Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/zPN-GSDnHeVyG1M7Mh76Avn82JU.roa
File: zPN-GSDnHeVyG1M7Mh76Avn82JU.roa (raw, json)
Hash identifier: jdMlrFL844MN01MJqbDPfMOunkca5yP37zB+q3BIM0w=
Subject key identifier: CC:F3:7E:19:20:E7:1D:E5:72:1B:53:3B:32:1E:FA:02:F9:FC:D8:95
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 0979D6FF
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/zPN-GSDnHeVyG1M7Mh76Avn82JU.roa
Signing time: Sat 01 Jan 2022 13:07:17 +0000
ROA not before: Sat 01 Jan 2022 13:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50140
IP address blocks: 193.104.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158979839 (0x979d6ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Jan 1 13:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccf37e1920e71de5721b533b321efa02f9fcd895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a2:34:cb:11:92:19:67:ab:e8:28:82:6e:f4:
1d:44:88:76:41:7b:80:61:76:19:23:3d:68:6e:a8:
ff:5a:39:b1:71:4d:6c:68:12:ee:c1:1f:b0:1d:43:
54:8a:0b:5f:16:0f:0c:95:c1:f3:8d:4f:57:14:d7:
44:3e:1f:55:e4:a8:7b:77:db:a9:9a:88:46:c2:f9:
80:fd:d9:6f:73:2d:f0:db:0c:b2:b3:62:b3:8d:ef:
6f:d1:12:5d:8f:4b:1f:c6:0d:18:6e:4c:ee:af:02:
c5:31:f9:c3:fc:63:bc:e2:da:93:1f:e7:02:70:d0:
15:d8:c1:a7:15:02:e0:0e:14:f6:fb:ac:1b:8f:9c:
a6:43:e0:8f:15:45:9c:ba:9d:91:a6:cd:33:34:bd:
b6:f8:15:22:43:2a:34:21:75:7c:95:40:3d:4d:e6:
5f:fe:57:ef:84:21:63:cc:50:c1:b8:7c:b7:1b:26:
25:ff:35:20:32:88:04:96:62:1a:69:45:58:a7:bc:
32:d0:1a:ad:eb:b5:32:56:68:02:81:24:d0:e7:76:
f4:80:56:dc:6d:4f:82:2b:39:45:8d:e8:fb:9f:96:
c9:fa:e4:fb:ab:50:61:dc:64:da:0c:63:04:ec:7f:
9b:e9:a9:1d:47:79:a2:92:1e:c2:40:c2:e2:94:4e:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F3:7E:19:20:E7:1D:E5:72:1B:53:3B:32:1E:FA:02:F9:FC:D8:95
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/zPN-GSDnHeVyG1M7Mh76Avn82JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.145.0/24
Signature Algorithm: sha256WithRSAEncryption
87:de:c0:fa:f9:e5:27:88:a9:05:0f:ee:45:53:54:62:b0:85:
fe:0a:ec:01:b6:f4:2c:ac:64:39:09:f8:7c:d4:e1:75:a0:4c:
9b:8a:a5:22:bf:93:30:1b:6d:0b:d0:b1:03:48:45:3a:3a:3a:
ad:56:0f:1c:8d:e0:7a:4a:7f:dc:19:9d:59:7c:f3:14:cd:5c:
31:cf:d3:a1:ad:64:4c:47:54:7a:ff:75:81:ae:f1:de:16:59:
5b:d8:8f:63:37:9c:26:70:77:d7:57:fa:eb:4b:b5:7a:88:69:
9c:51:c8:d7:e2:ea:e8:a5:be:34:06:88:cf:1e:bf:ac:08:54:
ec:e6:3a:97:fc:48:00:a4:ed:57:1c:b5:23:0a:6b:44:77:07:
86:ec:75:96:e8:d7:82:99:02:b6:d8:fc:ad:3e:30:98:52:0c:
00:20:39:35:5e:f7:f7:e8:6f:41:38:7d:d4:a2:d7:13:bb:5e:
9c:c5:34:cd:5a:72:58:31:01:33:2b:90:48:a9:fa:7b:4e:ce:
87:d2:96:37:79:0d:8d:8a:bc:55:f6:c9:a5:de:84:56:8c:f1:
71:20:75:fa:6a:f0:76:a6:22:3f:2c:e0:aa:95:01:1d:c0:a5:
f5:7e:f4:ab:69:eb:b9:c4:de:0f:8d:d3:16:7d:8f:51:d2:86:
50:7b:87:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:37:10 2025 by rpki-client