Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/Zgtn29Z1N4mgDTd2vWgez3FlyWc.roa
File: Zgtn29Z1N4mgDTd2vWgez3FlyWc.roa (raw, json)
Hash identifier: xPwB0hv2rJEroo7ujZzO1cXjbo9CgKZbfiPOqs1Gtkg=
Subject key identifier: 66:0B:67:DB:D6:75:37:89:A0:0D:37:76:BD:68:1E:CF:71:65:C9:67
Certificate issuer: /CN=6e74ab70b64491aafa269072b7b0ccfc05530926
Certificate serial: 02974CFA
Authority key identifier: 6E:74:AB:70:B6:44:91:AA:FA:26:90:72:B7:B0:CC:FC:05:53:09:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bnSrcLZEkar6JpByt7DM_AVTCSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/Zgtn29Z1N4mgDTd2vWgez3FlyWc.roa
Signing time: Fri 04 Mar 2022 16:04:35 +0000
ROA not before: Fri 04 Mar 2022 16:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 91.199.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43470074 (0x2974cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e74ab70b64491aafa269072b7b0ccfc05530926
Validity
Not Before: Mar 4 16:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=660b67dbd6753789a00d3776bd681ecf7165c967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e6:c2:a9:a9:c5:41:cb:db:d2:cf:38:25:60:
36:91:b4:95:e3:c0:0b:05:fd:85:a9:d5:1b:4d:4b:
d3:6b:5a:f0:c6:82:09:7f:cb:9b:f2:c2:f5:98:60:
c6:a5:22:c5:10:d0:fc:66:0e:6a:ce:bf:6c:d2:11:
ee:e9:ee:63:09:93:e0:5a:d9:d7:28:78:ab:b6:ea:
b2:1a:30:ae:a2:a8:26:10:a0:0a:83:a7:72:ae:f2:
ab:a2:be:59:50:76:c0:87:84:9a:2f:44:c0:97:bd:
69:03:24:58:41:d9:91:4b:b6:67:c1:46:31:86:df:
31:84:b3:3f:db:0e:fb:76:bf:bf:5b:43:c8:7d:30:
2f:d0:b1:b5:5f:8b:1d:f4:e5:1a:ee:53:7c:74:34:
cd:cf:eb:f1:45:24:c9:26:0c:d1:74:e0:35:cc:94:
13:9b:ba:40:51:b0:af:68:7d:9d:28:ef:4d:11:cd:
34:6f:b2:7d:d6:40:32:53:1a:85:ac:65:5c:7c:ed:
9f:71:27:75:09:0b:6d:ed:61:c4:5b:2b:b4:51:8c:
d9:ed:30:00:c9:63:a4:4a:a0:d6:07:df:07:58:87:
1c:89:b4:a9:43:11:0c:e2:89:e2:2b:c2:fd:2b:95:
d4:34:9b:52:37:98:21:05:24:26:cd:b7:25:6a:03:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:0B:67:DB:D6:75:37:89:A0:0D:37:76:BD:68:1E:CF:71:65:C9:67
X509v3 Authority Key Identifier:
keyid:6E:74:AB:70:B6:44:91:AA:FA:26:90:72:B7:B0:CC:FC:05:53:09:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bnSrcLZEkar6JpByt7DM_AVTCSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/Zgtn29Z1N4mgDTd2vWgez3FlyWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/6506b6-49a6-4202-97df-ee6f3116ded4/1/bnSrcLZEkar6JpByt7DM_AVTCSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ec:84:b9:90:b4:87:df:2b:07:49:49:ce:e0:45:43:41:2a:
7c:f3:98:96:af:41:d6:1f:bd:c6:5b:ab:da:f1:03:58:f0:f8:
e4:2a:b4:36:ac:f3:fc:f1:0b:1f:a5:32:c7:d1:d1:a4:23:79:
91:5f:a4:b8:56:56:1c:23:87:2b:c5:b3:e2:ed:c8:ba:c8:99:
c8:8e:6e:26:19:51:d9:a8:b2:9f:df:b3:96:a3:88:ca:f0:87:
e5:20:d2:ee:13:c5:44:2c:de:18:76:83:1b:c4:54:f0:ef:ce:
31:d3:16:57:b8:95:29:0d:cc:29:16:c6:25:ea:99:e6:b9:39:
75:c1:9d:e3:16:ef:2d:1b:85:f7:d0:db:a7:19:5d:a0:92:34:
ac:20:df:b8:28:5c:65:53:a4:b3:e2:ee:aa:3b:75:da:94:39:
26:9a:38:29:2c:b3:ba:ff:ed:f0:6d:d1:9a:e3:65:d1:27:93:
16:f0:2b:a7:39:e9:45:c1:03:73:33:74:c8:2b:37:10:17:42:
6b:84:2f:63:13:b8:4c:2f:34:b2:80:e7:39:be:92:28:9f:0b:
7d:98:a1:3c:52:10:e9:12:f9:82:e9:a3:5b:bb:bf:7f:bf:29:
23:fb:7e:fa:cd:8c:3c:67:a4:57:85:98:74:f6:64:e6:94:72:
b9:3e:a5:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:47 2023 by rpki-client on console-ams.rpki-client.org