Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/zCG2HuGiHZjTXSKJbWv6FdrkxnA.roa
File: zCG2HuGiHZjTXSKJbWv6FdrkxnA.roa (raw, json)
Hash identifier: lUshoBUB6GInHOLkchbOAbc3qdtqeRDZ/Q1T6gpKbQg=
Subject key identifier: CC:21:B6:1E:E1:A2:1D:98:D3:5D:22:89:6D:6B:FA:15:DA:E4:C6:70
Certificate issuer: /CN=b722c90639714bb6c6a7b0b123f0d0662c70d5c1
Certificate serial: 057324E5
Authority key identifier: B7:22:C9:06:39:71:4B:B6:C6:A7:B0:B1:23:F0:D0:66:2C:70:D5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyLJBjlxS7bGp7CxI_DQZixw1cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/zCG2HuGiHZjTXSKJbWv6FdrkxnA.roa
Signing time: Tue 24 May 2022 15:43:13 +0000
ROA not before: Tue 24 May 2022 15:43:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204300
IP address blocks: 94.142.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91432165 (0x57324e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b722c90639714bb6c6a7b0b123f0d0662c70d5c1
Validity
Not Before: May 24 15:43:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc21b61ee1a21d98d35d22896d6bfa15dae4c670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b7:e4:b2:cc:e7:47:24:1e:75:84:9e:d2:df:
89:43:5f:a9:9f:ec:43:89:92:b0:2f:fd:12:24:f4:
81:cf:46:f4:04:d6:e2:f2:88:09:b8:b7:2d:ff:47:
93:d2:99:c8:5c:6e:ca:f8:01:af:26:8c:02:f5:42:
20:b6:a8:81:e1:2c:22:68:a3:33:a1:29:85:bb:e1:
a0:88:dc:2b:8b:48:cc:23:fb:a1:24:bc:25:d0:15:
f4:83:f8:75:ac:41:34:b4:fd:6c:c0:1c:5c:9f:7e:
62:ee:b5:0f:1e:c2:e8:4a:15:99:ef:d2:3b:e0:27:
2b:71:38:bd:27:f3:b1:e5:54:34:f1:62:4c:83:10:
b7:73:ff:4b:c4:0d:64:c9:a5:fc:9f:5b:29:3c:cf:
9d:37:4a:d8:43:2d:ea:c2:e4:e2:43:64:de:a0:85:
8f:df:55:8a:f8:eb:9a:5b:55:65:98:87:c7:c0:4b:
db:79:4b:fa:af:f0:47:00:ae:a7:8f:f0:da:47:d9:
dd:d8:af:9d:8b:59:0b:a8:62:eb:78:46:42:f1:93:
e9:02:39:7f:b3:d7:57:d5:e9:48:67:26:15:af:85:
4e:81:07:45:81:f5:78:1e:d0:c2:c7:db:d4:01:99:
85:40:ab:4e:65:fb:e8:68:e7:ca:0f:7e:4d:b7:81:
f4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:21:B6:1E:E1:A2:1D:98:D3:5D:22:89:6D:6B:FA:15:DA:E4:C6:70
X509v3 Authority Key Identifier:
keyid:B7:22:C9:06:39:71:4B:B6:C6:A7:B0:B1:23:F0:D0:66:2C:70:D5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyLJBjlxS7bGp7CxI_DQZixw1cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/zCG2HuGiHZjTXSKJbWv6FdrkxnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d52ddd-92e1-4d26-a6a1-2161c065e1ec/1/tyLJBjlxS7bGp7CxI_DQZixw1cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.130.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fd:04:8e:87:10:b0:a3:87:36:e5:d9:26:fc:91:d5:67:b2:
d4:da:75:c9:84:9f:d8:20:1c:71:ab:53:58:81:39:7d:f3:4c:
a9:35:ae:22:fa:5f:85:45:b5:b8:8b:3d:68:d7:f2:65:80:86:
6b:4f:8b:0c:67:6a:1d:01:d2:10:12:f1:87:7a:4f:57:c7:84:
54:91:ec:84:76:1a:37:ff:59:f4:9a:36:9b:e4:a7:1c:12:73:
05:c7:2a:62:93:9f:80:58:d1:3e:e9:ab:70:0d:83:08:9e:bf:
e4:87:36:ab:18:a0:56:18:a2:1f:1d:bb:a1:f5:f8:de:c3:bb:
55:b3:fc:7e:ea:44:a2:2e:cc:da:44:a1:ed:9f:38:2f:29:94:
79:e2:95:ff:63:3f:74:69:7b:9a:de:3b:fa:a6:9c:6b:bb:d6:
ca:6c:db:fc:c9:11:da:2a:98:c2:bd:91:0f:3b:fe:11:2b:ae:
56:e5:7e:4a:09:a4:32:41:a4:83:bb:56:63:da:4c:04:6f:4a:
07:b7:93:8e:5e:0a:84:23:21:56:4f:c8:fd:8f:c1:fd:53:51:
dd:d5:38:62:ec:bf:c8:d2:29:55:5f:f8:b0:b2:ef:0f:e6:88:
e7:a2:a6:c4:86:fd:9f:7f:9b:d1:6b:6e:02:06:66:81:c5:ea:
71:bb:7d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:14 2025 by rpki-client