48:61:27:1b:ac:80:86:cc:3f:5e:d0:
36:29:9d:69:d5:15:13:78:d8:eb:fb:23:5a:75:6f:
27:7b:b3:b9:59:b1:39:a7:0f:01:e6:d5:fd:41:f1:
dc:35:43:74:61:73:69:c3:69:4e:ee:68:a6:79:84:
0b:67:48:eb:27:5b:13:b6:1b:90:0d:25:51:4c:0b:
cf:8c:e2:e7:58:a8:ef:cf:77:7f:92:21:7b:28:08:
d4:7a:20:b5:2c:8c:f5:49:e6:b5:86:09:85:08:92:
cb:6b:08:d0:91:fa:0a:7c:87:c9:43:26:17:42:2a:
67:a5:10:a2:de:8f:83:a3:8a:98:d3:2b:b0:67:f8:
83:39:35:5e:db:e5:d5:15:5b:8a:5a:96:ca:fc:3f:
73:64:1a:6e:92:c1:57:84:46:0c:ce:10:46:96:d6:
c8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:36:02:D2:B8:A1:6E:F4:1F:9B:DA:16:45:A8:86:01:73:01:42:AB
X509v3 Authority Key Identifier:
keyid:A7:C7:54:4E:8B:48:2D:23:11:90:37:06:EE:D7:24:04:9F:E3:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p8dUTotILSMRkDcG7tckBJ_jhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/zTYC0rihbvQfm9oWRaiGAXMBQqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d5960-c66d-42df-95d2-4052450c90a9/1/p8dUTotILSMRkDcG7tckBJ_jhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.182.0/24
Signature Algorithm: sha256WithRSAEncryption
27:07:18:2b:94:b0:61:c7:36:4f:dd:7a:76:74:60:f2:16:92:
76:08:04:cd:4c:d2:51:79:bd:11:00:48:72:4f:84:31:c3:cb:
8e:13:15:fb:f5:e3:44:d4:e9:03:be:73:b9:49:13:d1:ba:bc:
bd:57:d2:b2:6c:b5:2c:56:9c:88:4d:33:79:cd:66:cc:00:0b:
7d:24:cc:6e:e3:66:00:6a:0a:96:c2:8f:4b:2c:6e:b3:d5:86:
a0:cc:28:b1:f0:8f:3c:ab:e0:d8:1a:59:c5:57:41:67:a4:8c:
38:1e:4d:6f:5f:71:06:0e:44:cd:c5:cc:d1:f7:aa:50:f2:0b:
15:7d:48:4a:e4:81:f4:94:c0:f7:91:8e:f8:5c:7a:29:91:c8:
18:68:d1:49:34:47:49:20:48:f9:24:61:ff:dd:16:2b:d9:ff:
dc:dd:f4:cf:76:38:a2:90:dd:ef:a5:fe:04:c7:c7:91:1b:19:
a5:8f:78:30:14:48:d9:7e:5e:d2:d2:8c:03:9a:3f:51:c4:8c:
d3:1b:5b:85:d2:9f:9a:55:d2:61:05:fb:6d:10:d6:7e:8e:17:
db:2a:d0:92:54:7f:0b:d9:ca:b1:68:c5:67:f6:af:f5:4a:1b:
50:16:86:2e:96:89:bd:3c:cb:ba:6b:8d:8f:36:44:d9:ab:43:
33:0d:83:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:31 2025 by rpki-client on console.sobornost.net