Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5e9ad7-a5f4-4cb4-a319-2f352d64aac8/1/zOxwHP9C2XU1qxc9gfabChAW270.roa
File: zOxwHP9C2XU1qxc9gfabChAW270.roa (raw, json)
Hash identifier: pIK3P+kNzEGWKFk3LxEQ0gUxs9HATfITXq/XpRc4TCU=
Subject key identifier: CC:EC:70:1C:FF:42:D9:75:35:AB:17:3D:81:F6:9B:0A:10:16:DB:BD
Certificate issuer: /CN=555cc0b60855cfe15a91ebcb0ee584c617116fb7
Certificate serial: 01942444DBD77FBBFB8D0B9E87395A127D63
Authority key identifier: 55:5C:C0:B6:08:55:CF:E1:5A:91:EB:CB:0E:E5:84:C6:17:11:6F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VVzAtghVz-FakevLDuWExhcRb7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/5e9ad7-a5f4-4cb4-a319-2f352d64aac8/1/zOxwHP9C2XU1qxc9gfabChAW270.roa
Signing time: Wed 01 Jan 2025 23:47:59 +0000
ROA not before: Wed 01 Jan 2025 23:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207773
IP address blocks: 195.114.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:db:d7:7f:bb:fb:8d:0b:9e:87:39:5a:12:7d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=555cc0b60855cfe15a91ebcb0ee584c617116fb7
Validity
Not Before: Jan 1 23:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ccec701cff42d97535ab173d81f69b0a1016dbbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:c4:4d:5b:8b:69:e1:60:62:28:c2:a4:0b:
3a:13:79:c9:e9:3a:de:fa:9b:d0:8f:56:62:a7:50:
c5:76:72:a7:c7:8d:36:7c:21:be:88:f0:dc:cb:e3:
c0:ab:27:c0:d0:0c:3c:92:92:ab:00:5a:28:3c:32:
21:48:04:f3:89:bf:54:0a:c4:3d:ef:d7:9d:e6:2e:
9f:5a:44:8f:e8:55:48:d9:ce:37:bf:0b:62:fa:68:
e2:a4:32:cb:10:43:d3:2b:f8:50:0e:f0:a0:7c:e8:
0b:a6:25:a5:75:17:ea:a5:fb:30:19:3e:98:1e:fd:
6a:96:2c:e2:34:ed:72:a5:c7:74:8c:b1:1b:7c:86:
ad:61:13:cf:29:53:9c:79:67:c2:00:41:56:98:d3:
0f:32:46:b1:42:18:eb:5b:cc:74:40:71:bc:2b:b9:
a4:da:5c:37:48:e2:ed:c3:5e:0b:d9:6e:a2:ea:d4:
66:92:ae:ef:ed:c1:e2:13:b6:fd:fe:cf:9e:15:c4:
6f:2d:44:a8:6d:c9:24:35:f3:b6:fa:ff:f1:bc:d3:
b7:b5:d1:b5:6a:0c:d9:de:5b:7c:09:2d:ef:e2:23:
bb:27:ff:a5:46:d1:f3:23:af:da:20:76:f5:19:ec:
17:9e:cc:e6:e8:02:75:f5:d5:ec:59:2b:58:10:d9:
fb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:EC:70:1C:FF:42:D9:75:35:AB:17:3D:81:F6:9B:0A:10:16:DB:BD
X509v3 Authority Key Identifier:
keyid:55:5C:C0:B6:08:55:CF:E1:5A:91:EB:CB:0E:E5:84:C6:17:11:6F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VVzAtghVz-FakevLDuWExhcRb7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5e9ad7-a5f4-4cb4-a319-2f352d64aac8/1/zOxwHP9C2XU1qxc9gfabChAW270.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5e9ad7-a5f4-4cb4-a319-2f352d64aac8/1/VVzAtghVz-FakevLDuWExhcRb7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.113.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:8a:7a:34:9f:6e:52:2a:48:0a:a8:98:a2:9f:46:ef:e3:50:
3a:0c:83:4a:3f:c5:5a:37:73:4f:eb:ae:79:80:7c:fd:fb:e8:
b2:8a:aa:2a:75:ce:5c:89:9c:3b:a5:71:6c:7e:52:5a:67:6f:
fb:b1:57:cb:ce:16:9b:16:eb:95:80:ad:7f:a2:0f:76:d3:01:
26:f0:63:ba:26:8f:a6:01:a9:c3:b9:84:fd:49:aa:2c:e5:84:
22:77:4b:6e:cb:15:7d:49:46:ef:4c:87:05:6c:62:07:44:5d:
55:e2:18:e1:d8:c4:54:37:b1:61:65:44:23:d7:ef:2e:7d:e4:
78:39:6a:61:b3:66:13:80:5e:29:d0:43:d8:9c:c2:ec:6e:57:
48:39:e9:08:5b:05:af:62:90:bd:bd:99:51:e1:ab:5b:7b:59:
80:ce:c5:c0:52:ad:de:f7:68:eb:c8:80:da:bd:22:71:28:6a:
ec:69:46:99:33:c0:33:7f:06:44:4a:11:47:b0:ad:9d:62:1c:
57:06:13:61:c9:f0:3f:ec:2f:80:85:f4:48:b6:f8:a1:6a:77:
05:35:af:43:0e:cd:c1:98:e7:b6:cc:7b:4b:a0:7f:5e:0c:96:
50:46:11:c9:4e:78:5f:40:11:90:8e:72:99:ba:7d:ac:5a:bf:
29:cb:b4:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:10:12 2025 by rpki-client