Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/ZBh1egGDcx_kqFuB5rwFYJ-DCqk.roa
File: ZBh1egGDcx_kqFuB5rwFYJ-DCqk.roa (raw, json)
Hash identifier: qPf12jyNTOR8FvNK30Dxf4VOzSzaf5GjSxZL2b1IF0k=
Subject key identifier: 64:18:75:7A:01:83:73:1F:E4:A8:5B:81:E6:BC:05:60:9F:83:0A:A9
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 01942521DDF6F41772F8C95AE6A77837CC5F
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/ZBh1egGDcx_kqFuB5rwFYJ-DCqk.roa
Signing time: Thu 02 Jan 2025 03:49:24 +0000
ROA not before: Thu 02 Jan 2025 03:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5577
IP address blocks: 185.5.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:dd:f6:f4:17:72:f8:c9:5a:e6:a7:78:37:cc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 2 03:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6418757a0183731fe4a85b81e6bc05609f830aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:31:bf:8b:82:b9:59:46:11:75:bd:34:33:2e:
81:de:b9:c0:07:45:2a:25:b3:9f:a9:12:b4:85:c0:
3c:1c:96:de:bb:dd:da:af:64:5f:b0:85:23:90:de:
9f:49:2c:73:06:b1:9e:bc:9d:2c:a7:2f:7e:29:80:
5c:00:6d:75:fe:d1:a4:15:20:a6:03:e8:60:8b:28:
e2:e3:23:d4:c1:ef:8c:c8:a2:15:1e:fa:87:70:c3:
18:33:b5:42:69:0c:e8:af:97:81:d9:4e:a9:ae:31:
c3:e9:ed:d4:0b:97:12:30:27:e7:b1:d6:c6:52:e3:
1c:e8:fd:7c:6f:55:8f:48:82:6d:2b:6b:c6:92:ff:
3e:9b:69:1d:62:90:3b:52:e4:7f:2b:bf:a0:80:34:
22:31:88:23:4a:21:64:76:2a:83:40:07:39:1c:05:
4d:d7:10:d3:d2:fd:5d:5b:57:24:a2:b5:bf:d3:ed:
8b:f9:f2:ab:53:e9:81:21:96:8d:c0:17:f1:4e:f5:
30:08:bc:6f:9f:46:c7:0e:2c:c2:ea:b0:06:b5:fc:
cc:17:26:f8:d1:a6:49:39:9c:f0:2b:fc:d1:fd:dc:
e8:d4:73:99:9e:c7:ad:e5:44:ce:91:5e:d8:70:cc:
6b:6f:a4:78:c2:5d:43:4a:87:4a:14:9d:e4:70:6a:
bc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:18:75:7A:01:83:73:1F:E4:A8:5B:81:E6:BC:05:60:9F:83:0A:A9
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/ZBh1egGDcx_kqFuB5rwFYJ-DCqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.45.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e3:b1:8a:a0:57:71:e5:1c:10:80:69:af:cb:31:ea:a1:c9:
99:f6:ae:6c:46:df:46:18:08:67:db:fe:00:a3:63:40:04:90:
81:91:f5:43:2f:8f:ca:f8:ed:9b:a9:4b:68:2d:40:41:26:b9:
78:61:3e:0a:2a:a1:e9:1b:dc:b8:5d:10:43:2f:cb:38:16:5d:
ad:80:6c:39:7d:5d:ec:d6:8b:eb:2a:5f:d6:30:f8:9d:35:8d:
c9:b7:92:d3:23:e4:3c:c2:09:68:1e:73:4d:5c:de:ad:1b:1b:
d5:05:d7:be:72:e2:3b:d4:b9:a2:e1:f7:6d:8c:30:f0:75:60:
27:ba:b9:e1:e0:e2:44:2f:5b:af:a9:4b:57:b7:c1:10:b7:db:
98:81:3f:46:6b:67:fc:77:98:83:e8:0f:1d:96:a8:a5:a5:ce:
e5:f1:5b:39:03:cf:46:2f:a9:4e:ee:e4:ce:a6:a8:3c:f3:7f:
f7:b6:3e:2d:e3:bb:31:55:83:32:27:b1:5a:94:e2:1f:67:0d:
9e:57:82:8b:75:09:52:bb:cb:ea:a3:e6:29:6e:e9:fb:1a:23:
89:7d:b4:86:9e:b1:ff:bf:54:c4:5a:c7:b1:b6:33:2b:ca:ab:
cf:92:0c:59:00:53:4d:c6:7c:5d:c3:77:71:bc:a7:ec:a7:58:
e9:71:9f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:11:57 2025 by rpki-client