Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z0OUqqhhynSH1uzrmgmCrhmxsCQ.roa
File: Z0OUqqhhynSH1uzrmgmCrhmxsCQ.roa (raw, json)
Hash identifier: Hd4ddF4VUHR0vB7JRkkDprTWCqHSmG1pv/56E5BIoko=
Subject key identifier: 67:43:94:AA:A8:61:CA:74:87:D6:EC:EB:9A:09:82:AE:19:B1:B0:24
Certificate issuer: /CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Certificate serial: 018A4FA714FB35A7BA3A8787174700B1052B
Authority key identifier: DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z0OUqqhhynSH1uzrmgmCrhmxsCQ.roa
Signing time: Fri 01 Sep 2023 07:31:04 +0000
ROA not before: Fri 01 Sep 2023 07:31:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 94.26.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:a7:14:fb:35:a7:ba:3a:87:87:17:47:00:b1:05:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe8cc8f5af1e7362d454f3dd91a82952919db61
Validity
Not Before: Sep 1 07:31:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=674394aaa861ca7487d6eceb9a0982ae19b1b024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c4:c4:eb:0c:22:83:a5:74:95:24:88:67:eb:
1c:dc:09:be:4b:46:fc:ec:5a:89:dd:7d:ed:54:f9:
02:34:d3:14:b3:6d:e9:de:76:55:15:a6:e4:29:0c:
11:ac:fc:67:d6:17:d7:59:c6:9e:76:da:48:e7:ae:
b9:7d:32:43:d8:e9:51:fb:7c:e2:69:6a:35:ec:ee:
1d:ef:b0:0d:05:5f:59:24:99:28:27:a3:98:d7:99:
6a:91:34:3c:d2:93:8a:e9:06:c8:a9:fa:ae:41:53:
da:7c:db:e5:82:e9:c5:5e:12:72:20:33:69:b5:c5:
84:63:cd:0e:3d:0d:80:92:46:df:c0:57:c9:c7:8f:
96:bc:92:62:7f:2d:f5:f2:8c:dd:82:2e:c5:29:0e:
46:4c:b9:8e:f8:b9:49:ee:90:d9:e0:cb:f4:28:c7:
94:dd:c5:05:46:2a:ed:8a:a2:59:7b:15:6c:46:ea:
22:c5:c5:6d:d0:c4:a4:d8:52:b7:3f:81:a6:86:5a:
1a:9a:cb:ac:67:27:b1:6b:4d:f1:91:e1:48:69:06:
19:05:14:70:dd:cc:d8:5f:83:fd:47:5d:ff:b6:6e:
bb:c5:a4:41:52:e0:f9:83:9c:10:3d:df:4d:af:1b:
77:53:e6:22:1b:17:41:5c:0f:b2:41:38:81:f2:55:
09:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:43:94:AA:A8:61:CA:74:87:D6:EC:EB:9A:09:82:AE:19:B1:B0:24
X509v3 Authority Key Identifier:
keyid:DB:E8:CC:8F:5A:F1:E7:36:2D:45:4F:3D:D9:1A:82:95:29:19:DB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-jMj1rx5zYtRU892RqClSkZ22E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/Z0OUqqhhynSH1uzrmgmCrhmxsCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a573fe-6e0e-4bff-99fc-2621d5c99cab/1/2-jMj1rx5zYtRU892RqClSkZ22E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.26.24.0/23
Signature Algorithm: sha256WithRSAEncryption
14:13:ea:6d:c3:89:a1:40:09:57:f0:cf:bb:7d:41:58:33:be:
bc:1e:45:d2:c3:a7:40:94:b8:c2:04:ee:f5:eb:05:4f:10:9a:
23:fd:cd:6f:25:4b:2b:a3:59:75:e2:39:06:10:b3:c2:68:b4:
7c:06:c6:89:e1:9c:c4:29:c2:1e:4b:64:ef:c6:4c:5b:22:b1:
5f:d0:64:d6:4c:fc:93:3d:d8:2b:3b:1e:4b:f9:88:bf:ca:72:
e0:f0:1a:a6:90:d4:00:95:18:5b:b1:80:6a:26:94:36:1e:16:
5d:bf:f6:6e:37:bf:77:f3:4d:a7:42:0b:15:d0:16:25:04:70:
53:0a:09:71:7a:ff:0e:42:d6:17:33:38:9e:da:1e:55:bd:45:
ec:f9:04:84:47:61:e8:ff:68:ac:fa:50:79:53:05:6a:b2:87:
9b:dd:61:45:fc:3f:11:d6:24:09:89:ff:9a:d9:fb:f5:c4:9f:
92:7a:45:e9:02:f1:b8:ca:8c:58:4b:1a:83:9d:98:26:df:09:
b9:b5:1a:21:6b:f3:2c:b7:12:8a:e2:23:cb:4a:22:c9:1b:42:
44:aa:91:7d:32:d7:e5:a3:8b:53:b6:f3:0d:45:d9:88:08:fb:
6a:77:b0:41:a7:a2:2f:c3:51:5c:15:91:80:52:4b:c1:d3:00:
59:e8:46:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 06:56:18 2025 by rpki-client