Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nzHRGS_phRGcCZ9OudVB6EGgesg.roa
File: nzHRGS_phRGcCZ9OudVB6EGgesg.roa (raw, json)
Hash identifier: LC8NGLbI0oRwmhb5bCNKC90BnhVW6kK748WtZAz5P+o=
Subject key identifier: 9F:31:D1:19:2F:E9:85:11:9C:09:9F:4E:B9:D5:41:E8:41:A0:7A:C8
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28306D27
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nzHRGS_phRGcCZ9OudVB6EGgesg.roa
Signing time: Sat 01 Jan 2022 16:09:48 +0000
ROA not before: Sat 01 Jan 2022 16:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204584
IP address blocks: 92.38.41.0/24 maxlen: 24
93.171.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674262311 (0x28306d27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f31d1192fe985119c099f4eb9d541e841a07ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f7:57:3b:84:48:49:c3:73:1c:10:5f:81:3d:
4e:72:dc:5b:46:68:79:d2:4f:b0:90:c4:7f:84:f0:
e0:36:68:be:45:d1:aa:de:d8:27:ae:59:d3:89:92:
27:e3:03:c3:83:2e:83:33:b0:61:e6:96:d7:16:bb:
4e:03:16:46:b4:cc:b1:c7:1b:50:88:f2:3e:dd:ff:
ea:9a:80:1f:d6:e5:48:63:c2:75:33:2b:c7:52:9d:
53:3f:bb:52:78:a6:bb:d4:dd:ad:dd:96:9f:2e:65:
41:cb:8d:5d:95:cd:ba:ff:51:cd:e5:7e:68:8e:f5:
c0:e3:24:c6:b9:52:4b:e2:a8:f9:26:b1:86:47:ef:
ea:0f:4f:48:a1:51:f6:14:67:03:6c:c9:15:bb:11:
d4:b2:7b:ae:ee:de:03:24:72:17:28:2e:91:94:26:
12:f5:c8:68:42:28:39:1f:56:1d:39:ab:07:4f:aa:
15:f1:1a:d2:54:b5:f0:be:27:a0:6c:32:44:e6:81:
db:7f:01:b0:6d:bf:03:6d:10:8c:7f:c8:96:24:0d:
5c:6d:1c:d6:56:d3:44:31:ed:95:8e:e7:f4:ae:aa:
d4:21:09:85:b0:27:93:be:71:b5:f6:ac:04:18:8d:
73:d6:0f:f3:0b:df:51:c5:46:4a:a4:54:0c:67:43:
eb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:31:D1:19:2F:E9:85:11:9C:09:9F:4E:B9:D5:41:E8:41:A0:7A:C8
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/nzHRGS_phRGcCZ9OudVB6EGgesg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.41.0/24
93.171.214.0/24
Signature Algorithm: sha256WithRSAEncryption
af:bd:87:42:a3:cf:9a:35:ed:08:5f:e5:8c:56:22:90:0b:60:
32:83:77:a4:ce:c8:23:e1:45:5b:15:7d:d5:86:eb:6a:c7:82:
53:23:c9:07:85:fb:6d:22:c4:0d:27:a5:bf:e0:a7:a4:bf:cf:
98:4e:01:96:fd:b2:09:a7:8b:e0:31:89:7f:ba:3f:90:90:b2:
d0:8c:65:7e:7a:02:82:d2:18:ab:47:2d:6e:bd:cd:ef:9f:86:
32:a4:5b:31:40:8e:a9:cf:ee:db:2a:79:57:e7:d9:34:19:41:
c7:2c:0b:8f:bf:ec:e8:dd:26:07:7e:d4:62:02:1e:64:40:5c:
47:e6:c3:94:0b:9d:c1:a8:16:79:07:e4:ec:6c:a5:af:62:a6:
ac:eb:8c:a5:04:9e:3e:89:5f:8f:2a:16:46:f6:3a:4f:0c:60:
04:bb:9f:7f:19:c7:82:26:b0:e5:e2:61:04:84:3a:b0:bd:b1:
0b:4e:a1:c4:39:71:11:30:37:9d:b2:09:99:ac:e6:1d:ea:7d:
4c:06:4f:b3:8c:cc:1a:a9:a9:f1:d4:5d:d8:e3:cb:44:70:32:
25:90:14:72:42:e7:ba:28:83:0b:21:54:47:a9:b9:98:79:b7:
3d:f5:e8:14:e9:78:de:ca:37:1c:0e:6a:74:88:c9:35:b6:df:
51:d6:f3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:19 2025 by rpki-client