Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZG3T4yO1xADjl32XofXHFHH9OzM.roa
File: ZG3T4yO1xADjl32XofXHFHH9OzM.roa (raw, json)
Hash identifier: weXF4ajmr+YMVRH4OPG59plZM5Vz2twhh0yu0tns/uw=
Subject key identifier: 64:6D:D3:E3:23:B5:C4:00:E3:97:7D:97:A1:F5:C7:14:71:FD:3B:33
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0195714593E1D72E892FA4A616975A288CDA
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZG3T4yO1xADjl32XofXHFHH9OzM.roa
Signing time: Fri 07 Mar 2025 15:42:19 +0000
ROA not before: Fri 07 Mar 2025 15:42:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42831
IP address blocks: 163.5.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:71:45:93:e1:d7:2e:89:2f:a4:a6:16:97:5a:28:8c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 7 15:42:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=646dd3e323b5c400e3977d97a1f5c71471fd3b33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2a:3a:54:4c:b0:77:6d:95:bf:94:0e:87:91:
b6:1c:23:9c:5a:7b:f4:4d:de:b9:4f:27:58:96:85:
5b:8f:a8:fe:51:ac:7a:ee:df:e3:d2:d6:e4:25:fe:
3b:a2:32:20:7a:61:f4:f1:74:2c:c9:4d:0c:9d:e5:
92:4e:e5:14:bf:c2:24:c5:dd:9d:fb:89:ad:1b:8f:
c1:c5:4c:86:5a:4b:f0:d7:45:a8:a7:62:47:0e:8d:
6f:ad:cf:4b:8f:c9:d9:53:f3:a6:80:8d:e5:3e:6b:
8f:d3:ef:db:d3:f1:2c:97:b4:07:18:ab:bc:fa:9a:
00:e2:70:24:b5:07:71:c8:89:2c:79:a6:6f:6a:4e:
ec:d6:cf:02:63:f3:ec:35:af:47:e2:fd:2f:b1:59:
8e:68:36:5e:d5:05:23:9f:00:de:27:f4:8e:64:de:
5a:af:8b:12:91:c8:75:65:d4:94:d2:19:3f:d1:a4:
ca:d4:b1:6c:07:b4:dc:6f:57:0d:e8:7f:70:f2:f4:
b6:43:3a:4b:3b:45:21:5b:a8:5b:97:1f:48:80:b9:
a6:b5:fc:de:62:bd:a7:93:f6:6e:8d:64:66:e1:80:
e4:f9:bc:4b:8f:2a:94:3d:61:37:92:01:ff:6c:41:
af:da:db:81:49:5c:25:51:90:1e:0e:f2:c4:dc:d3:
cb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6D:D3:E3:23:B5:C4:00:E3:97:7D:97:A1:F5:C7:14:71:FD:3B:33
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/ZG3T4yO1xADjl32XofXHFHH9OzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6a:fb:1a:cb:63:d7:4d:eb:8b:0c:a5:00:f3:2d:ad:42:f2:
8f:50:2d:17:a9:f8:a6:e4:1e:08:be:5f:ff:5b:a9:e8:82:9f:
5a:76:af:f8:81:3b:16:97:e4:b0:3b:6f:6f:b8:87:56:32:40:
8c:17:e3:3d:1f:7d:49:ce:4c:16:f0:65:da:d1:b0:dd:63:5f:
8d:21:4c:07:e4:74:15:ac:46:65:e0:bc:de:a3:4f:32:19:cd:
93:c7:c6:4b:98:4d:81:52:01:6f:ed:93:80:2b:98:3e:44:10:
1b:d1:4f:e2:84:52:0b:ee:36:67:32:5a:08:52:f6:52:3b:c7:
54:77:42:e0:f7:63:ee:50:8f:22:5b:64:21:a7:27:a1:04:7d:
85:40:cf:91:c2:82:0c:e4:ef:1f:b6:8b:37:47:bc:05:73:81:
50:45:de:a1:5a:58:8b:58:6c:84:90:11:99:1c:09:31:aa:6d:
ed:a9:83:4a:24:93:ac:f1:e7:0f:d4:47:1c:a7:25:cd:a2:10:
b9:5e:80:fc:ec:ed:1c:09:91:b1:56:6f:32:a9:a4:03:93:10:
f6:68:44:ab:8b:d0:03:eb:1b:cf:d0:4a:03:4c:03:e0:8d:8b:
b2:af:e8:2c:90:85:7b:b9:e2:04:d3:24:f1:78:45:d7:94:59:
36:f7:6d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:21 2025 by rpki-client