Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/zj66QRziWB65zA3Aruq9v5j4J8E.roa
File: zj66QRziWB65zA3Aruq9v5j4J8E.roa (raw, json)
Hash identifier: oXg/sLR2gmfjVxaEpO1hvuxOV1wLp9OjgJCidSEec/Q=
Subject key identifier: CE:3E:BA:41:1C:E2:58:1E:B9:CC:0D:C0:AE:EA:BD:BF:98:F8:27:C1
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 018730F7F5D9048BCB55FFF4E6CF4DE5C0EB
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/zj66QRziWB65zA3Aruq9v5j4J8E.roa
Signing time: Thu 30 Mar 2023 05:22:49 +0000
ROA not before: Thu 30 Mar 2023 05:22:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135158
IP address blocks: 194.49.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:30:f7:f5:d9:04:8b:cb:55:ff:f4:e6:cf:4d:e5:c0:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Mar 30 05:22:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce3eba411ce2581eb9cc0dc0aeeabdbf98f827c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:21:d7:c7:07:8d:3b:62:45:2c:5c:b7:69:7b:
77:f6:4d:59:4f:14:6d:ff:18:ad:40:17:eb:89:70:
76:58:ac:5c:6e:3f:ac:de:53:7f:5a:4f:e4:46:1b:
a2:d5:9f:63:9f:75:fc:f9:6e:57:e2:71:f7:f7:14:
f9:db:98:44:ce:31:ec:51:0f:97:f7:ab:01:81:d6:
5f:e4:87:b0:91:b9:75:c9:d3:c5:59:40:be:d0:a2:
e0:ff:f9:9c:54:8e:c4:41:66:5d:25:37:9d:80:be:
fe:33:1f:2a:94:ff:06:66:98:8c:87:11:41:0b:17:
02:0e:cc:b3:e5:d1:f7:61:79:54:d9:a8:29:3a:f0:
b6:30:a8:3e:67:5f:98:8d:85:a3:bb:8a:3d:3c:0e:
2f:72:c9:bb:3d:ec:7e:6d:a2:9a:91:e5:86:7b:fa:
7c:02:70:59:98:a5:2b:5b:1f:78:d5:4b:e8:ed:4e:
1e:26:50:f4:6d:6a:82:b4:f1:bd:f0:57:5c:3f:df:
fc:16:92:94:13:61:ae:d2:98:c0:b2:75:6d:17:1f:
8d:a6:53:cb:2d:48:c4:0d:cf:99:0a:ab:d6:21:af:
9f:96:17:65:a7:c5:54:18:56:ae:b7:cc:78:bd:a5:
1e:3c:8b:5f:94:1f:2a:27:11:5b:83:ca:47:72:00:
b4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3E:BA:41:1C:E2:58:1E:B9:CC:0D:C0:AE:EA:BD:BF:98:F8:27:C1
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/zj66QRziWB65zA3Aruq9v5j4J8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.55.0/24
Signature Algorithm: sha256WithRSAEncryption
63:57:ff:bf:19:fa:bd:a6:15:c7:8d:79:23:c0:5d:60:58:32:
25:33:e7:42:06:78:e7:f8:40:5e:e1:1e:c8:24:5b:1d:2c:ab:
63:04:48:98:94:4b:8c:09:9e:6a:57:a3:dc:e3:dc:03:b4:09:
81:12:e0:3b:9c:8b:32:e0:c1:be:62:b1:9a:12:cc:e0:82:8a:
1e:ef:dd:02:f6:61:3d:09:3d:a1:6c:60:c2:5c:c2:72:b3:12:
b4:f5:cc:0e:36:c1:8c:7e:e2:1b:c3:77:23:fc:3d:04:d5:4d:
7c:6d:50:3b:b8:35:9e:b3:e7:8f:b2:8a:c1:b1:3c:1b:b1:fe:
77:1a:a9:2e:93:cc:81:c6:b3:ea:a0:a1:a6:e2:3c:4e:37:36:
b0:33:80:57:5a:e8:c8:5d:f0:c3:e4:c2:f8:e5:23:d8:6b:04:
d5:19:6b:6a:9d:2b:f0:65:78:c9:a4:d1:9a:d4:83:b5:38:18:
ae:82:96:4e:df:5e:44:df:38:c4:ea:7a:2d:e5:30:45:86:cf:
76:bd:28:09:42:43:21:c1:e1:94:12:cc:af:3e:c6:bd:d9:9a:
5c:44:6a:8b:2c:5a:e6:72:c5:3f:ef:28:0d:6b:a5:57:1a:cc:
37:bf:0c:ac:e4:b2:9e:be:9b:61:35:22:68:25:d1:43:56:a1:
6c:2d:30:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:34 2025 by rpki-client