Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/zjhb5v-5ObZkb69rhkjl5MqsO_U.roa
File: zjhb5v-5ObZkb69rhkjl5MqsO_U.roa (raw, json)
Hash identifier: PRw29GVfpZig7Lav/SGZsfSpMeFOEDvvefI+XemDT0Q=
Subject key identifier: CE:38:5B:E6:FF:B9:39:B6:64:6F:AF:6B:86:48:E5:E4:CA:AC:3B:F5
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0DEC1573
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/zjhb5v-5ObZkb69rhkjl5MqsO_U.roa
Signing time: Sat 01 Jan 2022 08:00:52 +0000
ROA not before: Sat 01 Jan 2022 08:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204059
IP address blocks: 80.67.181.0/24 maxlen: 24
80.67.191.0/24 maxlen: 24
2001:913:1000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233575795 (0xdec1573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 1 08:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce385be6ffb939b6646faf6b8648e5e4caac3bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:2e:cc:12:ce:d8:69:c9:8b:47:b9:21:a0:
d6:85:1c:43:f2:66:4e:9b:c0:64:e0:bc:b5:1c:cc:
64:a4:b2:32:ec:7d:53:da:2f:f2:f9:29:4d:3e:09:
d3:f0:07:13:54:d6:18:ce:6b:11:61:a1:cb:d7:f2:
e3:8f:22:fa:03:58:29:89:65:95:46:cb:bf:44:e0:
fd:94:4c:f0:ce:86:ad:95:18:06:b7:17:fa:57:e0:
68:88:4c:9d:bc:25:8f:7c:3f:13:7a:71:1b:98:42:
d7:58:54:b7:53:f1:bb:27:b0:c4:cb:98:ef:da:ab:
0a:21:26:98:70:90:82:32:da:0a:0a:a3:83:fa:55:
25:91:42:05:0a:10:48:55:2d:03:5d:07:00:b2:6d:
72:2c:3d:89:77:c6:33:17:ac:a2:af:e3:f2:d9:f8:
ee:87:01:3f:ef:17:ce:3d:b0:18:6b:2d:66:6d:eb:
bf:50:11:20:fc:60:39:e1:0e:64:31:9c:8c:cb:51:
2f:36:dc:b4:c1:78:f2:a6:af:b8:ba:db:42:27:98:
83:f7:eb:3d:d8:90:d3:03:d2:32:e8:47:c7:62:e4:
72:48:0d:28:90:07:ad:46:93:46:20:6f:ea:42:d2:
e2:14:f1:de:c3:76:50:47:3d:83:4a:02:1d:48:90:
3b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:38:5B:E6:FF:B9:39:B6:64:6F:AF:6B:86:48:E5:E4:CA:AC:3B:F5
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/zjhb5v-5ObZkb69rhkjl5MqsO_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.181.0/24
80.67.191.0/24
IPv6:
2001:913:1000::/36
Signature Algorithm: sha256WithRSAEncryption
94:43:1f:7c:c7:ea:97:a7:14:8f:7d:c4:ef:50:d1:75:d1:30:
63:80:3a:44:c8:e5:d3:10:5e:66:d8:43:3a:e9:09:74:d5:98:
ab:7a:47:37:64:33:a5:03:6c:1f:7c:d7:7a:bb:03:b2:89:6f:
f3:d9:d7:bb:4d:1d:22:db:2e:5a:a1:a4:52:56:e1:47:14:84:
c6:5d:43:1a:43:5a:72:d4:5a:44:71:04:f7:a2:ce:9b:b0:fa:
fa:32:df:61:91:30:53:10:4f:12:ad:7d:1a:23:f4:1b:94:fb:
04:34:65:26:7d:33:22:a5:c0:69:e4:aa:b5:8f:58:57:fa:54:
57:28:15:1e:ff:9e:e6:1f:05:9f:79:a3:7d:6d:b8:28:a9:0d:
93:2f:b2:57:da:2a:a2:a2:14:96:88:a9:f1:2d:6a:e7:0e:55:
1b:0f:16:db:ee:bf:4f:8e:8f:cb:16:fb:a5:e4:1a:c1:f5:65:
fc:33:0f:68:dd:08:c3:64:a0:e1:54:f6:7e:d0:5d:d4:ca:b6:
13:47:57:56:a3:17:28:d1:9c:ed:16:9f:de:c1:9c:4b:5f:04:
8e:5c:1a:d1:ad:eb:62:6e:44:e2:4c:da:5d:b3:75:be:29:af:
7d:68:41:c2:95:df:3b:9b:b1:53:bb:6c:ba:d7:94:23:aa:d0:
5d:be:e5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:10:39 2025 by rpki-client