Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/ZiN7Zodki0R8VxJ1MowewsKZL4U.roa
File: ZiN7Zodki0R8VxJ1MowewsKZL4U.roa (raw, json)
Hash identifier: /9JCDVprKLElrGbXCPJWEva+0ezRK+Xvs97ZuCsag+U=
Subject key identifier: 66:23:7B:66:87:64:8B:44:7C:57:12:75:32:8C:1E:C2:C2:99:2F:85
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 01843413E965CBA6F27A2122351EC52516A7
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/ZiN7Zodki0R8VxJ1MowewsKZL4U.roa
Signing time: Tue 01 Nov 2022 16:43:50 +0000
ROA not before: Tue 01 Nov 2022 16:43:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212294
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
2a06:a005:2220::/44 maxlen: 48
2a06:a005:1c40::/44 maxlen: 48
2a06:a005:1620::/44 maxlen: 48
2a06:a005:1f60::/44 maxlen: 48
2a06:a005:1800::/44 maxlen: 48
2a06:a005:19e0::/44 maxlen: 48
2a06:a005:1f80::/44 maxlen: 48
2a06:a005:2200::/44 maxlen: 48
2a06:a005:1f40::/44 maxlen: 48
2a06:a005:1630::/44 maxlen: 48
2a06:a005:1d90::/44 maxlen: 48
2a06:a005:2230::/44 maxlen: 48
2a06:a005:1f70::/44 maxlen: 48
2a06:a005:1c30::/44 maxlen: 48
2a06:a005:18d0::/44 maxlen: 48
2a06:a005:1610::/44 maxlen: 48
2a06:a005:2210::/44 maxlen: 48
2a06:a005:1f50::/44 maxlen: 48
2a05:dfc7:8100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:34:13:e9:65:cb:a6:f2:7a:21:22:35:1e:c5:25:16:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 1 16:43:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66237b6687648b447c571275328c1ec2c2992f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1a:f2:50:fb:55:13:6d:d2:29:a3:1d:31:af:
00:28:b6:55:24:72:e0:59:48:4d:96:20:cc:91:6e:
cf:d8:d7:db:ec:be:93:b5:79:54:34:20:7b:64:1e:
93:96:34:ce:23:f0:8b:6e:1a:24:d8:88:6e:cf:63:
65:98:df:7a:63:44:70:e3:0b:5b:e3:6f:cd:13:fb:
8d:26:cf:3a:39:b5:6e:e6:83:d3:b3:03:3c:ec:ad:
5c:67:a0:9c:94:b5:d0:67:bf:1e:9f:02:05:e1:56:
3d:51:dd:35:5f:bf:37:b6:a4:4b:39:52:25:12:17:
c7:7f:6e:f2:6d:dc:7d:3a:a1:73:6b:b2:47:f2:09:
f4:79:fe:58:74:af:42:e5:0c:b7:4b:2c:af:bc:ff:
6a:a8:54:ed:d6:45:b9:15:db:b2:83:9a:84:5e:d6:
e3:1f:82:96:ac:c5:bd:81:3b:b8:e2:3e:b5:59:fa:
f6:db:33:d8:6f:f8:1b:b7:b1:45:e2:d1:a8:31:72:
e6:49:dd:a9:0d:55:b0:23:d7:0c:08:20:e3:2e:d0:
68:a0:11:fd:cd:e0:87:4a:d2:4f:a1:2c:98:c3:52:
b3:7c:4e:bf:37:cf:04:6b:c2:d5:d8:e0:d9:1d:72:
f3:d6:fd:42:15:0e:77:f8:9f:6f:9e:a9:ac:09:8a:
54:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:23:7B:66:87:64:8B:44:7C:57:12:75:32:8C:1E:C2:C2:99:2F:85
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/ZiN7Zodki0R8VxJ1MowewsKZL4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc7:8100::/40
2a06:a005:1610::-2a06:a005:163f:ffff:ffff:ffff:ffff:ffff
2a06:a005:1800::/44
2a06:a005:18d0::/44
2a06:a005:19e0::/44
2a06:a005:1c30::-2a06:a005:1c4f:ffff:ffff:ffff:ffff:ffff
2a06:a005:1d90::/44
2a06:a005:1f40::-2a06:a005:1f8f:ffff:ffff:ffff:ffff:ffff
2a06:a005:2200::/42
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
2b:e9:ef:5b:f7:61:ed:b5:39:d1:4c:5a:d3:09:5d:ba:fb:8a:
85:b2:04:7c:d8:00:c7:ef:14:9d:48:c6:d9:c6:4f:fa:52:17:
d2:91:77:70:95:24:76:a2:2d:ac:15:7d:22:c0:09:cd:23:ed:
e4:13:f8:f6:6b:a0:65:58:f5:53:56:f7:d1:ba:8b:5b:dd:1b:
d8:32:ec:c3:2d:b3:2f:ad:b7:23:bd:2f:ef:ef:1c:1d:41:d7:
0d:4a:b2:6a:9f:48:74:fc:72:54:c7:ba:a6:9e:83:7a:26:2a:
15:56:c3:0b:52:a9:ad:4b:c9:dc:a8:e2:9a:30:81:77:57:99:
af:28:0b:17:6e:e1:7e:da:91:d8:e7:8d:d9:50:c3:a8:00:86:
1b:9a:04:f0:29:aa:7b:8d:63:8f:5d:32:75:20:5c:5f:29:4b:
1b:84:f7:61:d5:d8:26:8c:08:62:34:b3:69:dc:5c:e6:27:24:
c3:0b:5c:a7:5d:d7:dd:47:87:91:b8:9a:db:03:72:4b:9e:40:
d2:81:49:81:01:c4:e5:14:5c:e7:e2:b1:08:a4:0b:cf:09:da:
52:83:24:55:84:de:84:a9:be:e0:8f:fe:08:89:20:bf:38:a2:
4b:36:ec:74:31:5f:1b:7d:d9:af:27:7e:de:1d:22:94:7c:93:
15:13:33:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:25:07 2025 by rpki-client