Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/ZllkD09XX0UjmpDgviQyHJhN0tQ.roa
File: ZllkD09XX0UjmpDgviQyHJhN0tQ.roa (raw, json)
Hash identifier: cXj6wMyOUxluunshyfWaumFrSwMD+oIYxgPqs4SCj1I=
Subject key identifier: 66:59:64:0F:4F:57:5F:45:23:9A:90:E0:BE:24:32:1C:98:4D:D2:D4
Certificate issuer: /CN=d795a7259f9537186493f482d55cef4b64b1c435
Certificate serial: 019423D728400B0C921A413DC54C01966AF4
Authority key identifier: D7:95:A7:25:9F:95:37:18:64:93:F4:82:D5:5C:EF:4B:64:B1:C4:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15WnJZ-VNxhkk_SC1VzvS2SxxDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/ZllkD09XX0UjmpDgviQyHJhN0tQ.roa
Signing time: Wed 01 Jan 2025 21:48:10 +0000
ROA not before: Wed 01 Jan 2025 21:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34330
IP address blocks: 193.43.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:28:40:0b:0c:92:1a:41:3d:c5:4c:01:96:6a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d795a7259f9537186493f482d55cef4b64b1c435
Validity
Not Before: Jan 1 21:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6659640f4f575f45239a90e0be24321c984dd2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:56:ed:a8:f3:eb:e2:fd:5c:b7:6a:bc:cd:3e:
da:7b:c6:a7:be:66:1e:53:8c:65:2a:a1:ec:c8:ef:
a8:c6:78:f2:95:84:0b:15:a1:89:55:3b:d5:7b:45:
40:f7:a2:97:5c:82:c3:b2:44:6e:ec:3b:b3:89:62:
ea:e3:5e:36:9f:99:03:20:38:a1:3b:f9:4a:05:35:
1b:fe:55:1f:8a:61:44:18:6b:97:8f:79:fa:c4:43:
c9:b2:22:68:57:83:9d:0f:9a:b1:a2:96:f3:73:8c:
1e:66:d1:9a:e0:19:b4:41:19:b6:4f:c4:f0:32:b2:
b6:3a:05:f1:1e:8a:ae:c7:a7:9e:76:22:e2:d1:79:
60:3b:bf:cd:df:c1:38:1d:78:c2:10:23:4f:79:f5:
ab:7e:e6:40:aa:98:0e:ff:aa:36:20:9f:2b:43:23:
fc:86:d5:2c:61:e3:b2:2b:03:32:11:82:3c:de:37:
a1:7d:a3:65:e1:39:34:39:b7:99:9c:6c:b1:d9:ea:
ed:b1:d6:dc:05:eb:37:b6:cb:12:0f:89:dd:b5:f2:
13:c6:c2:50:cd:d6:59:b2:c8:c2:b0:72:7a:0c:0f:
72:d7:95:c0:8a:25:94:9b:22:3d:1d:21:f8:7d:0e:
8f:f6:19:33:ed:a0:bd:80:0b:c2:4d:b4:35:78:3e:
e9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:59:64:0F:4F:57:5F:45:23:9A:90:E0:BE:24:32:1C:98:4D:D2:D4
X509v3 Authority Key Identifier:
keyid:D7:95:A7:25:9F:95:37:18:64:93:F4:82:D5:5C:EF:4B:64:B1:C4:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15WnJZ-VNxhkk_SC1VzvS2SxxDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/ZllkD09XX0UjmpDgviQyHJhN0tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/15WnJZ-VNxhkk_SC1VzvS2SxxDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.77.0/24
Signature Algorithm: sha256WithRSAEncryption
37:46:44:04:76:f9:23:66:c8:8e:ad:bd:04:5c:0b:cf:9a:1c:
12:89:cd:ee:f1:1b:59:5d:c5:e7:68:02:63:95:94:1d:2e:e6:
51:32:a2:64:c9:f6:67:32:43:4c:2e:b4:c3:fe:4c:4a:36:79:
80:f9:24:32:35:f9:db:c2:65:09:ac:45:4a:df:b0:c2:f1:4f:
47:4f:aa:64:21:5a:d5:df:c8:dc:54:4e:c2:1b:6d:91:e0:92:
da:42:d7:9f:b9:d0:0c:fc:bf:01:cd:e8:61:3b:26:a1:f9:76:
44:93:5f:79:1f:b5:15:8a:6e:37:1b:2f:72:82:14:f3:c8:aa:
fe:04:99:65:e2:26:9e:ee:f2:ea:19:61:86:01:21:09:7f:49:
dd:e6:22:57:5d:5f:59:9b:f3:32:55:ce:db:5d:51:1e:5e:f3:
1c:ed:b0:44:99:7f:a4:71:83:ac:6e:2c:95:97:5a:38:9c:08:
e4:2b:ec:43:9f:7b:de:52:fe:09:d4:0d:3f:a3:ce:ad:00:f3:
9d:62:ed:84:87:b7:02:be:ae:cf:c2:a3:bd:44:9e:47:13:05:
85:41:0c:2a:1d:cf:e4:37:ab:a2:d6:3c:eb:00:0e:d4:59:0f:
05:9b:b3:09:31:99:3f:92:d8:52:e1:3b:0b:4c:a3:d3:3e:cd:
72:41:96:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:10 2025 by rpki-client on console.sobornost.net