Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/zZC7MdE3fzbhgr5okW0l8DnzOdQ.roa
File: zZC7MdE3fzbhgr5okW0l8DnzOdQ.roa (raw, json)
Hash identifier: 3j9SEx3hcUWRyeyueJBx9YRbaqwGrbQmDcGmYhMdyL8=
Subject key identifier: CD:90:BB:31:D1:37:7F:36:E1:82:BE:68:91:6D:25:F0:39:F3:39:D4
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018CC8DCDD925A06092E0EBA29928BDF9186
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/zZC7MdE3fzbhgr5okW0l8DnzOdQ.roa
Signing time: Tue 02 Jan 2024 06:29:27 +0000
ROA not before: Tue 02 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202122
IP address blocks: 92.61.224.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:dd:92:5a:06:09:2e:0e:ba:29:92:8b:df:91:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Jan 2 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd90bb31d1377f36e182be68916d25f039f339d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4c:17:34:b3:49:7a:08:84:01:db:f6:20:86:
45:2a:08:35:56:73:78:1e:f1:8c:e8:67:20:3c:a6:
c7:5e:90:6e:dc:10:e6:76:6a:f3:83:a3:4d:ea:ac:
d4:bd:58:a8:a3:f3:1b:37:09:ba:42:aa:72:d3:83:
ae:89:b2:50:74:17:05:e9:e8:f2:eb:89:45:bf:5b:
37:c1:d6:5f:32:05:21:ab:51:36:3e:6d:c9:42:a3:
b0:f9:d5:71:9f:f9:96:21:6e:51:46:71:20:9b:d4:
17:1d:30:59:4d:0d:f0:c7:7f:19:c1:5e:6b:d7:38:
d0:d8:23:dc:e2:85:24:d5:33:7f:15:79:87:de:eb:
16:b2:2c:c3:9f:5c:18:09:08:4f:82:ba:e8:e0:a0:
6e:ad:56:af:76:db:38:2a:3d:13:a1:50:16:f6:13:
10:ef:99:e0:3e:64:b7:53:cc:8d:da:0b:47:3b:05:
42:66:f0:ab:4a:3c:a3:c1:bc:b1:e5:e3:a7:09:02:
1d:52:3c:be:36:f7:85:10:c4:3a:62:1c:f8:67:b1:
dd:c5:88:27:5f:31:69:d7:1f:40:76:bd:24:a0:2c:
56:53:e0:fc:85:b9:e7:8d:3c:f8:07:89:fd:27:01:
56:09:1b:eb:e1:5b:38:ce:5f:96:43:0f:07:e6:9c:
ea:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:90:BB:31:D1:37:7F:36:E1:82:BE:68:91:6D:25:F0:39:F3:39:D4
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/zZC7MdE3fzbhgr5okW0l8DnzOdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.224.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:2b:66:0e:fd:8d:af:1c:be:e9:95:eb:48:1e:3d:b7:3f:6e:
71:22:d8:72:a1:88:65:15:be:c0:9e:69:ea:12:57:80:c3:f7:
65:f6:00:d7:cd:3d:9c:2e:ec:ec:4b:bd:65:3b:20:e0:8e:aa:
04:3b:f5:98:16:d3:a2:68:40:fd:a3:e0:f4:55:07:3a:85:9a:
bb:c9:36:2a:0c:90:ee:60:3f:6b:4b:02:f0:47:5a:16:90:49:
83:a5:75:49:f5:db:6f:8e:6a:35:28:83:d1:2c:82:2c:cf:e9:
2d:5a:ae:18:b8:19:f6:c8:5a:a7:e1:f4:2c:a4:98:24:4e:c1:
49:f1:c3:14:a0:20:bd:a5:4c:99:85:5d:f5:d4:b3:61:62:d2:
a4:e3:09:11:61:c0:12:f6:72:dd:00:a2:bc:36:35:e5:75:02:
22:7a:88:1c:0d:73:06:0c:32:3a:ea:8b:fc:19:f7:a4:99:af:
94:6f:3d:54:88:70:f5:c4:97:0f:68:e1:2c:c0:a1:94:38:bc:
4f:34:3d:ee:f1:82:9d:fa:bf:2f:ff:39:87:12:c2:1b:0f:63:
fb:22:08:66:14:34:d4:1f:39:8a:94:b7:a8:f0:88:c5:29:e1:
09:f8:c9:8b:e3:03:d4:dd:e4:c8:55:03:2c:25:23:2a:14:20:
83:c0:be:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:00 2025 by rpki-client