Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6f3dc-2efc-4ac8-ac92-adaaa3e5106b/1/ZhuqyVHWQ4DNSfpLcvphzb9IkL4.roa
File: ZhuqyVHWQ4DNSfpLcvphzb9IkL4.roa (raw, json)
Hash identifier: 3qlKoSsmVJedXkjmHg4aAkQrc9rbt5OqqNgdLSm3es8=
Subject key identifier: 66:1B:AA:C9:51:D6:43:80:CD:49:FA:4B:72:FA:61:CD:BF:48:90:BE
Certificate issuer: /CN=bb40290d0e6b0d8f556bde10519e135ffc098621
Certificate serial: 01856B40D9382D410FF28FD3B94998CBE5BD
Authority key identifier: BB:40:29:0D:0E:6B:0D:8F:55:6B:DE:10:51:9E:13:5F:FC:09:86:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0ApDQ5rDY9Va94QUZ4TX_wJhiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6f3dc-2efc-4ac8-ac92-adaaa3e5106b/1/ZhuqyVHWQ4DNSfpLcvphzb9IkL4.roa
Signing time: Sun 01 Jan 2023 02:54:49 +0000
ROA not before: Sun 01 Jan 2023 02:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 185.218.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:d9:38:2d:41:0f:f2:8f:d3:b9:49:98:cb:e5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb40290d0e6b0d8f556bde10519e135ffc098621
Validity
Not Before: Jan 1 02:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=661baac951d64380cd49fa4b72fa61cdbf4890be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e8:c0:cb:00:87:22:60:e4:7f:68:87:2b:18:
1c:ba:30:0d:4f:56:66:ec:45:fe:5c:0c:b8:5c:f1:
59:bb:36:33:a1:0d:ca:be:79:7c:20:78:1a:cf:5f:
c3:ad:0f:eb:b9:d1:20:c7:eb:2d:db:e4:22:ab:1a:
ac:e4:30:e1:87:7e:3a:2e:d5:a8:2e:cf:8a:2e:b3:
f1:f6:4f:e7:0a:6c:5f:eb:96:4c:8c:ab:43:bf:ab:
e5:c9:55:45:5c:79:5f:ba:66:48:6d:a2:11:35:fa:
67:1e:a7:a1:38:d8:d8:53:bb:a2:ff:02:2f:17:c8:
ad:52:c6:7a:df:7d:b2:39:28:1d:8a:4f:42:3c:e1:
b7:d2:bf:af:f7:cf:89:5b:81:f3:54:b7:cd:2e:2b:
15:a0:1b:d1:ee:b0:84:53:ac:26:33:f6:d0:a4:0e:
59:13:06:24:a7:ed:30:df:67:a1:a3:88:63:15:93:
cb:62:2e:70:fa:d3:c7:4d:6c:2c:a0:aa:66:25:28:
6a:4d:a6:19:35:a0:2a:c8:06:1f:a5:b8:29:54:48:
7f:54:b8:eb:77:4c:09:e5:f0:1a:05:3a:dc:fe:56:
95:b9:91:15:5d:35:6d:0c:ca:f1:38:ce:57:51:35:
c7:18:23:c3:a4:f7:3c:0c:ad:b8:64:b4:92:21:77:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1B:AA:C9:51:D6:43:80:CD:49:FA:4B:72:FA:61:CD:BF:48:90:BE
X509v3 Authority Key Identifier:
keyid:BB:40:29:0D:0E:6B:0D:8F:55:6B:DE:10:51:9E:13:5F:FC:09:86:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0ApDQ5rDY9Va94QUZ4TX_wJhiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6f3dc-2efc-4ac8-ac92-adaaa3e5106b/1/ZhuqyVHWQ4DNSfpLcvphzb9IkL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6f3dc-2efc-4ac8-ac92-adaaa3e5106b/1/u0ApDQ5rDY9Va94QUZ4TX_wJhiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.252.0/22
Signature Algorithm: sha256WithRSAEncryption
78:68:ad:09:66:8c:9c:16:6f:92:f4:28:48:c3:5c:71:02:1d:
99:18:e0:a5:cd:79:a6:16:37:a6:0c:10:f9:86:85:a5:9f:fd:
52:3e:1d:04:82:69:8d:74:ab:4c:04:bb:19:ea:47:02:8e:f5:
29:54:d3:fb:bb:dd:84:12:d6:2c:84:fa:b4:6c:a4:6d:d8:84:
b1:bc:51:19:88:3a:a5:3a:05:97:3f:72:c8:8c:1d:2b:e1:0e:
3f:b0:81:e1:3c:30:76:8b:53:06:1f:a1:82:f1:d5:ca:75:53:
a4:8b:89:64:a9:78:97:dd:48:a1:ce:ab:0b:1a:9a:40:e6:55:
48:01:9f:8b:94:b1:2c:fa:7b:ae:15:ab:94:51:de:5d:61:86:
70:3e:54:b6:d5:d2:17:98:56:2e:87:cb:8a:11:da:e4:1f:c1:
8f:f7:cb:36:92:80:c3:fe:84:3a:43:01:d9:04:d4:6a:92:41:
86:79:18:56:18:bb:da:3a:c4:fe:c9:71:c9:40:6c:7d:45:28:
86:9f:58:3e:4e:2d:c1:e4:95:30:89:86:9b:ea:7a:f2:de:99:
c0:76:60:42:55:2b:58:61:e4:1f:16:04:19:b3:f2:ec:7f:13:
dc:10:3f:56:cd:72:21:eb:2e:14:bd:9a:bb:ea:e2:42:50:49:
b6:54:6c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:12:07 2025 by rpki-client