Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/zgA1XG9vhoDIsqNhiivF5O8aPyA.roa
File: zgA1XG9vhoDIsqNhiivF5O8aPyA.roa (raw, json)
Hash identifier: UZFTZ15N41eDANZWhQvjPi3VK+rzA/zRpdnVKT4hQco=
Subject key identifier: CE:00:35:5C:6F:6F:86:80:C8:B2:A3:61:8A:2B:C5:E4:EF:1A:3F:20
Certificate issuer: /CN=483c9d9d09e3ff7d728c03792d74ad19968ce27d
Certificate serial: 018CC50027C7A3109D519D8D4650EF0BDDF3
Authority key identifier: 48:3C:9D:9D:09:E3:FF:7D:72:8C:03:79:2D:74:AD:19:96:8C:E2:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SDydnQnj_31yjAN5LXStGZaM4n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/zgA1XG9vhoDIsqNhiivF5O8aPyA.roa
Signing time: Mon 01 Jan 2024 12:29:30 +0000
ROA not before: Mon 01 Jan 2024 12:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 93.177.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:27:c7:a3:10:9d:51:9d:8d:46:50:ef:0b:dd:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=483c9d9d09e3ff7d728c03792d74ad19968ce27d
Validity
Not Before: Jan 1 12:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce00355c6f6f8680c8b2a3618a2bc5e4ef1a3f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9c:13:ca:b1:d5:d3:18:3e:b6:07:b5:54:59:
df:2f:99:a1:92:ae:1e:8d:d5:0d:8c:e4:40:fa:f0:
d7:c8:ef:0c:4e:4c:2d:cf:8d:b8:af:4c:e5:2e:2a:
40:f7:1a:37:d8:8e:39:01:bb:57:02:64:98:a4:d7:
8d:92:1a:7c:07:47:84:98:37:8d:79:ea:ce:32:cd:
81:d3:f2:1b:2a:59:30:d0:66:de:ca:31:d8:c1:2b:
d7:77:b4:a0:44:4f:34:cc:4b:f4:68:ae:e7:d7:f5:
a1:ee:71:2a:3e:bc:dc:a7:2a:26:96:e1:32:08:6f:
5d:ab:c9:c2:7a:12:d2:03:b2:1c:0e:e4:08:61:ee:
2f:99:a2:21:04:7e:84:d0:8c:e6:a9:8d:dd:7c:a9:
de:a2:2e:11:18:26:0d:3e:28:3f:e8:d6:0d:51:ff:
97:18:9c:89:ad:89:48:06:f5:c5:d5:f9:09:78:0a:
f6:22:33:60:9c:3a:43:e7:2e:d2:e5:57:05:80:f3:
0e:d7:c0:ea:c4:ac:17:64:ea:96:68:fb:78:69:72:
14:db:f9:6f:93:3d:e0:09:cb:79:cc:05:7f:19:6d:
8d:f4:09:fd:4f:06:f9:f1:cd:f2:db:6f:ea:b2:d1:
c1:d4:2e:e5:ff:52:b6:a0:8f:62:a9:c4:c1:c8:50:
3f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:00:35:5C:6F:6F:86:80:C8:B2:A3:61:8A:2B:C5:E4:EF:1A:3F:20
X509v3 Authority Key Identifier:
keyid:48:3C:9D:9D:09:E3:FF:7D:72:8C:03:79:2D:74:AD:19:96:8C:E2:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDydnQnj_31yjAN5LXStGZaM4n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/zgA1XG9vhoDIsqNhiivF5O8aPyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/617e64-e4ed-4e4e-9466-c46caf64e710/1/SDydnQnj_31yjAN5LXStGZaM4n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.105.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2b:e4:b7:81:d0:57:de:ce:ed:9e:05:d7:e3:df:ba:c7:ce:
b2:f6:99:28:f7:62:ef:86:21:bb:a1:48:9d:43:30:ac:48:8d:
e8:b5:d4:02:43:90:f9:0f:a1:1c:28:98:87:07:a7:e5:fa:4a:
96:e6:f9:bb:0c:f7:f3:d5:e4:fd:05:e6:f8:5d:4c:a0:ed:56:
69:aa:05:cb:5d:e6:0c:7b:1b:1f:cc:9b:f3:e0:df:22:c3:a3:
4f:10:48:3b:1f:97:fd:cd:72:da:07:ef:46:f5:d0:f6:3a:3a:
b1:b0:12:55:30:8a:26:e5:e6:62:98:67:88:c6:44:68:36:d8:
d2:d0:58:91:0d:fe:00:e8:31:94:73:f0:a1:a7:a1:32:e8:89:
57:09:91:be:27:c9:61:97:8b:1b:90:0f:64:8f:14:51:0e:36:
3f:1f:5a:a9:3f:05:a7:e0:30:12:a2:b0:93:79:91:65:98:aa:
5b:74:05:f4:99:0d:7a:ee:4f:09:a0:a0:17:45:a1:73:64:5c:
c8:a5:0a:78:d4:09:83:41:29:f1:07:ea:3e:46:09:26:02:c1:
20:97:7d:63:de:69:72:e3:49:25:87:cb:54:f2:16:b1:08:b0:
c2:54:90:1d:f9:01:dc:e6:17:b9:0d:78:d2:f5:4d:63:ee:9e:
90:20:84:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:05:07 2025 by rpki-client