Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZoTWcdrv2djCVVfjgwvpRHQ3NWg.roa
File: ZoTWcdrv2djCVVfjgwvpRHQ3NWg.roa (raw, json)
Hash identifier: seWv3Mu7Rv0gJUXQQdGo+KhenjTFqKj5MrZW9ZOh7XY=
Subject key identifier: 66:84:D6:71:DA:EF:D9:D8:C2:55:57:E3:83:0B:E9:44:74:37:35:68
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 01942445A4D48CCA1CA5502575AF1BC75B6D
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZoTWcdrv2djCVVfjgwvpRHQ3NWg.roa
Signing time: Wed 01 Jan 2025 23:48:51 +0000
ROA not before: Wed 01 Jan 2025 23:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211432
IP address blocks: 185.255.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:a4:d4:8c:ca:1c:a5:50:25:75:af:1b:c7:5b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 1 23:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6684d671daefd9d8c25557e3830be94474373568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d7:b6:7a:e1:db:f6:44:d3:7a:6d:c1:db:f2:
07:74:ce:e1:6e:f1:b1:cd:52:1b:85:5a:c7:f0:f6:
5a:04:8e:c8:d2:9a:ef:86:95:3d:54:48:dd:db:5b:
60:85:dd:e3:f6:5c:62:ea:a4:6c:c8:a1:16:86:33:
53:0e:d9:3d:96:05:29:12:9f:f0:8e:36:e6:db:56:
f1:b7:26:af:da:6d:aa:b3:33:e5:d1:f9:cc:72:49:
81:2d:e5:06:0a:fd:4d:a9:db:f4:e3:f5:8b:50:0b:
c6:1a:2d:76:70:0b:03:b9:36:0c:4f:c0:85:c6:7a:
f0:a8:7b:a9:1d:28:0a:fd:54:ec:1f:a9:b9:1b:b9:
1b:c0:83:cb:fa:8e:50:88:1e:5f:68:86:fa:77:38:
41:fb:d6:50:b2:32:62:c1:1c:11:4a:78:20:2a:68:
ef:be:3c:50:4b:69:1e:84:3c:21:05:6f:22:ef:ec:
92:40:4b:32:c3:30:ba:22:84:86:b9:6a:fd:15:3f:
f2:98:bb:fb:dc:b4:34:4c:4a:c8:a7:f8:0d:3f:ee:
5d:19:60:c5:62:82:b6:fb:e0:50:da:a0:17:a9:a5:
b1:a4:82:d5:ed:96:e1:b8:19:c3:61:a6:25:f1:3b:
34:69:a3:3b:85:e8:d9:d8:53:51:88:94:7c:c0:23:
5a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:84:D6:71:DA:EF:D9:D8:C2:55:57:E3:83:0B:E9:44:74:37:35:68
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZoTWcdrv2djCVVfjgwvpRHQ3NWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:7e:75:c9:9d:90:63:74:4a:a7:f5:07:0b:6e:32:56:84:96:
1b:3b:31:5b:c1:fb:0a:55:69:90:84:d7:a2:b3:98:25:a2:30:
7f:82:49:1b:bb:ba:66:8e:59:59:8b:48:85:00:b8:53:0e:82:
72:2a:e9:6c:67:ee:57:98:41:e2:02:f5:ef:fe:59:34:08:b0:
a8:89:fb:22:09:43:23:f7:cc:37:ab:54:d2:b7:75:36:08:83:
65:79:1c:6c:86:ad:b2:0c:d3:7b:02:42:bc:ee:87:06:73:e2:
ca:32:3b:54:c9:14:53:bc:a2:79:94:52:ac:3f:c1:27:04:f6:
cf:2a:3a:fe:e2:61:d4:e4:9a:76:55:c8:57:55:59:fc:0d:03:
34:5c:8a:78:81:5d:0e:dc:41:97:4f:c6:66:bc:ad:fe:04:a9:
c0:53:90:cc:21:48:91:54:78:95:22:ad:dc:76:3d:b8:dd:00:
7f:79:af:78:d7:3a:d6:2a:58:e5:34:10:c5:a1:57:b5:bd:0e:
48:e2:03:a5:d6:a8:b6:d7:3e:d7:7f:78:02:2f:ed:2f:e7:bd:
70:07:cc:27:27:01:19:0f:40:f2:a4:49:98:28:6f:a8:77:87:
58:d1:5c:d2:84:56:41:43:ea:e5:1a:6c:81:e4:d1:14:0c:04:
c3:ab:70:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:22:18 2025 by rpki-client