Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/65e218-d751-4176-81aa-b75b5f37db09/1/zAJ4z_rLfNTVDiMWL6ncN_yYa24.roa
File: zAJ4z_rLfNTVDiMWL6ncN_yYa24.roa (raw, json)
Hash identifier: EtILhqnqDOPzVUQWUC5GlrRe7wnUPr/w8yX9c4PVZr0=
Subject key identifier: CC:02:78:CF:FA:CB:7C:D4:D5:0E:23:16:2F:A9:DC:37:FC:98:6B:6E
Certificate issuer: /CN=54143bee7a7ccf47802f55eae557ba5fcf9f795e
Certificate serial: 019421B258F5DE7A5A57FFAA86CB4B7E5E21
Authority key identifier: 54:14:3B:EE:7A:7C:CF:47:80:2F:55:EA:E5:57:BA:5F:CF:9F:79:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBQ77np8z0eAL1Xq5Ve6X8-feV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/65e218-d751-4176-81aa-b75b5f37db09/1/zAJ4z_rLfNTVDiMWL6ncN_yYa24.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212076
IP address blocks: 185.231.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:58:f5:de:7a:5a:57:ff:aa:86:cb:4b:7e:5e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54143bee7a7ccf47802f55eae557ba5fcf9f795e
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc0278cffacb7cd4d50e23162fa9dc37fc986b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d3:92:bb:c0:f0:9d:68:11:02:64:14:41:9e:
a9:74:5a:45:70:4f:b6:ba:ed:9d:04:15:33:66:92:
08:42:db:7a:4c:4b:ac:7f:ba:3c:a0:6f:83:f2:53:
a8:a5:8d:98:3b:26:4e:c6:db:eb:eb:e6:a3:96:86:
cc:20:e3:1d:03:9e:90:aa:d0:a6:ab:73:01:8a:d7:
59:18:c9:bf:70:b7:e2:d7:78:eb:b9:d0:71:d9:7e:
96:d2:c1:a9:30:00:44:da:65:bb:de:c6:b8:ad:8f:
9f:87:08:13:5b:ce:cf:19:7b:ba:6d:dd:26:b8:77:
44:87:a1:8f:77:1f:51:b9:16:5c:76:ed:72:72:5b:
7a:45:64:ee:d6:1e:7c:ff:5e:45:4a:aa:82:ab:5b:
6c:4c:9b:9f:31:88:01:70:c6:65:1e:70:23:14:3e:
eb:b9:af:f3:ae:40:7f:d8:fc:07:fa:f1:1b:74:09:
3c:fe:42:97:e3:83:48:47:6d:b2:6a:aa:26:11:9b:
24:34:b9:1f:0d:a3:e3:c1:57:95:d0:1f:fe:96:08:
08:ea:d8:ba:92:47:c9:38:4d:1c:1f:9a:28:30:7d:
9d:86:73:0b:28:f2:a2:3d:1a:75:45:89:22:9a:0d:
4e:bd:d7:fd:d4:6f:c4:58:01:f3:05:c5:ac:34:91:
bd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:02:78:CF:FA:CB:7C:D4:D5:0E:23:16:2F:A9:DC:37:FC:98:6B:6E
X509v3 Authority Key Identifier:
keyid:54:14:3B:EE:7A:7C:CF:47:80:2F:55:EA:E5:57:BA:5F:CF:9F:79:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBQ77np8z0eAL1Xq5Ve6X8-feV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/65e218-d751-4176-81aa-b75b5f37db09/1/zAJ4z_rLfNTVDiMWL6ncN_yYa24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/65e218-d751-4176-81aa-b75b5f37db09/1/VBQ77np8z0eAL1Xq5Ve6X8-feV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.65.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a3:33:08:41:e1:56:9d:dd:81:af:28:0b:ff:52:15:bf:e5:
f3:25:c7:bf:78:ef:d4:dc:ab:c1:0d:7a:34:2b:e0:09:10:73:
c3:72:2e:70:fc:ef:99:8b:df:d1:17:f7:db:1c:90:2a:2c:9e:
df:a2:be:d3:dd:e1:28:43:ca:0b:23:21:a2:91:22:77:1f:73:
d5:47:92:e5:73:df:6d:73:60:2d:5f:94:4d:7a:cf:2c:ca:8b:
53:5a:70:ee:cb:48:c1:66:ec:46:ff:63:fa:93:bb:91:0f:68:
84:b5:7d:25:4f:e1:6a:73:41:cf:2b:72:4f:a0:8c:5e:7f:ee:
58:16:e7:89:90:4e:97:f9:38:2f:62:35:56:57:32:7f:a9:df:
3e:fb:11:cf:6f:7a:c7:0f:52:97:0d:ea:84:74:73:b5:3c:7e:
a2:5e:8a:9e:28:60:96:25:cc:ed:eb:92:9d:43:b5:0d:30:12:
83:6f:84:40:4d:0b:ad:5c:23:96:b5:ea:ce:6d:9b:51:bf:f5:
35:df:3e:48:17:69:9d:5b:31:f9:bc:52:e4:49:95:13:35:0c:
58:19:41:80:4f:7e:e7:f4:89:6d:f1:c6:2b:23:d3:8a:03:1f:
b7:00:2c:ac:87:e5:7d:80:11:90:56:e0:c8:b4:0c:c2:27:83:
45:a9:d1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net