Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/859aaa-da65-4116-8b90-2802131004aa/1/zz8SBlJE_ZsY_LnrTSYSAFpG1NE.roa
File: zz8SBlJE_ZsY_LnrTSYSAFpG1NE.roa (raw, json)
Hash identifier: odk06RtteZeDUqv8inKA3oyBst8B1VvlEva7K6O5Jrk=
Subject key identifier: CF:3F:12:06:52:44:FD:9B:18:FC:B9:EB:4D:26:12:00:5A:46:D4:D1
Certificate issuer: /CN=ea67e84c35fb15fe3522c9ca2dc7fb398579e5f9
Certificate serial: 0150353A
Authority key identifier: EA:67:E8:4C:35:FB:15:FE:35:22:C9:CA:2D:C7:FB:39:85:79:E5:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6mfoTDX7Ff41IsnKLcf7OYV55fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/859aaa-da65-4116-8b90-2802131004aa/1/zz8SBlJE_ZsY_LnrTSYSAFpG1NE.roa
Signing time: Sat 01 Jan 2022 14:57:39 +0000
ROA not before: Sat 01 Jan 2022 14:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 5.172.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22033722 (0x150353a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea67e84c35fb15fe3522c9ca2dc7fb398579e5f9
Validity
Not Before: Jan 1 14:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf3f12065244fd9b18fcb9eb4d2612005a46d4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9e:52:d9:eb:bf:23:d3:ca:88:d7:3c:b4:02:
d8:97:4f:86:95:71:c1:7b:ad:a1:c4:2e:c6:22:4c:
7f:84:33:81:00:1e:79:87:91:9a:e8:9c:20:5a:43:
2c:7b:80:58:1e:e5:f8:e4:c3:57:7c:6b:eb:b2:c6:
b1:9a:90:0c:af:8b:34:85:dd:bb:1b:9a:f4:94:5c:
c6:21:62:85:af:16:b2:5f:cb:02:25:08:f0:79:e2:
a3:72:1e:69:4e:9d:7b:db:c6:4a:0c:7d:e0:9a:63:
c0:e3:3a:6a:56:a6:97:2a:c1:ad:0c:7f:af:f2:ce:
67:59:7f:9f:8c:e7:6a:ca:e6:b8:b5:0b:1e:3f:13:
33:15:e8:2e:e0:45:3b:76:a8:09:aa:ed:06:a7:84:
7d:8a:8c:29:6c:c5:21:95:83:b3:68:19:1b:ab:a0:
df:39:13:ea:75:35:bd:bb:eb:5c:5a:84:86:e8:48:
7b:96:ae:b8:7b:b3:b0:cb:a5:7a:12:c6:a3:d8:14:
41:b5:57:fd:69:24:ba:9f:52:fa:5b:3d:4f:50:3a:
26:a3:b2:31:0a:56:55:45:78:cd:89:5f:82:d2:20:
87:2b:26:d1:7d:ac:ca:7c:ed:95:9c:cf:a4:3a:2d:
15:38:c5:cb:b9:88:45:e8:19:3c:bb:42:6b:ee:21:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:3F:12:06:52:44:FD:9B:18:FC:B9:EB:4D:26:12:00:5A:46:D4:D1
X509v3 Authority Key Identifier:
keyid:EA:67:E8:4C:35:FB:15:FE:35:22:C9:CA:2D:C7:FB:39:85:79:E5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6mfoTDX7Ff41IsnKLcf7OYV55fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/859aaa-da65-4116-8b90-2802131004aa/1/zz8SBlJE_ZsY_LnrTSYSAFpG1NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/859aaa-da65-4116-8b90-2802131004aa/1/6mfoTDX7Ff41IsnKLcf7OYV55fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.178.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:f1:bf:c3:db:ad:a3:f3:f3:76:f2:1b:1a:94:31:37:a5:ea:
79:bd:15:21:5d:02:56:2c:4b:39:3d:29:6a:79:e7:5e:a4:80:
6a:ae:a7:1c:de:fc:c6:a7:88:e6:5b:d5:bb:56:31:f6:e1:09:
78:c8:2b:04:82:30:f4:8b:74:da:91:ad:4b:b5:53:67:85:b1:
af:40:05:14:ec:9a:46:56:a3:ef:55:0f:4f:a2:50:7f:80:c1:
fa:94:15:fa:e8:20:06:ce:be:77:6a:6c:32:89:d4:40:49:84:
da:cd:01:51:54:1f:64:4c:9a:f9:10:fb:21:7e:f1:59:bd:2c:
90:85:90:fd:66:2e:14:0f:2c:0a:f1:af:b6:89:5a:a4:15:f0:
0e:72:06:fb:2c:47:ba:fb:17:f2:78:5a:00:76:81:d5:0c:1a:
f2:35:fb:ad:2e:d8:93:57:16:de:b7:58:7c:64:93:71:da:89:
88:ce:d6:b4:e8:fb:7c:69:a6:5f:60:43:69:92:68:3f:d1:44:
7e:90:70:b8:37:28:12:59:ff:dd:f8:14:a7:1a:a5:2e:00:87:
cd:cd:e3:c9:bf:dc:02:ca:be:9a:e4:33:fa:f4:5d:65:ec:33:
77:93:96:9a:24:a6:3c:9b:48:1d:42:42:42:b5:08:49:81:0f:
5c:f7:8b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:15 2025 by rpki-client