Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZujyUZbY-5yTZK2ipGuaWD3R1oc.roa
File: ZujyUZbY-5yTZK2ipGuaWD3R1oc.roa (raw, json)
Hash identifier: ZqRgsk+/Cs+HY13eP4fxuiWdN13RmLyIdB1Ulzrqsx8=
Subject key identifier: 66:E8:F2:51:96:D8:FB:9C:93:64:AD:A2:A4:6B:9A:58:3D:D1:D6:87
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27714736
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZujyUZbY-5yTZK2ipGuaWD3R1oc.roa
Signing time: Sat 01 Jan 2022 16:08:04 +0000
ROA not before: Sat 01 Jan 2022 16:08:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41129
IP address blocks: 146.120.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661735222 (0x27714736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66e8f25196d8fb9c9364ada2a46b9a583dd1d687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7d:6e:1a:8c:83:aa:8f:88:1a:0c:6d:ba:93:
bc:2b:79:6b:5c:cb:36:d6:cb:d7:d7:e6:a1:03:ee:
8e:1b:6d:62:d2:b5:c9:d0:7b:34:0e:cc:ae:6b:9d:
c1:fb:55:25:c9:c7:f4:65:2b:85:f5:3a:1d:33:da:
27:87:b9:a1:86:5f:ad:85:1c:e8:0d:99:0c:9f:60:
36:4d:4e:99:b7:10:2e:0e:11:f0:1f:47:ff:49:35:
60:e5:a1:e5:4c:b1:d3:15:e8:5e:3e:81:56:8e:e4:
a9:8c:a1:08:de:c6:de:0e:79:e3:51:36:41:e1:21:
0a:8b:93:de:8c:e6:82:a9:e2:59:87:78:30:fd:66:
3a:1b:ec:53:6a:60:7b:ab:37:b0:89:47:a4:ad:eb:
89:eb:e9:fa:05:01:cc:02:3d:9b:98:a8:27:60:71:
b5:c3:04:a3:73:6b:2a:d5:02:64:07:e9:fe:07:11:
23:96:d4:30:4d:53:66:5d:7b:0c:95:ab:58:0a:55:
f7:29:80:62:9a:07:eb:62:66:2a:1b:6e:3d:61:e3:
8d:a5:36:24:48:b8:39:f4:84:e0:2d:24:c4:f0:b2:
ad:b0:72:b5:6b:55:06:ec:25:ed:a3:f8:b1:12:9c:
2a:95:5d:07:df:c1:3a:98:28:d0:59:b6:be:6e:e5:
ad:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E8:F2:51:96:D8:FB:9C:93:64:AD:A2:A4:6B:9A:58:3D:D1:D6:87
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ZujyUZbY-5yTZK2ipGuaWD3R1oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.100.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1a:ed:30:bf:9d:58:b8:96:4d:c4:ab:1d:35:c1:6f:f9:30:
90:77:91:7a:f8:c9:c1:9b:5b:04:9b:8d:81:10:d3:5a:c7:26:
ff:da:a5:25:ee:ca:6f:c7:c1:88:ad:8c:1d:98:27:a1:ed:b7:
29:a2:e0:eb:8d:87:6f:93:e8:8c:b9:25:fd:f9:e5:4d:81:75:
dd:57:71:5a:08:79:8e:1b:c2:fa:db:a8:37:29:00:af:e0:ad:
c0:c2:14:ba:5e:1d:9d:7a:a7:2d:67:eb:13:88:df:5b:43:dd:
f2:cc:a2:d2:98:67:0e:74:a2:87:43:f0:4d:ff:f8:51:96:75:
cc:ef:2b:36:da:ee:19:5f:85:46:7b:f4:cc:06:36:c9:60:bb:
ce:23:3c:0d:3a:3e:7e:01:6e:a5:dd:91:13:fd:50:1d:52:fb:
32:ed:75:15:be:24:69:26:55:c3:48:68:ef:f8:7c:b6:b4:73:
3b:b8:f6:64:5b:83:00:08:36:45:98:bd:91:09:a3:d6:e6:6e:
ac:b7:f5:a5:b3:22:95:85:da:28:20:e5:01:86:31:79:69:a0:
c1:3e:95:30:af:b8:85:a2:77:9d:f1:9a:3b:76:ec:28:b0:cd:
5a:b1:ed:93:43:45:d1:e5:b2:ab:16:d8:29:0a:82:95:94:bc:
13:67:6d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:11 2025 by rpki-client