Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ZTe44WD2p64xhVR0RNwWNfzgbRU.roa
File: ZTe44WD2p64xhVR0RNwWNfzgbRU.roa (raw, json)
Hash identifier: Yxw5dBDM3Gc/poEhxK1kwdyUS5Al5jcskwXeQz/FHRM=
Subject key identifier: 65:37:B8:E1:60:F6:A7:AE:31:85:54:74:44:DC:16:35:FC:E0:6D:15
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 019427487E25FF653E4587A9622DF5DED702
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ZTe44WD2p64xhVR0RNwWNfzgbRU.roa
Signing time: Thu 02 Jan 2025 13:50:49 +0000
ROA not before: Thu 02 Jan 2025 13:50:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24940
IP address blocks: 45.145.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:7e:25:ff:65:3e:45:87:a9:62:2d:f5:de:d7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6537b8e160f6a7ae3185547444dc1635fce06d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fc:74:3f:b5:44:c6:1d:bd:21:c2:8d:75:a1:
89:9e:b0:b2:13:59:4e:4e:70:91:c4:f2:01:77:57:
f8:b2:6f:e5:22:dd:6b:89:ec:ac:2b:66:4a:48:a6:
ca:fd:c3:12:2e:29:99:d2:d2:ab:fa:e6:8f:80:cb:
45:fd:81:47:f9:4e:e4:a6:ce:9e:0e:1f:47:b7:48:
6d:61:f7:a9:0a:44:3f:84:a9:d1:73:02:51:06:3d:
c6:ed:21:d2:cb:68:2c:9c:de:ae:07:f4:3c:10:40:
80:fe:4e:09:72:30:97:ef:73:4b:06:7c:c1:32:ed:
c6:68:e2:20:e0:40:85:c9:56:f9:25:7d:87:77:57:
1e:7b:af:51:f4:d0:15:6a:fa:19:53:91:1d:23:71:
93:54:e4:41:28:14:51:93:a7:48:99:ef:b9:f0:2b:
0a:76:3f:65:90:1a:fb:ee:5a:9d:c8:10:ba:6c:58:
6e:f5:8b:86:f0:9c:e8:2e:d7:58:1a:9a:1d:c1:d3:
e9:46:43:70:7f:49:ea:68:99:40:a4:40:64:97:37:
62:c2:53:8e:ac:83:25:27:79:98:2b:aa:70:93:13:
50:aa:11:ba:21:bd:d2:cb:a5:38:cb:7d:bc:15:a9:
4a:53:08:14:f8:0a:55:1d:b6:49:62:d4:75:c3:85:
f6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:37:B8:E1:60:F6:A7:AE:31:85:54:74:44:DC:16:35:FC:E0:6D:15
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ZTe44WD2p64xhVR0RNwWNfzgbRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.227.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:37:a7:32:65:c6:21:2f:45:46:1e:5d:16:f1:2c:f7:9a:6b:
7f:c0:46:c1:76:a6:60:1f:05:ba:ac:fe:5c:18:3e:81:d7:c5:
7b:1a:1e:ec:79:6d:2b:fd:0b:ac:7b:53:de:39:35:12:c0:a1:
00:ca:42:23:55:ea:81:34:51:95:d1:7f:09:ec:83:bc:0b:35:
4f:10:2e:67:37:d8:91:4f:76:ed:44:18:ab:26:e7:09:0e:37:
d9:d1:ce:be:46:cd:69:33:cf:14:e6:27:2e:da:c2:e7:be:e3:
f0:46:fe:f0:3e:82:b3:42:68:ca:67:16:cf:6b:04:a8:56:c5:
23:34:01:2e:7a:f9:ea:9d:be:f9:d2:f3:30:0c:ed:df:2b:b2:
8d:35:35:b2:0e:05:85:fb:e3:7b:33:e2:a1:bc:ff:d6:4a:9b:
de:50:be:88:5e:08:d5:7b:a4:f1:d7:5c:d4:e4:1a:f0:ec:56:
73:5c:0c:86:91:5a:c4:10:95:b6:87:6b:62:ae:5c:15:1b:a6:
08:9a:55:f2:50:5a:74:78:2c:b0:26:14:ed:ee:90:c1:33:41:
26:80:fe:dd:04:53:46:7c:86:36:e8:53:3c:76:48:59:72:ee:
dd:af:8c:3f:5a:44:a8:4a:a6:5e:0f:90:f4:fa:a6:f6:bb:5b:
74:a3:3b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:47:22 2025 by rpki-client