Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/NZVj2ET5ecspkSLTgFHV6_bIEVw.roa
File: NZVj2ET5ecspkSLTgFHV6_bIEVw.roa (raw, json)
Hash identifier: zIuzX+c47wxfvuacxVZYEjvf6/qolvIorTfduI7AbIA=
Subject key identifier: 35:95:63:D8:44:F9:79:CB:29:91:22:D3:80:51:D5:EB:F6:C8:11:5C
Certificate issuer: /CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Certificate serial: 0BB8F90F
Authority key identifier: 00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/NZVj2ET5ecspkSLTgFHV6_bIEVw.roa
Signing time: Sat 01 Jan 2022 00:58:17 +0000
ROA not before: Sat 01 Jan 2022 00:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57882
IP address blocks: 185.153.92.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196671759 (0xbb8f90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Validity
Not Before: Jan 1 00:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=359563d844f979cb299122d38051d5ebf6c8115c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1a:67:ca:cc:42:0e:34:58:d1:62:3f:e0:13:
06:ac:e2:90:9c:82:e5:c0:6c:42:64:91:55:7e:8a:
98:f5:52:cf:b7:40:e6:e6:f7:07:b6:79:53:2a:a0:
7d:cb:d5:83:ed:e4:3f:d0:2b:51:b8:95:99:57:bb:
31:0d:e5:04:30:49:d6:c5:bb:1d:51:44:3d:14:39:
d8:cf:bc:96:9a:2b:13:ff:51:12:f8:a0:04:39:7f:
05:0a:f8:85:0a:04:9d:36:a9:6f:21:4f:f8:8b:e5:
c7:ef:ca:c7:a3:28:ae:30:33:25:4c:d2:1f:af:b6:
ae:49:85:76:09:ae:51:a1:77:c2:5b:90:64:9f:fe:
93:cb:30:d0:bc:c8:24:36:df:31:1f:d4:7e:c1:fc:
d8:1b:62:5d:7e:51:cd:24:37:2b:53:03:68:9c:3a:
41:c8:84:36:ce:1b:ce:95:6a:b1:ee:8e:e2:5e:cb:
6b:fa:12:78:4b:45:1a:2a:fa:bf:21:6e:2e:b6:09:
f6:3f:63:67:13:d1:b8:9b:c3:b8:7b:92:c0:be:72:
12:f3:17:6f:37:23:2e:d3:58:48:97:23:8c:13:8d:
7b:46:42:1f:78:c3:4e:dd:ac:e9:73:6d:81:eb:4e:
1c:8d:e8:e8:99:bb:09:e9:fd:70:d9:df:f6:62:f0:
ed:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:95:63:D8:44:F9:79:CB:29:91:22:D3:80:51:D5:EB:F6:C8:11:5C
X509v3 Authority Key Identifier:
keyid:00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/NZVj2ET5ecspkSLTgFHV6_bIEVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/AG5kPQtn9LMz_qzcRhbU5PPeMs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.92.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d6:02:e4:4a:88:1a:e5:f3:fd:17:b0:cb:9d:55:22:bf:ce:
74:04:cc:bb:9c:c8:1f:c1:97:56:91:f1:cd:90:c5:65:35:cd:
56:8c:1f:8b:b4:57:78:65:dd:0a:84:6e:81:48:d1:0f:07:48:
c1:25:a2:da:86:ea:2c:81:3f:3f:15:98:4b:44:04:cf:97:d8:
8a:91:d2:6a:84:56:bf:2d:bd:76:44:78:8d:c9:52:70:09:9a:
af:73:e0:75:66:26:67:d3:7e:6e:a6:c9:72:64:97:2b:d0:56:
24:cc:1a:96:33:a4:1b:ad:8e:d4:c5:18:6a:a9:40:8a:d1:4e:
fc:57:7b:e9:b3:c6:16:b8:95:77:f4:5f:1c:5f:d6:9c:89:f2:
71:48:39:40:5e:61:7e:74:15:cf:e6:81:b6:f3:12:92:a2:e5:
fd:f6:89:e4:f9:3c:7e:6f:65:13:3b:cc:18:ce:82:d9:e2:bf:
53:8e:8f:4b:5e:76:9f:db:14:9b:62:7b:0b:34:e6:78:84:0a:
ef:d3:66:57:9d:31:c5:07:ac:21:12:73:83:7d:28:53:a0:bb:
bf:5a:43:01:ab:8d:6f:4c:58:c3:ef:99:a3:62:57:d5:10:2a:
9b:1e:a8:db:cf:13:ce:a9:80:f6:d8:56:56:e8:24:ea:6f:42:
95:1a:84:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org