Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e36eb1-8af5-4910-8df4-ed2e136dc026/1/zpicEsTdAQH31s_U5VTklFFkx3A.roa
File: zpicEsTdAQH31s_U5VTklFFkx3A.roa (raw, json)
Hash identifier: F4NgHOhmdVZSO+9LtvSeSBchmLUaANtpy3YFPClVpoI=
Subject key identifier: CE:98:9C:12:C4:DD:01:01:F7:D6:CF:D4:E5:54:E4:94:51:64:C7:70
Certificate issuer: /CN=c04a3d80f6786f1791098d45ecd554f0660cce4f
Certificate serial: 019427B5C11460BE2045040222E3F25B3496
Authority key identifier: C0:4A:3D:80:F6:78:6F:17:91:09:8D:45:EC:D5:54:F0:66:0C:CE:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wEo9gPZ4bxeRCY1F7NVU8GYMzk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e36eb1-8af5-4910-8df4-ed2e136dc026/1/zpicEsTdAQH31s_U5VTklFFkx3A.roa
Signing time: Thu 02 Jan 2025 15:50:10 +0000
ROA not before: Thu 02 Jan 2025 15:50:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206805
IP address blocks: 195.2.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:c1:14:60:be:20:45:04:02:22:e3:f2:5b:34:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04a3d80f6786f1791098d45ecd554f0660cce4f
Validity
Not Before: Jan 2 15:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce989c12c4dd0101f7d6cfd4e554e4945164c770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:bd:60:4c:cf:8d:6f:36:01:e6:0f:2d:a9:64:
6b:c7:e7:92:aa:1e:98:f9:86:9c:e1:e8:8f:74:b4:
4e:a1:5f:e6:4a:56:76:f6:0f:ce:5c:e6:7f:e3:06:
ed:69:09:de:e2:fd:9a:b2:ee:b6:b7:a7:d4:f0:9b:
94:b3:1c:81:b1:f6:cb:c4:2a:97:55:29:75:5f:28:
94:ef:08:3c:15:4f:61:3c:4e:04:5c:c9:a3:78:e0:
1c:0b:6b:bb:ef:90:6f:c0:a4:9a:e8:05:76:e2:c2:
d4:29:f8:38:b0:34:ad:4a:4c:0d:5f:b0:89:6b:93:
4b:2b:8f:22:8a:6b:b6:36:03:1b:e9:80:56:05:35:
9b:b3:b0:d1:91:96:ff:e2:8c:86:85:e5:81:17:15:
bf:21:1e:17:4b:57:67:c2:37:fb:34:a8:10:1d:f3:
e8:88:06:8c:23:5f:b1:37:46:bc:fa:58:e0:f3:0e:
07:0a:bd:10:71:38:fa:53:d9:c1:af:15:04:09:a5:
a3:17:ce:11:8e:bf:a3:5f:08:e1:64:85:8c:ee:db:
94:d4:6b:ab:0c:d1:ce:b2:21:1c:f7:f4:aa:61:21:
c8:17:cc:e9:11:f5:c1:4d:62:87:11:d4:13:f8:73:
ec:ec:40:bd:12:3f:df:b4:43:f4:94:07:39:71:b8:
5d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:98:9C:12:C4:DD:01:01:F7:D6:CF:D4:E5:54:E4:94:51:64:C7:70
X509v3 Authority Key Identifier:
keyid:C0:4A:3D:80:F6:78:6F:17:91:09:8D:45:EC:D5:54:F0:66:0C:CE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wEo9gPZ4bxeRCY1F7NVU8GYMzk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e36eb1-8af5-4910-8df4-ed2e136dc026/1/zpicEsTdAQH31s_U5VTklFFkx3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e36eb1-8af5-4910-8df4-ed2e136dc026/1/wEo9gPZ4bxeRCY1F7NVU8GYMzk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.227.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e2:94:57:a1:ae:70:66:7d:4f:67:e7:83:94:4d:a3:7e:75:
b4:03:7d:3f:af:9e:5e:27:3b:be:0c:4d:e9:30:0c:e0:a3:fe:
09:24:f3:69:d1:ac:ab:85:9a:5c:b3:a1:68:7c:e2:1c:2e:82:
b8:54:a2:4a:f9:65:b3:6f:df:9a:44:a5:8d:6d:87:63:4f:e8:
cf:cb:3a:ca:ac:f3:ec:81:cb:fd:81:6a:63:5c:7a:ac:4f:87:
ea:0a:86:97:ae:ec:74:9b:85:ee:20:38:18:73:4b:68:b7:cf:
eb:e8:35:8b:55:db:77:3c:67:24:1b:4d:82:ac:8e:d8:22:6f:
bf:70:0a:1c:08:da:ae:59:d8:4a:59:95:88:f7:6d:16:58:d3:
10:c9:f7:e4:a5:79:72:c6:13:17:67:d4:a0:b5:b2:10:f2:3a:
f5:5f:26:2f:1e:59:22:78:14:57:8f:2c:b1:77:a0:f6:e2:03:
f1:35:06:9d:ff:31:90:81:a5:9a:8a:48:a4:2d:de:d5:9c:11:
98:51:8f:e4:ef:f4:b2:55:64:aa:25:78:34:f6:1b:c1:af:ea:
ac:27:4a:73:f3:2d:9b:5e:e7:16:70:f2:ec:6e:69:14:cf:3d:
58:3d:69:97:06:33:d9:06:96:fe:cc:21:ee:e0:4a:d3:6c:e2:
0b:da:9d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net