Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/bc6694-1417-49fe-b4c5-412b4767ac45/1/zPNwPn3PfVOL4wGom7HVDS4IKn8.roa
File: zPNwPn3PfVOL4wGom7HVDS4IKn8.roa (raw, json)
Hash identifier: zy7voOzOVbZPTN+jLWETC47nf/PEol3aN9sp5d/kZvA=
Subject key identifier: CC:F3:70:3E:7D:CF:7D:53:8B:E3:01:A8:9B:B1:D5:0D:2E:08:2A:7F
Certificate issuer: /CN=1822551876a3a626599f467c7ae709b81c14df49
Certificate serial: 0194252159588403CB20892F16BF63DB07BA
Authority key identifier: 18:22:55:18:76:A3:A6:26:59:9F:46:7C:7A:E7:09:B8:1C:14:DF:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GCJVGHajpiZZn0Z8eucJuBwU30k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/bc6694-1417-49fe-b4c5-412b4767ac45/1/zPNwPn3PfVOL4wGom7HVDS4IKn8.roa
Signing time: Thu 02 Jan 2025 03:48:50 +0000
ROA not before: Thu 02 Jan 2025 03:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13213
IP address blocks: 185.225.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:59:58:84:03:cb:20:89:2f:16:bf:63:db:07:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1822551876a3a626599f467c7ae709b81c14df49
Validity
Not Before: Jan 2 03:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ccf3703e7dcf7d538be301a89bb1d50d2e082a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:53:a4:53:3d:fa:54:59:cf:38:40:e3:7e:16:
7b:b8:49:1f:e3:d1:7a:f0:f4:d1:28:ea:eb:a7:41:
4b:27:3d:a1:cc:99:3c:36:7d:a4:83:84:45:38:ac:
1f:4a:b2:6a:fa:39:af:65:a3:35:c4:04:86:96:fe:
8e:c1:c7:ce:b8:f8:da:17:a2:1b:b0:5b:91:1a:1c:
e1:4a:b1:ce:9a:17:a1:ee:15:23:ee:f7:6a:fb:29:
6f:3a:4f:8e:ba:5e:2e:7d:bc:25:2c:72:70:47:46:
5c:0c:7a:45:f8:6f:f6:05:31:57:66:61:56:74:a0:
4a:33:e0:74:92:b0:fb:3e:42:93:1d:65:78:2b:4d:
fa:e2:4a:33:2e:d9:5b:84:ec:f8:a2:21:81:bc:e5:
e4:a2:5f:13:50:fd:4b:0e:67:37:42:1c:8f:e6:c0:
fc:ac:59:df:40:73:17:74:cc:3a:a6:83:f8:74:22:
44:35:7d:ce:75:f3:b8:7c:3a:ba:f9:c7:10:a2:65:
7f:a6:a1:ec:54:4f:75:46:a8:bf:22:49:de:5b:e3:
5d:06:fa:90:57:69:9e:8f:43:64:d6:4d:03:a0:aa:
e8:27:18:ea:c9:c9:46:f4:61:67:b3:86:a5:0c:3e:
8b:ed:8e:60:1e:52:2c:05:4a:87:03:f1:df:99:b1:
e4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F3:70:3E:7D:CF:7D:53:8B:E3:01:A8:9B:B1:D5:0D:2E:08:2A:7F
X509v3 Authority Key Identifier:
keyid:18:22:55:18:76:A3:A6:26:59:9F:46:7C:7A:E7:09:B8:1C:14:DF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GCJVGHajpiZZn0Z8eucJuBwU30k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bc6694-1417-49fe-b4c5-412b4767ac45/1/zPNwPn3PfVOL4wGom7HVDS4IKn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bc6694-1417-49fe-b4c5-412b4767ac45/1/GCJVGHajpiZZn0Z8eucJuBwU30k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.208.0/22
Signature Algorithm: sha256WithRSAEncryption
65:07:25:f4:4d:ba:93:2c:9d:58:2d:18:3c:9c:1d:57:74:d5:
57:eb:4f:91:db:5d:d3:b5:bb:11:ce:b1:90:4b:50:83:36:08:
c7:11:bb:5b:77:63:32:7f:a1:c8:15:62:8e:b0:d3:ab:36:d2:
ff:e5:74:97:b6:80:9a:3b:44:06:d5:74:63:60:1e:c4:81:c8:
2d:6a:c5:fe:5a:39:da:2b:08:75:8e:42:2b:5d:5d:48:e5:03:
20:ef:e3:ba:3a:54:a6:39:ae:2d:a7:90:ee:8b:40:56:75:c8:
7e:93:8a:2e:34:57:3f:40:f2:6e:60:a2:b9:1b:3b:86:ca:28:
36:d3:56:ed:e7:ee:e9:fe:43:56:ba:fb:b9:4f:26:9b:72:d7:
09:19:2b:bd:33:fe:8b:d3:76:de:d7:ef:f2:8c:c9:a8:c9:df:
12:bf:69:ea:6f:88:32:38:65:9a:d3:75:7f:fa:43:f2:81:6a:
69:be:90:b7:3f:c5:c1:f7:63:58:d2:3f:98:e8:14:07:e0:12:
24:19:ac:05:bf:b8:6c:bb:37:ee:89:7c:81:93:2d:33:d8:0b:
96:98:69:0b:9e:ce:f4:b9:ae:cd:7e:f0:d2:fe:42:2e:59:fc:
79:70:c2:50:a1:90:d2:02:3d:ab:62:13:e0:19:8c:03:0d:40:
6b:07:0d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:18:14 2025 by rpki-client