Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Zko72BsjzwBbVwaoUDj2_kgGQgQ.roa
File: Zko72BsjzwBbVwaoUDj2_kgGQgQ.roa (raw, json)
Hash identifier: gLLA+SCLVkqrqQlSirSgRQryH95R/1UBT3HwpoKiytQ=
Subject key identifier: 66:4A:3B:D8:1B:23:CF:00:5B:57:06:A8:50:38:F6:FE:48:06:42:04
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369C7B90114988A6B3A9E4A278C9488
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Zko72BsjzwBbVwaoUDj2_kgGQgQ.roa
Signing time: Wed 01 Jan 2025 19:48:42 +0000
ROA not before: Wed 01 Jan 2025 19:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42260
IP address blocks: 5.180.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:c7:b9:01:14:98:8a:6b:3a:9e:4a:27:8c:94:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=664a3bd81b23cf005b5706a85038f6fe48064204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:94:2b:94:45:9e:55:6e:22:ab:15:ad:2d:
d2:1d:82:a3:e5:9d:ce:20:3a:dd:9c:62:ce:7b:06:
cb:6a:c0:1b:b9:8e:3b:98:36:3f:d7:96:78:06:8c:
84:63:2c:e4:bd:7a:07:b5:23:14:0a:40:af:ab:c3:
5a:8b:6a:c6:80:0a:e4:d7:fe:dc:6d:d3:97:3c:b4:
f6:6c:21:2c:e5:52:db:fc:57:d2:92:4e:e5:c6:19:
ab:2a:da:ec:bb:d7:98:1c:65:99:3a:b2:00:2e:e7:
9c:8b:fc:c9:37:c8:95:c0:85:35:3c:98:cf:81:cc:
8c:7b:ed:ab:d7:31:03:5c:a6:60:65:81:2e:8c:88:
88:cf:f2:83:fe:cb:95:af:af:fa:ce:73:5a:39:c7:
63:e1:a1:d1:b3:e4:f3:90:b7:b8:a9:74:b3:bb:73:
94:c5:72:2d:7e:f3:61:39:c5:dd:1b:c2:90:db:63:
0b:15:1f:d6:ab:9b:22:a2:6e:92:ae:aa:dd:26:a2:
df:5a:71:d6:23:58:63:19:bc:ff:12:28:d4:e9:d0:
ad:13:a4:d8:d9:e8:2e:e8:e0:e9:41:0f:fd:94:c1:
1c:6d:99:b1:29:79:ef:78:5e:8c:51:62:1f:28:ea:
bb:32:a0:1a:1e:a4:e1:4d:52:7a:ae:66:3e:8f:2f:
3f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4A:3B:D8:1B:23:CF:00:5B:57:06:A8:50:38:F6:FE:48:06:42:04
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Zko72BsjzwBbVwaoUDj2_kgGQgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.17.0/24
Signature Algorithm: sha256WithRSAEncryption
25:88:b2:3e:b9:6d:bd:28:d4:8b:6c:a2:d8:05:d0:79:64:95:
d4:d1:f5:25:bc:c3:68:34:03:04:75:a0:78:5d:4d:32:ff:ff:
60:a8:17:66:62:a0:3a:e5:b6:eb:64:84:72:7a:9d:7d:7f:dc:
3a:2b:ea:5a:b1:a1:45:9e:02:54:bc:1b:46:9c:03:b6:7d:78:
bd:cb:b0:7b:62:25:90:c0:b7:3c:00:d9:8c:39:32:ea:ad:60:
7e:a0:0e:c2:b3:7d:db:a6:76:90:16:86:f9:79:e6:19:6f:7b:
2e:30:93:f6:a9:08:32:86:96:a7:c0:19:63:89:3d:6c:77:ab:
4f:c1:6b:c8:47:8d:07:6a:07:48:81:ef:79:59:fd:86:01:b0:
85:71:76:b1:e5:0d:e8:01:2f:48:91:1a:53:cc:80:fa:a0:91:
eb:cc:8c:56:b3:36:b7:e0:ea:30:02:18:e3:9a:d2:4d:75:48:
ff:d0:ec:84:2d:21:1a:28:ca:ab:a6:33:76:57:74:50:e0:e8:
28:85:15:ae:00:d2:42:fe:48:85:14:fb:0a:36:ce:eb:5e:33:
83:5e:57:1b:8d:45:8d:33:44:a8:61:53:24:21:b3:22:2f:6f:
42:83:6b:1b:60:69:15:d0:0e:76:bb:90:5b:1d:57:fa:27:42:
92:66:2d:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjace5ARSYims6nkonjJSIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjUwMTAxMTk0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjRhM2JkODFiMjNjZjAwNWI1NzA2YTg1MDM4ZjZmZTQ4MDY0MjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOWUK5RFnlVuIqsVrS3SHYKj5Z3O
IDrdnGLOewbLasAbuY47mDY/15Z4BoyEYyzkvXoHtSMUCkCvq8Nai2rGgArk1/7c
bdOXPLT2bCEs5VLb/FfSkk7lxhmrKtrsu9eYHGWZOrIALueci/zJN8iVwIU1PJjP
gcyMe+2r1zEDXKZgZYEujIiIz/KD/suVr6/6znNaOcdj4aHRs+TzkLe4qXSzu3OU
xXItfvNhOcXdG8KQ22MLFR/Wq5siom6SrqrdJqLfWnHWI1hjGbz/EijU6dCtE6TY
2egu6ODpQQ/9lMEcbZmxKXnveF6MUWIfKOq7MqAaHqThTVJ6rmY+jy8/dQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZKO9gbI88AW1cGqFA49v5IBkIEMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvWmtvNzJCc2p6d0JiVndhb1VEajJfa2dHUWdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbQRMA0G
CSqGSIb3DQEBCwUAA4IBAQAliLI+uW29KNSLbKLYBdB5ZJXU0fUlvMNoNAMEdaB4
XU0y//9gqBdmYqA65bbrZIRyep19f9w6K+pasaFFngJUvBtGnAO2fXi9y7B7YiWQ
wLc8ANmMOTLqrWB+oA7Cs33bpnaQFob5eeYZb3suMJP2qQgyhpanwBljiT1sd6tP
wWvIR40HagdIge95Wf2GAbCFcXax5Q3oAS9IkRpTzID6oJHrzIxWsza34OowAhjj
mtJNdUj/0OyELSEaKMqrpjN2V3RQ4OgohRWuANJC/kiFFPsKNs7rXjODXlcbjUWN
M0SoYVMkIbMiL29Cg2sbYGkV0A52u5BbHVf6J0KSZi0w
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:26 2025 by rpki-client