Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa
File: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (raw, json)
Hash identifier: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=
Subject key identifier: CD:DB:C8:07:E3:17:EE:60:57:C4:F5:D8:F4:6B:E4:CA:0E:03:68:80
Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial: 01952D256E9A50D0B2E341FA41E35EC799F2
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa
Signing time: Sat 22 Feb 2025 10:13:02 +0000
ROA not before: Sat 22 Feb 2025 10:13:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214095
IP address blocks: 46.36.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:2d:25:6e:9a:50:d0:b2:e3:41:fa:41:e3:5e:c7:99:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Validity
Not Before: Feb 22 10:13:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cddbc807e317ee6057c4f5d8f46be4ca0e036880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:5d:f9:66:9a:a1:f7:00:ce:48:8e:4a:3a:
a2:d2:69:e3:fb:f3:ae:6f:14:ca:94:45:2b:31:7d:
91:94:91:a2:ac:6c:d8:88:80:2f:00:45:13:b4:b4:
11:67:bf:cc:8c:34:73:9c:e8:56:57:cc:95:05:58:
10:84:c4:04:35:dd:0e:76:56:3e:ba:8c:88:51:68:
ca:20:3b:7a:fd:7e:76:93:d6:62:01:77:04:53:a1:
20:98:98:ad:68:f1:56:35:db:d5:20:d3:5d:44:c8:
83:7e:3d:6c:28:58:98:05:22:3d:47:8b:83:8f:cc:
b1:e2:f6:c7:57:81:00:2a:9b:55:e7:7d:62:45:f3:
6c:f6:7c:2c:1e:31:93:8a:9c:af:a7:e3:47:da:d1:
4e:2d:c6:83:82:50:a2:1e:76:ac:d9:4b:ab:f3:1c:
09:07:3c:79:c9:27:96:66:a8:ee:3f:24:21:f1:e4:
cd:dc:df:f2:32:b4:16:c8:dd:76:83:20:dc:06:a1:
ee:95:5c:6a:c4:6d:6f:a9:b0:54:68:f5:f7:2e:09:
3a:dd:f0:82:09:36:ee:a7:fd:68:39:b4:e2:b0:57:
b8:60:eb:1d:c6:b5:a7:3a:f2:80:af:a9:23:37:62:
ac:46:71:dc:37:c0:85:52:80:88:25:5e:93:92:74:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DB:C8:07:E3:17:EE:60:57:C4:F5:D8:F4:6B:E4:CA:0E:03:68:80
X509v3 Authority Key Identifier:
keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.200.0/24
Signature Algorithm: sha256WithRSAEncryption
30:bb:5f:74:10:75:3f:b3:c0:e5:cc:86:4a:1c:28:10:78:06:
29:5a:5d:2a:ff:8d:e6:2d:7d:db:a7:45:e1:91:ed:8d:79:87:
ec:05:56:d0:c6:05:20:f6:8a:7c:57:ae:59:6a:ce:9a:9d:8c:
9a:d6:14:a8:6c:e4:83:72:cd:37:53:46:65:a5:0c:08:6a:38:
0f:fd:3c:4a:f9:72:d3:1a:fe:1e:92:1e:e3:ab:6b:0b:ed:44:
09:af:21:5f:72:ed:d6:24:3b:70:b0:49:92:cc:6d:e9:2f:43:
f0:0a:9e:f5:db:94:27:ba:d4:1d:e8:ef:0b:e4:a2:e7:d1:4b:
0e:57:36:4a:68:5f:c7:ec:d1:6b:34:c1:1f:7a:0a:0d:f4:a5:
0d:d9:1a:b1:17:85:fe:69:62:fb:f5:5d:1d:6c:be:99:37:62:
a6:84:72:d4:fd:5b:2e:b7:2b:ff:46:65:c5:3c:11:dd:b8:47:
bd:80:6a:89:ae:e0:4d:45:53:02:9c:16:ba:de:fb:9c:96:2a:
62:4c:e5:78:70:42:4f:9a:84:a4:20:c7:6a:ec:81:29:da:e1:
5e:d7:a4:6e:cd:1d:c2:64:05:7d:0f:a3:81:4a:78:1e:72:df:
ad:2f:15:45:e1:a7:ea:99:f3:ab:6e:4a:b4:d9:04:41:fe:1b:
54:bb:51:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net