Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/Z-0yaD-qyx327Uzq3aFH1-Ek4RA.roa
File: Z-0yaD-qyx327Uzq3aFH1-Ek4RA.roa (raw, json)
Hash identifier: ATz1JAYgyyuFx17UdcGwQYxWomM7eQaCVqK/YyDB7B0=
Subject key identifier: 67:ED:32:68:3F:AA:CB:1D:F6:ED:4C:EA:DD:A1:47:D7:E1:24:E1:10
Certificate issuer: /CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Certificate serial: 38E8F738
Authority key identifier: CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/Z-0yaD-qyx327Uzq3aFH1-Ek4RA.roa
Signing time: Tue 17 May 2022 07:30:18 +0000
ROA not before: Tue 17 May 2022 07:30:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30968
IP address blocks: 109.120.160.0/23 maxlen: 23
109.120.164.0/23 maxlen: 23
109.120.166.0/24 maxlen: 24
109.120.168.0/22 maxlen: 22
109.120.173.0/24 maxlen: 24
109.120.177.0/24 maxlen: 24
109.120.179.0/24 maxlen: 24
109.120.184.0/22 maxlen: 22
92.243.92.0/24 maxlen: 24
77.221.128.0/23 maxlen: 23
77.221.131.0/24 maxlen: 24
77.221.132.0/22 maxlen: 22
77.221.136.0/21 maxlen: 21
109.120.128.0/21 maxlen: 21
77.221.144.0/20 maxlen: 20
109.120.139.0/24 maxlen: 24
109.120.136.0/23 maxlen: 23
109.120.142.0/23 maxlen: 23
109.120.141.0/24 maxlen: 24
109.120.144.0/23 maxlen: 23
109.120.146.0/24 maxlen: 24
109.120.148.0/22 maxlen: 22
109.120.152.0/24 maxlen: 24
109.120.156.0/22 maxlen: 22
109.120.155.0/24 maxlen: 24
92.243.64.0/22 maxlen: 22
92.243.70.0/24 maxlen: 24
92.243.69.0/24 maxlen: 24
92.243.72.0/21 maxlen: 21
92.243.84.0/23 maxlen: 23
92.243.80.0/23 maxlen: 23
92.243.83.0/24 maxlen: 24
92.243.89.0/24 maxlen: 24
2a02:440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 954791736 (0x38e8f738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9233f6a88d08f6559c2206b1bff2655b122231
Validity
Not Before: May 17 07:30:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67ed32683faacb1df6ed4ceadda147d7e124e110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:fd:61:13:d4:de:2a:e9:ef:8b:98:52:e2:
7d:8c:a9:28:3a:b6:b4:2b:86:6c:e1:54:90:f5:c0:
70:21:51:a8:ba:6d:0f:16:c7:fa:7b:19:ab:8d:5d:
0f:de:89:1d:bb:72:2f:f0:51:d7:c3:75:f2:46:92:
34:4b:db:99:87:10:b5:fb:84:e1:07:9b:22:f7:54:
0d:3a:a6:91:a8:b0:5b:6b:09:11:b4:7b:04:57:77:
46:6d:2d:4d:3a:d6:4e:9d:98:04:da:f0:a9:5f:bb:
87:9e:0b:73:72:16:e4:65:41:35:09:8a:6a:1a:b0:
ea:f9:cf:a9:30:35:53:67:79:09:02:b0:11:ec:20:
9a:b9:3b:43:cb:4b:b0:07:e6:ec:b9:16:ce:cd:3a:
19:da:bb:7d:2d:a6:ce:95:40:5c:92:d4:08:4b:0a:
84:0b:15:32:24:c8:2f:76:98:58:10:97:be:9a:ff:
dc:ba:66:4f:91:c8:be:30:f6:b4:3e:0a:58:d0:17:
b0:8d:19:d9:aa:5e:55:4e:b1:6b:1c:75:86:d5:88:
d4:42:77:f2:99:a5:46:f7:83:3a:41:c7:37:4c:89:
8f:c0:03:91:fe:54:34:18:96:55:a2:1e:5d:12:b3:
d6:d5:20:34:52:f3:78:35:b2:3a:08:24:cf:d6:8b:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:32:68:3F:AA:CB:1D:F6:ED:4C:EA:DD:A1:47:D7:E1:24:E1:10
X509v3 Authority Key Identifier:
keyid:CD:92:33:F6:A8:8D:08:F6:55:9C:22:06:B1:BF:F2:65:5B:12:22:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZIz9qiNCPZVnCIGsb_yZVsSIjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/Z-0yaD-qyx327Uzq3aFH1-Ek4RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/0a116f-5a0b-4566-9f44-b837bf9d4c5f/1/zZIz9qiNCPZVnCIGsb_yZVsSIjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.128.0/23
77.221.131.0-77.221.159.255
92.243.64.0/22
92.243.69.0-92.243.70.255
92.243.72.0-92.243.81.255
92.243.83.0-92.243.85.255
92.243.89.0/24
92.243.92.0/24
109.120.128.0-109.120.137.255
109.120.139.0/24
109.120.141.0-109.120.146.255
109.120.148.0-109.120.152.255
109.120.155.0-109.120.161.255
109.120.164.0-109.120.166.255
109.120.168.0/22
109.120.173.0/24
109.120.177.0/24
109.120.179.0/24
109.120.184.0/22
IPv6:
2a02:440::/32
Signature Algorithm: sha256WithRSAEncryption
64:6a:21:98:bf:f9:e1:96:8e:50:6d:a8:66:e5:cf:8f:e8:19:
ad:cb:37:c5:6a:37:e2:47:99:13:96:b0:2c:79:16:ea:ca:95:
59:0e:d9:b9:e6:65:e1:ce:a5:20:f5:6a:19:8d:c7:e3:dc:34:
cb:8d:75:96:6c:07:04:b9:04:f7:bd:0d:2a:a6:4e:d7:85:f8:
d6:34:ee:fd:be:00:fc:78:63:0a:58:5b:eb:af:86:4b:b1:61:
b9:06:a7:60:fc:05:87:75:4d:93:4c:99:ec:d3:07:20:34:9f:
92:4b:59:a5:ab:1f:d0:0d:8c:0b:af:92:c6:7d:80:9d:09:0f:
4c:b8:a9:a7:10:cd:0d:4b:b3:6b:07:0f:11:94:5e:3a:3a:79:
1d:3e:ae:63:66:0a:07:d2:d2:10:2f:97:ee:3a:20:fe:b5:e7:
aa:89:a1:01:31:ac:0a:f2:a5:ec:4f:3b:8c:66:b7:62:73:58:
10:b9:da:bc:81:b8:c4:fc:00:d1:b6:58:b5:51:0f:61:f4:ed:
38:21:c2:dc:e0:86:35:b8:9d:2b:0e:47:6e:bb:2d:4b:2a:fb:
ab:15:0b:16:83:17:b4:91:8f:0f:e0:6b:22:b0:32:28:65:f8:
b8:87:fd:7c:c6:f1:44:33:3b:5f:41:b7:b6:e2:d2:a3:f6:2b:
4e:70:dc:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:10 2024 by rpki-client on console-ams.rpki-client.org