Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ZRRxPbfr3T5fwg8-wjb9lv3qVwg.roa
File: ZRRxPbfr3T5fwg8-wjb9lv3qVwg.roa (raw, json)
Hash identifier: DrdbTDlKovuFbmXE4ZKs0XewzPvJ/cJli+ild7wio3o=
Subject key identifier: 65:14:71:3D:B7:EB:DD:3E:5F:C2:0F:3E:C2:36:FD:96:FD:EA:57:08
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019423D801A17C7AF269C685EED1C688B8B7
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ZRRxPbfr3T5fwg8-wjb9lv3qVwg.roa
Signing time: Wed 01 Jan 2025 21:49:06 +0000
ROA not before: Wed 01 Jan 2025 21:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 401152
IP address blocks: 185.216.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d8:01:a1:7c:7a:f2:69:c6:85:ee:d1:c6:88:b8:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Jan 1 21:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6514713db7ebdd3e5fc20f3ec236fd96fdea5708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e2:42:6d:af:c5:79:dc:85:93:38:90:3b:27:
1e:03:a2:c2:b4:62:f5:b6:46:25:70:b4:74:28:67:
22:70:16:19:cf:b8:3a:a0:0b:22:8e:e7:a7:00:3b:
3b:6c:6a:d5:3b:a0:ba:9a:93:3c:82:98:87:06:74:
9d:5a:3e:c6:c7:84:59:a1:0e:9a:7a:a0:34:55:6c:
3c:53:2b:ac:e7:ab:b1:69:2b:0e:5e:c6:aa:3a:d5:
9d:6f:5f:fd:43:e4:c6:26:e5:6c:55:fd:8d:68:86:
39:be:ac:46:ef:b7:9c:0d:38:ae:85:82:f5:b8:3d:
56:b6:b1:7d:04:d2:f3:d9:ab:f1:99:a3:f0:a7:86:
cd:6d:85:6a:94:26:91:4f:6b:2b:76:70:1b:61:fb:
63:be:d1:ef:0d:b4:2a:37:23:41:02:84:65:c8:e2:
7a:4a:c1:bb:5b:22:12:25:84:25:c6:77:36:af:33:
58:71:81:f0:1f:50:f3:7c:05:9a:41:e3:db:58:93:
b6:a2:c9:79:85:84:ac:69:ea:d6:b2:8e:2d:aa:11:
28:3c:78:56:d9:10:0c:f1:2f:3b:03:c5:5e:b1:63:
aa:d5:e3:05:c5:5f:e6:8c:a0:62:54:29:95:7d:16:
e0:5f:ec:ec:9d:ba:7d:e3:39:13:5b:38:78:dc:0a:
40:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:14:71:3D:B7:EB:DD:3E:5F:C2:0F:3E:C2:36:FD:96:FD:EA:57:08
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ZRRxPbfr3T5fwg8-wjb9lv3qVwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.104.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:93:ae:1f:94:23:b6:e2:d5:eb:49:c9:e2:df:00:aa:b2:a5:
e2:5e:17:f5:4b:71:39:17:d3:74:19:ec:9d:97:b7:8f:1d:c7:
2c:d4:5c:b6:47:76:eb:5f:d0:ce:cb:50:27:33:6b:c6:b8:33:
ab:a9:9d:ac:01:ad:b4:6d:b6:f7:e0:65:aa:c2:bc:00:ae:93:
56:dc:c3:9a:db:ff:2b:69:2e:e4:38:74:15:8a:92:b5:a3:9f:
52:49:db:d2:ea:f4:4b:88:ab:25:c5:9b:19:13:64:03:d5:c7:
af:97:ab:4f:69:df:b7:e6:2e:16:93:2a:af:8d:91:27:f7:2e:
09:5f:85:40:16:87:98:dc:cb:ce:c7:59:c9:20:01:a6:e2:a4:
29:58:86:94:bb:ec:8f:ea:51:93:71:83:af:06:b3:65:03:85:
81:a2:69:43:6c:e7:14:00:b9:c8:17:54:73:23:4d:72:e8:bc:
7d:68:a9:8f:0e:60:64:5c:a5:ab:ca:48:05:fa:f8:da:cc:c2:
9f:dc:86:5a:10:d6:7d:da:13:45:93:1c:32:15:47:fc:5f:66:
56:ec:65:5f:c2:4b:20:b0:78:2e:f4:58:0c:58:d8:31:f6:cc:
69:08:36:3b:70:d2:bb:b6:6a:4f:9a:54:bf:04:2f:57:c8:89:
eb:f0:a3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:59 2025 by rpki-client