Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/1b4dfa-c0de-44a8-9fc5-5f44537e72a5/1/jzQ7DwGo5Q5fQOrudTlE_z9Qz3s.roa
File: jzQ7DwGo5Q5fQOrudTlE_z9Qz3s.roa (raw, json)
Hash identifier: XvV1/Jr708y+pfd6+RXWq8XwUcHAGUm1U/pbiI8KNMA=
Subject key identifier: 8F:34:3B:0F:01:A8:E5:0E:5F:40:EA:EE:75:39:44:FF:3F:50:CF:7B
Certificate issuer: /CN=59afc9faee4f4359a286afe5d0768525958342b5
Certificate serial: 02738E29
Authority key identifier: 59:AF:C9:FA:EE:4F:43:59:A2:86:AF:E5:D0:76:85:25:95:83:42:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wa_J-u5PQ1mihq_l0HaFJZWDQrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/1b4dfa-c0de-44a8-9fc5-5f44537e72a5/1/jzQ7DwGo5Q5fQOrudTlE_z9Qz3s.roa
Signing time: Sat 01 Jan 2022 09:02:14 +0000
ROA not before: Sat 01 Jan 2022 09:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200428
IP address blocks: 185.92.60.0/22 maxlen: 22
2a05:ef40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41127465 (0x2738e29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59afc9faee4f4359a286afe5d0768525958342b5
Validity
Not Before: Jan 1 09:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f343b0f01a8e50e5f40eaee753944ff3f50cf7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:a1:e1:fc:1c:d4:f7:7c:17:32:d2:5f:a0:
01:88:4d:ea:19:77:dc:06:43:63:d7:e6:d9:c8:e9:
1e:12:74:95:52:ad:f5:2b:7a:de:a1:b7:2c:1e:3c:
04:b3:85:ef:f3:1a:4d:70:2d:ca:04:9f:9a:22:9f:
5b:eb:3b:08:97:46:41:d2:f9:8d:7c:be:70:b7:32:
31:b8:69:7f:30:fa:98:13:f1:31:04:10:76:74:69:
34:1e:6f:46:4f:cb:0a:eb:0d:76:59:a8:af:b5:58:
27:e0:45:0e:72:6d:3a:10:59:a0:c1:c4:73:82:51:
90:44:25:4a:9e:0d:9f:25:dc:ce:42:7f:3e:71:b1:
fe:ba:02:9b:07:1b:b5:1e:41:15:84:20:e1:62:3d:
53:e2:3c:d3:0f:14:9a:f2:21:7b:9e:42:7e:dd:31:
ed:86:20:1a:db:2c:6b:da:3a:f6:9f:a3:3f:84:08:
a1:27:60:40:ea:02:49:d9:3e:96:41:4f:25:90:21:
2e:86:d9:e7:90:6d:75:c9:d1:40:fa:ba:1d:84:44:
cc:74:78:61:cb:81:6f:ac:7f:79:f4:1c:cf:66:f9:
6f:05:20:b5:86:f3:74:58:2a:6a:1e:9f:bd:bd:d8:
a9:8f:7f:59:b3:5d:16:84:14:98:42:22:16:e7:49:
9e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:34:3B:0F:01:A8:E5:0E:5F:40:EA:EE:75:39:44:FF:3F:50:CF:7B
X509v3 Authority Key Identifier:
keyid:59:AF:C9:FA:EE:4F:43:59:A2:86:AF:E5:D0:76:85:25:95:83:42:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wa_J-u5PQ1mihq_l0HaFJZWDQrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1b4dfa-c0de-44a8-9fc5-5f44537e72a5/1/jzQ7DwGo5Q5fQOrudTlE_z9Qz3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1b4dfa-c0de-44a8-9fc5-5f44537e72a5/1/Wa_J-u5PQ1mihq_l0HaFJZWDQrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.60.0/22
IPv6:
2a05:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
20:0a:0a:74:30:d0:9b:97:e0:4d:7a:10:70:cb:7c:bf:c6:93:
20:3b:de:40:f1:2d:7e:5a:30:7c:12:a3:a7:39:35:db:3c:c4:
8f:af:5c:a9:38:07:96:f4:fb:fe:18:04:77:18:0d:ac:2f:1f:
8f:22:13:8f:e2:21:03:b4:8d:16:48:f3:a5:50:6f:bd:d5:ea:
a3:5b:c6:38:41:25:c9:ce:e0:41:c3:d2:f7:1c:4b:f0:0f:8b:
46:5a:36:60:33:4d:3f:b2:87:d9:d9:60:b2:7b:62:60:c8:c0:
f3:f8:90:21:54:7d:22:29:4e:9b:f4:1e:3a:60:d1:49:3a:c3:
64:68:e2:d6:36:8e:4f:83:cb:65:bb:67:a7:56:09:a5:00:9c:
14:02:2a:11:16:26:e6:06:ec:89:e3:94:e3:52:d8:b4:14:3b:
f2:e7:c8:df:9c:7c:f1:c2:7e:83:14:90:5c:8f:3e:c9:80:3a:
30:08:ac:6a:f8:36:f4:da:8d:eb:61:5d:9e:21:c6:86:28:1d:
ae:4c:6e:5d:27:89:a3:03:17:30:f3:c9:de:0c:fc:1e:9b:82:
2f:22:e1:21:d6:23:a6:f1:5a:dc:7a:3c:36:20:44:05:92:08:
07:d7:4c:7f:a2:0e:41:37:a9:69:98:11:b9:1a:e8:bb:c8:27:
2c:49:4a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:35:32 2025 by rpki-client