Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/f9f131-2ded-4754-884c-c9a80f53fc0e/1/Z2JDU3PNXto61tujLWtOdksDxYw.roa
File: Z2JDU3PNXto61tujLWtOdksDxYw.roa (raw, json)
Hash identifier: XDiLVtUbcUm1U7CtOsqMZFEyrN50eh3zLLtFQ3J984U=
Subject key identifier: 67:62:43:53:73:CD:5E:DA:3A:D6:DB:A3:2D:6B:4E:76:4B:03:C5:8C
Certificate issuer: /CN=58c3c43b444ca835cc76f4c4c3c639752ed1aa7b
Certificate serial: 019422202383AFD41DA7FF859410505EABFB
Authority key identifier: 58:C3:C4:3B:44:4C:A8:35:CC:76:F4:C4:C3:C6:39:75:2E:D1:AA:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WMPEO0RMqDXMdvTEw8Y5dS7Rqns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/f9f131-2ded-4754-884c-c9a80f53fc0e/1/Z2JDU3PNXto61tujLWtOdksDxYw.roa
Signing time: Wed 01 Jan 2025 13:48:39 +0000
ROA not before: Wed 01 Jan 2025 13:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29331
IP address blocks: 195.149.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:23:83:af:d4:1d:a7:ff:85:94:10:50:5e:ab:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58c3c43b444ca835cc76f4c4c3c639752ed1aa7b
Validity
Not Before: Jan 1 13:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6762435373cd5eda3ad6dba32d6b4e764b03c58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:af:58:68:64:61:68:2e:57:f6:d6:a8:88:2e:
ba:5a:b0:45:10:09:f7:58:1a:49:af:cc:4d:d7:9d:
b6:1b:b5:06:56:a1:41:a0:9b:b7:25:f3:f6:72:06:
73:8f:a1:af:eb:9a:2b:8c:c8:e4:00:7b:c8:37:ea:
d0:0c:6f:f9:03:05:b4:9f:74:37:22:55:4f:19:d9:
f9:6d:67:f9:08:af:fc:9e:89:35:7b:13:d3:c2:11:
18:69:77:55:d6:2b:5a:ad:d3:6f:41:1f:45:ce:b3:
17:02:e0:d3:8b:a4:c3:28:a7:cf:3e:be:91:9b:a5:
08:e3:1b:e6:d4:f6:9c:34:b6:78:26:bb:b3:60:7d:
a5:ce:26:28:5a:c2:d8:6c:2c:4c:da:78:07:35:73:
3e:e3:d6:ad:d8:cc:e6:26:be:6d:f3:dc:9c:e7:a4:
f8:d4:a9:6c:f5:74:bb:af:a3:e5:3b:c9:a0:16:5c:
a1:2c:0e:7d:41:b4:a5:17:7a:23:94:30:91:18:fd:
f2:71:dd:7c:1a:42:87:1c:10:e9:80:f0:65:a7:f8:
1b:db:25:3a:8d:83:f3:f1:13:1a:82:df:17:5f:c2:
cc:bf:65:d0:fc:69:44:ff:7b:1d:a2:6c:8e:55:26:
05:dc:a8:7f:cf:40:ce:f9:23:3d:61:3b:08:4d:57:
71:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:62:43:53:73:CD:5E:DA:3A:D6:DB:A3:2D:6B:4E:76:4B:03:C5:8C
X509v3 Authority Key Identifier:
keyid:58:C3:C4:3B:44:4C:A8:35:CC:76:F4:C4:C3:C6:39:75:2E:D1:AA:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WMPEO0RMqDXMdvTEw8Y5dS7Rqns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f9f131-2ded-4754-884c-c9a80f53fc0e/1/Z2JDU3PNXto61tujLWtOdksDxYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f9f131-2ded-4754-884c-c9a80f53fc0e/1/WMPEO0RMqDXMdvTEw8Y5dS7Rqns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:b2:43:83:81:83:dc:7c:4c:c9:dd:fd:ff:2e:96:c2:27:1a:
95:12:c8:7e:77:4c:bb:5a:1b:56:11:2c:69:23:8c:8b:87:1c:
f1:a4:4e:9d:06:fa:2c:fa:3e:ff:1a:8e:41:ae:e6:79:2e:67:
10:83:0d:63:45:a5:f1:fe:a0:99:c3:91:e3:2a:dd:2a:8e:dc:
87:77:32:66:b7:1c:cb:15:a8:c1:58:dc:01:bc:76:f2:15:33:
42:44:1f:d2:cf:c3:2d:55:1e:59:d2:3b:58:19:75:c1:90:b5:
f6:81:bf:d7:5e:98:23:cf:dd:3d:c3:7a:5e:43:df:29:8b:1c:
71:75:39:60:e6:80:8c:d7:8b:81:99:64:fc:3f:de:60:66:93:
95:e8:fa:99:4e:ac:91:a4:2b:08:04:ac:15:0c:f2:a9:6a:fe:
1b:b7:52:d3:23:51:44:15:85:e4:ce:78:50:0d:57:82:4a:5d:
e7:62:b3:ea:7d:a0:ab:38:12:5a:df:74:ea:3f:f5:6f:c4:d1:
78:29:89:05:a1:8f:3f:42:34:c9:09:5d:44:ba:95:a8:2e:c3:
b0:b0:f8:2d:09:92:fb:f1:53:2e:28:e8:b4:86:46:28:9c:27:
1c:7d:e5:19:57:3f:62:c2:66:77:c6:58:38:f8:76:56:ce:70:
3c:52:84:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:21:12 2025 by rpki-client