Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/ZZlyR1qePInNwWMshU_T-zKOIRs.roa
File: ZZlyR1qePInNwWMshU_T-zKOIRs.roa (raw, json)
Hash identifier: 1/uH+W7Kksp46/1+HMCQDG/zqQ+/+VqifvgRn9tMf2U=
Subject key identifier: 65:99:72:47:5A:9E:3C:89:CD:C1:63:2C:85:4F:D3:FB:32:8E:21:1B
Certificate issuer: /CN=b4089f84483057ac364647c80a1b23c976b93016
Certificate serial: 019423693BB9C61DCB5620105941CC41CC1C
Authority key identifier: B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/ZZlyR1qePInNwWMshU_T-zKOIRs.roa
Signing time: Wed 01 Jan 2025 19:48:06 +0000
ROA not before: Wed 01 Jan 2025 19:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20582
IP address blocks: 185.113.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:3b:b9:c6:1d:cb:56:20:10:59:41:cc:41:cc:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4089f84483057ac364647c80a1b23c976b93016
Validity
Not Before: Jan 1 19:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=659972475a9e3c89cdc1632c854fd3fb328e211b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b3:08:b2:ce:96:ed:e5:6f:05:32:62:21:97:
b1:78:d4:fd:fd:13:61:ab:3b:1f:f9:c6:f0:b3:82:
49:22:72:32:b5:f8:65:c9:7e:81:37:71:fc:61:97:
cf:7d:4b:2d:e8:8b:6d:88:fc:f8:15:08:77:c4:3f:
be:39:d2:2f:2b:a7:71:52:d8:d9:e9:85:c9:ba:a9:
61:fc:43:4e:39:ac:7c:de:0c:13:b1:e2:8e:27:44:
9c:ce:e9:91:bc:8c:87:90:70:c1:6c:24:f6:31:45:
d8:80:34:94:78:30:35:7c:30:3c:45:6e:94:41:e4:
e2:54:26:42:79:6d:6a:e9:4b:7a:64:fb:4b:05:d0:
c5:59:99:74:1a:20:9b:4f:39:01:45:bd:37:19:8b:
46:f3:fa:53:9f:a9:6e:2d:e6:3a:94:d6:a6:72:ec:
a6:81:40:fb:78:1a:1b:6d:c5:90:67:8e:1c:9c:1e:
a5:60:db:3b:ad:25:ed:63:bf:90:78:ae:f4:fa:b5:
a9:1e:55:c2:e1:b2:b2:1b:1d:dd:07:5e:47:52:9a:
04:64:c8:fc:6c:f1:94:97:36:45:40:35:f4:00:65:
81:ff:af:84:20:9b:cc:76:af:68:a2:df:8c:d7:7e:
7f:3b:1d:9a:3e:d1:60:22:df:94:ad:21:5e:28:d1:
70:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:99:72:47:5A:9E:3C:89:CD:C1:63:2C:85:4F:D3:FB:32:8E:21:1B
X509v3 Authority Key Identifier:
keyid:B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/ZZlyR1qePInNwWMshU_T-zKOIRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:0b:aa:f3:75:46:e4:7d:a5:4b:bb:c7:26:2b:5c:76:07:c1:
5c:1e:bf:24:95:b4:35:31:ac:a8:37:dc:f2:d1:6a:18:41:1b:
7d:62:e0:81:d7:7a:33:06:76:55:2e:cd:93:c7:01:02:b4:b0:
93:f7:28:96:56:a7:4e:44:d2:cb:f9:f2:82:36:23:f1:34:83:
63:7e:f2:2b:26:fa:82:e4:be:38:5d:0e:12:10:64:d2:4c:b8:
61:ea:eb:be:a1:86:56:fe:ca:ca:49:13:45:f3:28:98:6d:b4:
f3:99:24:80:3a:d4:c9:28:87:fd:4d:d3:8f:81:9b:5a:89:8a:
51:42:78:ba:f0:8d:ed:bc:ba:a5:b2:0e:23:53:3c:d0:07:51:
ef:69:71:7a:a9:c1:17:27:1d:88:d3:18:16:ba:8c:23:46:70:
22:ad:26:2d:66:55:78:bb:e4:83:d3:b8:d7:f3:58:b7:bc:65:
c5:49:0b:6e:56:89:95:26:b5:fe:61:7f:b1:d1:97:03:62:de:
75:2a:4d:2b:7e:99:ad:70:6e:17:fe:db:4e:4f:07:ad:85:2b:
60:ec:76:64:59:f9:a0:73:a9:82:1a:1e:2e:ed:eb:1f:61:26:
65:44:03:ff:d7:70:d4:bc:6d:fe:ec:a4:34:d0:1b:8b:e4:25:
5a:97:5f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:26:10 2025 by rpki-client