Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/26536a-dd3f-4cac-ac83-65914109c34d/1/RZS7KSo_98sPn6_NOvnqIz787NE.roa
File: RZS7KSo_98sPn6_NOvnqIz787NE.roa (raw, json)
Hash identifier: Uf7xhTjuTP01HrQcVUix9DjmoSoWWxrPxnUITmIoxCI=
Subject key identifier: 45:94:BB:29:2A:3F:F7:CB:0F:9F:AF:CD:3A:F9:EA:23:3E:FC:EC:D1
Certificate issuer: /CN=23a083f6a090e3b8b6515febd5549947fcbc8789
Certificate serial: 2978E39E
Authority key identifier: 23:A0:83:F6:A0:90:E3:B8:B6:51:5F:EB:D5:54:99:47:FC:BC:87:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6CD9qCQ47i2UV_r1VSZR_y8h4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/26536a-dd3f-4cac-ac83-65914109c34d/1/RZS7KSo_98sPn6_NOvnqIz787NE.roa
Signing time: Sat 01 Jan 2022 09:55:22 +0000
ROA not before: Sat 01 Jan 2022 09:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 185.142.34.0/23 maxlen: 23
185.15.209.0/24 maxlen: 24
185.15.208.0/24 maxlen: 24
185.142.32.0/24 maxlen: 24
185.15.211.0/24 maxlen: 24
185.142.35.0/24 maxlen: 24
185.15.210.0/24 maxlen: 24
2a03:afc0:5::/48 maxlen: 48
2a03:afc0::/48 maxlen: 48
2a03:afc0:3::/48 maxlen: 48
2a03:afc0:4::/48 maxlen: 48
2a03:afc0:7::/48 maxlen: 48
2a03:afc0:2::/48 maxlen: 48
2a03:afc0:8::/48 maxlen: 48
2a03:afc0:6::/48 maxlen: 48
2a03:afc0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 695788446 (0x2978e39e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a083f6a090e3b8b6515febd5549947fcbc8789
Validity
Not Before: Jan 1 09:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4594bb292a3ff7cb0f9fafcd3af9ea233efcecd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3f:d6:d4:e0:92:23:09:16:ea:d1:68:b8:09:
cf:21:df:e2:d9:d1:ca:52:da:f9:01:d9:d5:d1:ea:
63:a8:77:90:35:6c:9b:34:71:17:b1:43:8a:bf:4d:
57:8b:86:39:1c:85:c0:6e:63:3e:2f:18:93:83:8a:
31:af:58:f3:35:d9:6b:d3:3f:b1:a5:45:4f:c6:c0:
ce:86:26:c7:9b:38:5e:e5:6e:f7:0d:cf:f6:94:c2:
c0:d6:c5:b8:c4:ec:48:c6:09:28:57:c0:f5:27:c2:
7e:b2:57:4f:1a:ec:6d:84:1f:0f:a6:d7:4b:74:73:
2f:81:93:dc:ca:d2:eb:c4:f6:ed:53:a4:f5:24:f8:
ba:f8:e3:05:fc:fd:e0:3b:3e:f0:8e:4a:8b:a5:35:
4f:0f:2c:5c:01:69:e4:2c:a8:cf:81:c1:73:fd:6a:
c1:d6:72:80:23:30:76:5b:04:e4:fa:93:d2:c9:11:
66:fb:b2:5a:cb:83:bc:e9:cb:14:88:69:80:a0:b7:
e7:9a:44:43:7e:a2:af:3f:df:ab:ce:2b:b9:cb:b8:
25:af:92:e9:47:dc:7e:4a:b0:4d:69:91:32:e3:3e:
08:57:64:29:c7:6d:ea:e5:e5:38:b0:8d:29:43:2e:
54:72:b4:8b:91:1d:0c:06:76:aa:c9:af:af:22:49:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:94:BB:29:2A:3F:F7:CB:0F:9F:AF:CD:3A:F9:EA:23:3E:FC:EC:D1
X509v3 Authority Key Identifier:
keyid:23:A0:83:F6:A0:90:E3:B8:B6:51:5F:EB:D5:54:99:47:FC:BC:87:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6CD9qCQ47i2UV_r1VSZR_y8h4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/26536a-dd3f-4cac-ac83-65914109c34d/1/RZS7KSo_98sPn6_NOvnqIz787NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/26536a-dd3f-4cac-ac83-65914109c34d/1/I6CD9qCQ47i2UV_r1VSZR_y8h4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.208.0/22
185.142.32.0/24
185.142.34.0/23
IPv6:
2a03:afc0::-2a03:afc0:8:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
73:9c:bc:81:c4:39:1b:31:0b:e5:33:de:fb:2e:02:be:7c:28:
22:e5:bc:09:1a:6b:aa:67:bf:10:59:87:8f:56:2c:2c:cc:55:
ef:6e:0c:d2:ed:d7:e2:92:61:fd:74:7e:ce:a6:ae:0f:cb:1e:
f1:f0:75:9a:c1:ba:eb:16:ab:a5:79:40:8d:b9:d1:1d:e1:03:
6d:05:8d:e4:fe:a1:09:ca:44:be:e0:7a:90:fe:4e:d6:d6:9d:
06:a2:5c:dd:1e:81:fa:0e:f8:9f:53:e2:fd:60:be:32:33:5b:
ca:5f:c4:44:fa:d2:4d:a3:91:73:c0:5b:2e:15:d9:5d:73:92:
f3:99:ad:ae:87:84:e0:20:8f:c6:5f:99:be:89:e7:16:c9:22:
c6:46:e4:51:59:44:75:b2:6c:2e:ea:e6:3a:bf:73:50:d5:28:
6f:61:5b:65:16:8a:a2:4a:ed:11:c4:a3:68:56:94:43:aa:b4:
2c:d0:fc:19:42:26:d4:fd:eb:a4:4a:03:41:b8:f0:82:7b:83:
6d:67:ec:4d:48:ea:a4:32:42:12:aa:fd:21:f9:f2:f7:60:6b:
59:26:25:e8:f4:fe:bf:23:58:a6:19:9d:83:72:d8:31:b8:99:
e7:3f:3d:07:07:33:9c:8d:aa:dd:fe:a8:86:be:18:ed:18:86:
48:b2:de:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:05:28 2025 by rpki-client