Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/b70de1-4ed6-476b-8a11-c9e43839bcec/1/zuegtjg8w_yYCug-myda0ya96vI.roa
File: zuegtjg8w_yYCug-myda0ya96vI.roa (raw, json)
Hash identifier: nzxMy0lOqpQh6FFDA54P3XcUPsiKeeYvBzprQvJiS+4=
Subject key identifier: CE:E7:A0:B6:38:3C:C3:FC:98:0A:E8:3E:9B:27:5A:D3:26:BD:EA:F2
Certificate issuer: /CN=26d0abe89beb9756be4894ae6908cd8cb145cdb6
Certificate serial: 018570F0BD8AFFEFE04360EB48B70A073677
Authority key identifier: 26:D0:AB:E8:9B:EB:97:56:BE:48:94:AE:69:08:CD:8C:B1:45:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JtCr6Jvrl1a-SJSuaQjNjLFFzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/b70de1-4ed6-476b-8a11-c9e43839bcec/1/zuegtjg8w_yYCug-myda0ya96vI.roa
Signing time: Mon 02 Jan 2023 05:25:03 +0000
ROA not before: Mon 02 Jan 2023 05:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 94.103.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:bd:8a:ff:ef:e0:43:60:eb:48:b7:0a:07:36:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26d0abe89beb9756be4894ae6908cd8cb145cdb6
Validity
Not Before: Jan 2 05:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cee7a0b6383cc3fc980ae83e9b275ad326bdeaf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1b:24:e4:eb:ba:c3:a2:68:fc:58:68:7a:a6:
13:25:22:a6:00:99:ce:8c:4a:f5:1b:ec:f7:a7:6c:
e1:76:e3:1c:f4:ba:88:0a:0b:49:76:4e:53:a8:c9:
56:d4:8d:2b:b6:26:eb:93:4f:06:e3:0c:ac:e1:7f:
38:48:13:76:32:d5:d0:44:26:77:4e:c0:a1:ba:31:
da:3f:d0:c6:eb:4f:fc:52:cf:a7:b6:28:84:db:a4:
0e:88:3a:97:a5:b5:4f:57:a1:1b:f1:72:b5:03:46:
4d:e1:cd:d6:db:6f:b6:48:4e:ce:26:14:dc:ec:96:
e3:36:31:1c:05:7a:ba:74:35:f0:64:c3:82:db:15:
7d:8b:66:6b:01:b0:8a:dc:aa:65:9d:0d:ad:25:7e:
cf:98:9f:f3:f2:9e:79:a0:3a:ab:51:37:a9:e4:09:
d5:0b:70:06:64:5f:7a:26:58:83:ed:95:83:7a:a6:
81:40:aa:6d:a4:6c:08:31:3d:b4:17:e0:cb:f0:e5:
f1:88:14:7d:35:b0:04:ec:6c:d0:32:a0:c3:c1:23:
0b:2e:6c:bc:74:c5:ad:aa:0b:4b:a0:fa:e7:d5:35:
35:c8:30:21:ef:5a:e6:ed:a8:7b:76:ed:72:d2:c9:
36:f0:ca:33:2e:05:21:49:a3:eb:c5:d3:fd:8d:c2:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E7:A0:B6:38:3C:C3:FC:98:0A:E8:3E:9B:27:5A:D3:26:BD:EA:F2
X509v3 Authority Key Identifier:
keyid:26:D0:AB:E8:9B:EB:97:56:BE:48:94:AE:69:08:CD:8C:B1:45:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JtCr6Jvrl1a-SJSuaQjNjLFFzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b70de1-4ed6-476b-8a11-c9e43839bcec/1/zuegtjg8w_yYCug-myda0ya96vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b70de1-4ed6-476b-8a11-c9e43839bcec/1/JtCr6Jvrl1a-SJSuaQjNjLFFzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.120.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:3e:67:dc:ee:33:71:9f:f0:7e:2a:64:21:2f:b3:78:39:03:
d3:2e:53:ca:8e:42:f5:59:4f:30:6f:a5:af:22:2d:15:23:48:
a4:3a:b3:b1:db:29:7e:5f:db:2f:3b:d0:a7:52:55:c7:98:96:
47:b1:9f:2f:13:64:1f:c1:de:47:bb:c0:b9:da:aa:f8:45:72:
03:1f:f9:26:84:9f:28:b5:44:45:4b:44:4b:e2:c2:ec:5f:58:
bd:8f:c7:13:54:fd:4d:c3:ce:51:6b:a9:c5:06:e5:30:c4:c6:
1e:9c:c5:cf:1c:24:ea:38:9e:b6:67:eb:46:1d:e3:8e:dd:d0:
c8:bf:82:cd:ca:e2:2b:fd:00:bd:0d:df:08:53:e1:64:6d:b9:
fc:38:5c:cf:92:4c:69:05:f3:c0:17:e3:01:72:94:2f:60:f5:
f9:7d:fb:8f:86:e1:28:87:9b:a3:7d:04:64:56:fd:c5:7b:20:
d0:aa:59:16:b8:30:5c:0b:fa:6f:f9:aa:03:4f:14:93:9e:a0:
bd:fc:9d:b5:2c:4e:53:e7:c0:6a:06:ae:bc:66:15:c6:6c:ce:
89:88:c4:bb:b8:b8:6a:2d:10:b1:c6:a4:24:c7:9e:46:b8:d6:
42:e5:6a:59:71:bf:68:4d:66:b6:21:4a:31:ea:23:28:ea:21:
56:a9:93:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:58 2025 by rpki-client