Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZP87mhe1d4u112ZC-mTG8zywxUI.roa
File: ZP87mhe1d4u112ZC-mTG8zywxUI.roa (raw, json)
Hash identifier: GWDp/5Kk0yHIQoozKv6jaewIrb2rx1Z7teLEVruSnX0=
Subject key identifier: 64:FF:3B:9A:17:B5:77:8B:B5:D7:66:42:FA:64:C6:F3:3C:B0:C5:42
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018823931C07A23E57E92B42789FBC73C8D9
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZP87mhe1d4u112ZC-mTG8zywxUI.roa
Signing time: Tue 16 May 2023 08:00:23 +0000
ROA not before: Tue 16 May 2023 08:00:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 94.74.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:93:1c:07:a2:3e:57:e9:2b:42:78:9f:bc:73:c8:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: May 16 08:00:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64ff3b9a17b5778bb5d76642fa64c6f33cb0c542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:81:ba:d5:c6:f9:dd:21:bf:26:28:99:f9:ad:
5e:d9:0e:48:40:8d:b0:c2:64:81:67:88:6f:c4:55:
85:ea:44:22:30:1d:2a:f0:a6:09:d5:71:08:83:45:
53:fc:3f:47:27:77:33:47:6d:40:23:a3:28:e2:20:
47:57:aa:7c:5a:d1:d1:1a:19:3e:be:49:6a:1f:30:
06:64:2c:11:8b:ff:22:db:f5:23:bc:bb:60:dc:93:
62:41:63:65:6e:d2:3f:a9:81:0d:3a:de:81:32:55:
8e:23:d3:17:90:6f:c0:60:cb:88:af:23:03:a3:c2:
67:08:d2:1e:ce:82:fe:d8:c9:ae:de:8e:2d:35:74:
36:65:7f:fe:90:99:1e:67:a2:81:ff:fc:fb:69:e8:
09:4e:48:3f:9c:dd:a9:22:fa:bb:74:74:1d:bf:bc:
b1:34:8e:c6:a0:d0:d9:58:45:49:44:60:8a:bf:0e:
cd:46:50:38:c8:95:7d:8a:09:43:e0:7f:c0:61:d3:
d6:a3:d5:6c:ab:27:3d:32:cd:44:3d:69:7b:91:ac:
01:f0:1c:f3:40:6f:2d:c6:47:3f:92:fe:12:c4:09:
43:6d:c9:2e:b4:d7:2b:84:23:c3:65:2f:23:16:fd:
8d:b1:40:66:4c:56:14:98:27:91:d9:fa:9e:1b:46:
c6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FF:3B:9A:17:B5:77:8B:B5:D7:66:42:FA:64:C6:F3:3C:B0:C5:42
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZP87mhe1d4u112ZC-mTG8zywxUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.164.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ab:60:89:b4:ad:a1:32:8c:e2:51:62:b3:80:a2:ac:fd:02:
b6:d3:65:fe:8a:11:81:18:5d:18:79:27:3f:5a:70:48:43:46:
33:24:9f:09:6c:46:94:85:52:7b:4f:0c:5d:98:32:e5:29:a5:
1c:41:f6:81:73:d3:93:32:3c:c2:0b:79:29:47:a5:25:3a:9c:
44:d9:68:7a:89:25:e6:6e:26:55:6f:65:f1:18:3e:0e:22:78:
da:ae:d6:50:97:16:22:ef:06:90:9e:fb:8e:0e:8b:05:cf:69:
27:4f:71:3c:b1:b7:ba:17:fc:ad:24:f7:e4:0d:c8:b4:75:3c:
fb:bb:03:cb:f4:fb:93:f9:1d:74:06:ae:f5:cc:c5:f4:68:94:
ed:92:91:21:b4:e4:e5:35:f8:36:92:c4:d4:ed:3b:4e:3b:ef:
b2:c9:27:c7:65:a7:af:e6:0e:66:94:51:34:32:0a:55:c4:9b:
18:d0:40:72:9f:c4:f8:d6:98:8e:6c:d6:eb:82:fe:5d:33:68:
10:1e:a9:ef:b2:b5:50:b3:46:a0:50:2c:88:8e:1d:85:f7:61:
b1:09:b2:1c:15:f1:d7:7d:0d:13:d6:b0:52:55:92:fc:90:53:
c3:d7:23:7c:4f:64:43:c9:09:11:c0:18:60:62:d6:29:44:ff:
bf:7b:60:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:23 2025 by rpki-client