Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Zv52q8YC-KQ-sGiZcw3JFza6ZsY.roa
File: Zv52q8YC-KQ-sGiZcw3JFza6ZsY.roa (raw, json)
Hash identifier: sA7PorzlR6Th+R32WSA3cTXcStIO06ENp0TMgGQFx5Q=
Subject key identifier: 66:FE:76:AB:C6:02:F8:A4:3E:B0:68:99:73:0D:C9:17:36:BA:66:C6
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C163724
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Zv52q8YC-KQ-sGiZcw3JFza6ZsY.roa
Signing time: Fri 04 Feb 2022 15:21:56 +0000
ROA not before: Fri 04 Feb 2022 15:21:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42962
IP address blocks: 195.180.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202782500 (0xc163724)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Feb 4 15:21:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66fe76abc602f8a43eb06899730dc91736ba66c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c0:47:60:f2:a4:21:ba:52:c6:00:05:50:4b:
9b:77:46:af:46:f8:aa:84:24:71:5e:5a:56:e3:1c:
6b:99:27:97:80:f6:c6:22:a6:ba:8c:4b:0d:b2:42:
b9:53:d0:ca:cd:f8:e5:14:95:b2:ee:2f:eb:5b:30:
e1:0f:90:a3:b5:65:a7:ae:b1:be:e8:ca:c1:d9:82:
7f:fc:be:7c:8b:cc:93:23:bf:c9:55:77:d5:d4:84:
ec:06:e0:95:83:9b:dd:03:dc:4b:8f:06:93:13:97:
14:c7:46:e2:56:3d:23:99:fa:98:71:69:29:bd:da:
0a:a2:d8:b2:ef:5c:00:8d:9d:74:89:a6:e5:8b:6d:
26:58:fa:ad:86:11:c8:c6:0b:dd:b4:66:9e:52:30:
ac:c9:50:8d:f9:62:68:54:f0:2d:ee:19:97:9c:45:
73:0b:7d:10:46:f8:e6:8c:be:d9:05:7c:13:32:14:
83:68:ca:3d:a6:71:d7:e1:48:22:c0:de:02:b5:ff:
82:86:62:07:5d:6f:5c:4a:4c:67:ca:27:da:8a:c8:
b2:90:a5:0b:98:44:f6:c1:59:3c:f6:dd:74:b4:d1:
45:2e:f6:65:70:6c:c9:e9:e9:00:4a:78:ff:74:0f:
ba:aa:c9:bd:57:4d:e0:bb:7d:ff:f7:eb:73:51:ac:
e9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FE:76:AB:C6:02:F8:A4:3E:B0:68:99:73:0D:C9:17:36:BA:66:C6
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Zv52q8YC-KQ-sGiZcw3JFza6ZsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f1:eb:42:21:09:16:36:56:a0:17:70:b3:c2:e0:56:a6:ee:
fa:02:61:5d:3b:a7:ba:42:d4:0d:16:f7:20:12:d3:fc:3a:e8:
ed:6e:41:7b:eb:a8:9c:32:55:f7:34:b8:9a:91:a5:9b:df:dc:
03:46:ef:6a:84:d4:f2:08:09:b4:1f:a6:a9:c9:1f:d0:de:57:
bb:a6:2c:82:a8:73:c5:cc:12:0b:ed:68:7b:3c:d4:4e:db:45:
eb:a0:9a:ac:18:29:dc:14:70:3e:46:1e:79:f0:f9:4f:fa:bc:
bb:de:b5:eb:18:e0:16:0a:cc:95:c2:bb:7d:1f:1e:85:ee:bd:
2f:c9:2e:85:ea:22:cc:0d:87:29:86:4d:9f:8c:10:a4:c3:fb:
b8:40:4e:b0:23:75:9a:42:d3:cb:1c:4e:df:cf:9e:13:c3:c7:
3d:88:31:05:30:ab:c0:f5:1e:e2:72:9d:b9:f7:11:ab:1c:09:
30:80:4f:78:0b:39:f6:ad:29:0e:87:6f:ab:7e:5d:7a:73:13:
38:a4:d6:53:a3:23:18:23:7e:29:5c:68:47:b1:42:f2:b3:ea:
49:38:f5:cd:ba:d8:76:c2:9c:5b:0c:53:b0:f1:35:42:57:db:
b1:b2:41:26:73:3a:b0:06:09:36:2a:51:20:a9:8f:8c:98:71:
a9:97:37:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:25 2025 by rpki-client