Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zBvzZbIi5Q4lYlNaNGR8c5ARpJI.roa
File: zBvzZbIi5Q4lYlNaNGR8c5ARpJI.roa (raw, json)
Hash identifier: PA1X/i46dQe17jF4sRFn8DBg1Qr7BGGDuP4mwZEbjoM=
Subject key identifier: CC:1B:F3:65:B2:22:E5:0E:25:62:53:5A:34:64:7C:73:90:11:A4:92
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01941F8CAF4A100A9BB0D1C43291E613D8C6
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zBvzZbIi5Q4lYlNaNGR8c5ARpJI.roa
Signing time: Wed 01 Jan 2025 01:48:21 +0000
ROA not before: Wed 01 Jan 2025 01:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51662
IP address blocks: 185.195.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:af:4a:10:0a:9b:b0:d1:c4:32:91:e6:13:d8:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 01:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc1bf365b222e50e2562535a34647c739011a492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dd:bd:06:47:17:f4:a0:30:4c:7c:cf:66:b4:
a4:31:00:d1:32:80:08:cd:34:76:ed:d0:4f:78:e9:
a2:15:7c:2a:53:c9:cd:d3:ad:a1:61:e4:47:34:bc:
b3:f2:16:22:d2:34:99:4c:3f:24:1a:bf:b7:c2:17:
5d:d4:d9:94:0f:17:82:33:75:df:a8:36:9f:1f:a2:
11:6b:a6:9a:37:d0:e8:57:55:0b:a3:6d:62:7d:77:
47:85:98:4c:56:4a:d3:27:87:5c:84:e6:57:8f:39:
90:b4:5f:2c:65:a0:3a:da:3e:82:0d:2f:ee:b1:37:
93:ef:a9:9a:16:f7:10:1f:65:d2:38:db:dd:17:73:
db:b9:85:e0:1e:8e:dd:56:48:63:cf:26:25:d1:b6:
1a:f7:0b:92:b0:c5:89:07:3b:0a:28:4d:cd:84:c4:
4e:c7:7f:cc:e9:9b:03:b9:ab:65:13:51:40:93:c4:
8a:37:f1:01:ef:4f:38:b4:2e:31:e1:0e:8f:6d:66:
3a:ac:90:22:57:4d:b0:77:7f:bf:5c:a4:11:be:ac:
33:d2:3a:e2:f0:e2:21:84:83:f9:41:5a:2c:f0:b9:
68:e1:4e:d4:66:e3:16:0f:14:0a:68:a7:66:15:f9:
ff:a0:a7:7b:77:2d:14:4a:c4:d4:98:6f:29:6d:b9:
fb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1B:F3:65:B2:22:E5:0E:25:62:53:5A:34:64:7C:73:90:11:A4:92
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/zBvzZbIi5Q4lYlNaNGR8c5ARpJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.44.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:03:63:eb:72:a7:f8:20:a5:fe:9f:2d:0d:e7:6d:fc:39:1e:
48:e7:b6:0e:88:a2:cc:06:a2:88:ce:e1:57:45:09:f5:de:39:
6b:48:72:6c:94:33:6b:e9:45:c8:45:2e:7f:c1:a7:a0:98:63:
72:6d:50:5f:88:73:19:86:d9:fc:d8:fd:83:bb:51:2f:ac:69:
c8:7c:b6:5c:84:f7:57:ec:90:07:0c:1b:e8:27:a1:88:66:e3:
b9:9b:85:c2:c9:3e:8c:43:39:85:5c:ce:6b:dc:a8:95:7b:d3:
e4:0f:45:9a:75:42:8f:65:a6:fc:30:4a:32:e7:37:cf:49:13:
71:14:4f:00:50:4c:6a:11:25:29:b1:cc:92:68:4f:d7:72:d3:
15:43:66:76:88:45:46:8b:0c:bb:ed:07:a2:bf:53:18:ac:d8:
53:09:f2:62:02:12:7e:20:93:d4:fb:b8:94:8b:91:89:e0:81:
2b:4d:cf:b4:7d:bb:68:69:0c:08:16:57:ff:7f:9b:78:31:f1:
07:b2:56:4f:ef:41:a9:b1:f7:10:88:c8:84:a9:06:ea:fc:d5:
d4:f3:b7:e4:9a:c3:5d:6b:b9:ef:46:c2:76:78:13:25:e8:b9:
1f:65:71:54:4b:4f:7e:5c:9b:32:5a:ff:06:cd:65:a8:11:79:
be:36:15:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net