Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/pzvcpDDhvi10KrgM-qKA1pEZ_qg.roa
File: pzvcpDDhvi10KrgM-qKA1pEZ_qg.roa (raw, json)
Hash identifier: WX5PctKqv4adnDonwgnyO2bXyB9bFc4fhtv3s1FFy/k=
Subject key identifier: A7:3B:DC:A4:30:E1:BE:2D:74:2A:B8:0C:FA:A2:80:D6:91:19:FE:A8
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEDE506001C76C1022FE360D218E9E
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/pzvcpDDhvi10KrgM-qKA1pEZ_qg.roa
Signing time: Tue 26 Nov 2024 13:35:10 +0000
ROA not before: Tue 26 Nov 2024 13:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20362
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:de:50:60:01:c7:6c:10:22:fe:36:0d:21:8e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a73bdca430e1be2d742ab80cfaa280d69119fea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fa:c1:1d:26:2f:34:37:c2:25:d1:18:7c:dc:
b9:9a:43:eb:86:ba:45:a8:15:00:97:7d:a6:01:26:
92:37:63:4a:b0:be:78:27:a4:f1:04:7f:92:74:e4:
d3:c6:b8:ac:5b:97:e7:39:67:f9:08:13:b2:79:ae:
19:84:5f:84:3b:86:0f:8c:00:f0:85:53:d0:a2:30:
11:f3:83:9f:70:4e:60:96:23:97:c7:59:77:b1:2f:
53:6c:1d:c6:35:65:ca:97:51:16:cc:d3:4c:50:b4:
8b:5e:ed:d2:3c:93:5a:ad:6d:76:52:70:39:05:3e:
45:2c:26:6e:38:31:54:e4:c2:43:a2:1b:44:cb:26:
1b:09:2c:4f:d4:2e:f4:a3:d4:ed:6f:81:a7:c0:9b:
e0:a7:3e:2a:2a:a5:71:e8:96:dd:cc:9e:ff:ed:b4:
68:9f:ce:ca:c9:69:87:08:c5:a0:6b:24:4f:53:26:
83:e2:e7:ca:df:a6:b8:78:94:4a:13:46:78:74:ab:
97:57:a6:18:30:7a:6b:3a:d5:79:7d:c9:e1:7c:a1:
b8:6c:0c:3c:c5:a5:4a:0a:ce:e7:ab:db:40:e2:23:
32:1d:b9:02:b0:42:8d:58:2f:7d:02:5b:24:b6:68:
1e:04:ca:16:f1:55:29:97:9c:5d:df:2b:35:ae:ee:
21:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3B:DC:A4:30:E1:BE:2D:74:2A:B8:0C:FA:A2:80:D6:91:19:FE:A8
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/pzvcpDDhvi10KrgM-qKA1pEZ_qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
6c:5d:00:c2:ec:a1:3e:9e:96:93:51:82:29:6c:86:8d:9c:8d:
85:ac:73:3d:6a:5d:20:90:42:14:33:b5:e7:61:58:bc:89:60:
7d:ff:f8:8d:a0:27:ca:a8:da:18:81:5a:9a:75:89:b7:2b:50:
a2:e3:87:ec:c6:21:66:ef:97:52:77:b3:da:19:ba:1c:9c:af:
6a:90:f5:ed:6b:e4:a7:7a:a9:a4:89:02:55:d4:49:24:78:56:
f2:0e:9a:2e:79:fb:4a:2f:47:5e:5c:16:c2:cb:7a:4b:f6:54:
84:cc:37:09:aa:31:bb:16:98:8b:ed:6c:d8:86:f1:81:fb:25:
15:8e:28:e2:32:de:e7:29:58:18:be:9c:57:c7:f3:ea:3f:0c:
56:de:31:ce:e0:dc:b5:3c:34:18:8d:1f:75:66:b2:38:7b:b4:
b7:fb:5a:ea:14:2b:70:40:56:64:b8:07:10:f2:af:0b:1d:39:
0d:28:ac:64:b0:99:c8:14:19:7d:33:5b:db:ad:6b:96:7a:39:
f8:bd:e2:5d:d1:66:2f:97:6a:39:21:14:03:fb:fc:60:7f:ed:
3e:e0:c1:d2:8a:3f:d2:b6:74:8e:d6:b1:58:a6:a1:a7:87:5b:
d3:d9:4f:81:36:b6:70:53:e3:46:ec:3f:ae:12:73:c3:74:d7:
e7:01:51:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:03 2025 by rpki-client