Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/d57557-7df0-4ec9-9629-7ff40da0fe00/1/zsZ_IXm-yjQH1JQb8Famqht-mBk.roa
File: zsZ_IXm-yjQH1JQb8Famqht-mBk.roa (raw, json)
Hash identifier: 7OFTCXy/zHPcCf0AgBPrS1IjrSqVjEYCs9CpMKvvg1Y=
Subject key identifier: CE:C6:7F:21:79:BE:CA:34:07:D4:94:1B:F0:56:A6:AA:1B:7E:98:19
Certificate issuer: /CN=cfeb50a59fe6789b0d289457ac94ab0ce4951094
Certificate serial: 050CAEE4
Authority key identifier: CF:EB:50:A5:9F:E6:78:9B:0D:28:94:57:AC:94:AB:0C:E4:95:10:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-tQpZ_meJsNKJRXrJSrDOSVEJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/d57557-7df0-4ec9-9629-7ff40da0fe00/1/zsZ_IXm-yjQH1JQb8Famqht-mBk.roa
Signing time: Sat 01 Jan 2022 02:53:00 +0000
ROA not before: Sat 01 Jan 2022 02:53:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 185.82.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84717284 (0x50caee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfeb50a59fe6789b0d289457ac94ab0ce4951094
Validity
Not Before: Jan 1 02:53:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cec67f2179beca3407d4941bf056a6aa1b7e9819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:5b:6b:87:f7:c4:b7:6d:cd:7e:1b:f2:e3:
63:cb:1a:31:ca:c4:d8:78:fb:53:af:6e:5c:09:f8:
91:d6:3f:75:0d:a1:5b:83:4b:4c:80:dc:9b:8b:95:
2d:f8:ae:4c:98:65:64:3c:5b:a8:1a:5e:a4:94:86:
f0:80:f2:ec:f3:65:6e:02:7b:66:f6:5a:bb:e8:51:
3c:d4:18:9f:13:db:77:5f:c1:a7:b4:0b:8d:9e:a4:
3c:77:79:a8:b3:0f:0a:5e:a7:b9:57:e7:a4:c2:bd:
76:e3:5c:87:5d:ed:19:47:fe:bb:3c:46:b4:3d:0b:
ad:e5:8f:38:d7:64:94:ca:6c:ec:f3:0a:9d:59:45:
47:ef:a2:e8:f8:25:8c:83:3b:3a:c6:52:50:6a:a5:
63:3c:dc:d3:81:52:57:a7:71:40:ae:fa:f2:8a:36:
f3:c7:5a:29:03:56:3c:2f:cf:19:6b:a6:5f:c5:a5:
36:09:48:30:a7:2d:53:c7:d6:db:ea:88:c7:42:a3:
02:02:7d:f7:e9:39:12:19:de:0b:8a:30:e6:cd:d8:
30:4e:8a:52:9f:ca:be:bc:10:ca:57:bc:d5:0f:6d:
27:46:7d:df:88:60:74:05:3b:6b:56:4e:4d:3e:da:
86:0a:8b:3f:0b:73:e8:c4:4c:27:cc:58:9f:9e:f6:
3a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C6:7F:21:79:BE:CA:34:07:D4:94:1B:F0:56:A6:AA:1B:7E:98:19
X509v3 Authority Key Identifier:
keyid:CF:EB:50:A5:9F:E6:78:9B:0D:28:94:57:AC:94:AB:0C:E4:95:10:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-tQpZ_meJsNKJRXrJSrDOSVEJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d57557-7df0-4ec9-9629-7ff40da0fe00/1/zsZ_IXm-yjQH1JQb8Famqht-mBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/d57557-7df0-4ec9-9629-7ff40da0fe00/1/z-tQpZ_meJsNKJRXrJSrDOSVEJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.72.0/24
Signature Algorithm: sha256WithRSAEncryption
68:38:ca:44:c0:58:f5:ec:18:e3:3b:e6:55:13:cd:aa:38:78:
c2:5c:de:b7:bd:85:88:a0:d2:4b:6b:c4:57:ab:7b:9e:1f:bf:
bf:36:ab:b7:b0:84:58:b8:d2:0c:f3:f6:b4:e5:59:cb:d8:d9:
41:6f:c8:4f:3d:16:c0:8c:32:82:b5:c3:07:9e:de:fb:12:b7:
ef:84:9a:58:87:48:2e:f3:c8:59:b6:9d:18:af:ad:c6:57:e5:
f0:10:e6:da:9f:41:72:cc:57:43:cb:b1:c0:02:9f:68:78:a3:
ed:8c:20:25:96:ed:72:43:4d:2c:55:3a:b6:aa:f8:48:be:76:
c0:d0:32:4f:a4:5b:09:e8:ff:04:bb:91:7e:28:e3:3d:7f:47:
2d:b3:a8:12:46:cb:c5:ed:d5:4e:0a:73:06:3d:06:02:f9:ab:
f2:74:ed:c5:f0:74:da:b3:aa:53:f9:04:b8:c8:0a:a8:7b:ef:
a8:91:a6:19:60:41:96:cf:36:ae:08:73:68:19:ff:48:54:d0:
58:c3:2b:e1:0a:5f:f2:d6:83:b6:cb:a7:41:40:d3:50:21:3f:
6b:67:16:26:98:ea:72:4c:f4:6a:c7:8b:6b:5c:3a:0c:f9:5e:
e6:39:58:f3:2e:94:4d:12:9c:2d:17:53:b6:8c:ae:a5:51:51:
b5:97:a4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:28 2023 by rpki-client on console-fra.rpki-client.org