Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ZRtEKprj3wplOitdrWmLyq0jAb0.roa
File: ZRtEKprj3wplOitdrWmLyq0jAb0.roa (raw, json)
Hash identifier: KD4NevO+M19nCDizOBiZaAZYkhkWJHsawRI54zUVLj4=
Subject key identifier: 65:1B:44:2A:9A:E3:DF:0A:65:3A:2B:5D:AD:69:8B:CA:AD:23:01:BD
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 0453EDCA
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ZRtEKprj3wplOitdrWmLyq0jAb0.roa
Signing time: Wed 11 May 2022 06:17:01 +0000
ROA not before: Wed 11 May 2022 06:17:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 213.225.238.0/24 maxlen: 24
45.146.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72609226 (0x453edca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: May 11 06:17:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=651b442a9ae3df0a653a2b5dad698bcaad2301bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:77:f6:d5:86:55:76:8a:46:31:23:de:27:0e:
01:4a:79:de:6f:cd:33:7c:7b:b9:ad:19:7b:96:ed:
85:e9:db:db:45:dd:d8:cb:23:8e:50:c1:bd:db:63:
90:d2:f8:e9:ef:14:b9:45:4f:c3:b0:a8:10:e2:e6:
14:a7:8c:29:80:40:e7:a3:76:dd:ba:31:00:f7:96:
84:bf:d4:0d:d1:3a:db:c4:24:75:40:df:db:91:f6:
1d:4b:27:60:d9:aa:7a:cc:f1:7f:b5:d9:ac:8b:54:
87:76:ca:5d:be:89:8a:da:1a:e5:a3:f4:7d:56:82:
05:9b:44:b6:d3:e4:6f:1f:12:a4:69:23:75:03:c2:
e6:60:11:7d:d6:03:37:a5:63:75:a2:17:c7:ba:5a:
de:12:cd:ab:7e:4d:2a:51:26:f7:ab:82:78:d0:9d:
78:10:87:7e:8d:c2:56:07:05:8e:00:58:7c:5c:76:
99:a5:05:b1:f2:3a:ed:91:07:a7:aa:fa:43:53:be:
8b:f1:fd:0a:37:f4:c2:c3:a5:a6:fa:8d:ac:e7:c2:
d7:ca:78:42:78:dd:0d:84:c8:f0:80:51:12:98:69:
85:4a:3e:7b:4c:14:90:4b:08:7a:d6:59:7f:ec:82:
d0:b2:92:17:ec:1d:e4:48:00:99:64:38:f7:8d:8c:
f5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1B:44:2A:9A:E3:DF:0A:65:3A:2B:5D:AD:69:8B:CA:AD:23:01:BD
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ZRtEKprj3wplOitdrWmLyq0jAb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.107.0/24
213.225.238.0/24
Signature Algorithm: sha256WithRSAEncryption
97:e9:67:65:64:a6:9e:34:37:de:19:82:ba:9d:9e:1c:c1:c3:
e2:a7:91:93:86:e0:35:a3:d0:af:aa:0e:8b:71:97:43:06:76:
8c:5b:5b:ab:ee:2b:a0:8c:49:01:16:55:83:88:95:e7:47:c7:
37:08:c1:51:9e:24:27:46:98:ee:78:2f:9e:aa:43:38:01:24:
ac:9f:35:17:11:64:02:bd:81:87:ca:28:66:de:19:48:de:60:
d0:12:d3:07:41:e1:15:86:c8:c7:c7:32:eb:60:a1:46:ce:d7:
66:53:13:a8:61:17:f8:8b:e1:38:54:5f:5c:2c:9d:a8:f1:d9:
5e:e8:fc:e9:d0:15:fb:6a:b0:d6:92:e5:6a:4d:42:26:2b:04:
c5:60:73:ad:4d:db:26:6b:0a:58:3e:55:a5:5a:7c:e4:3a:ff:
a1:aa:22:fd:62:4b:54:ba:99:e5:b2:f3:92:bb:f6:c0:69:81:
86:fa:c3:28:a1:aa:87:69:d2:de:b1:40:76:5d:72:c2:22:cd:
41:63:db:3f:5a:73:0a:19:66:eb:55:2b:23:5f:b3:eb:72:ef:
7a:83:ed:51:59:50:fd:65:e7:88:28:11:b4:19:55:93:db:1b:
43:ec:aa:da:94:62:d9:21:ef:d9:6a:f7:0e:b5:99:78:48:23:
7e:fd:88:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org