Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/ZPpMtXji6r4AIrPijhGIaVlZTUI.roa
File: ZPpMtXji6r4AIrPijhGIaVlZTUI.roa (raw, json)
Hash identifier: aDyLHEOJ4rzCEgLz4KVZSEyqLOyVDdDq/fUIc+2CS9g=
Subject key identifier: 64:FA:4C:B5:78:E2:EA:BE:00:22:B3:E2:8E:11:88:69:59:59:4D:42
Certificate issuer: /CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Certificate serial: 17CB04B8
Authority key identifier: 70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/ZPpMtXji6r4AIrPijhGIaVlZTUI.roa
Signing time: Tue 26 Apr 2022 07:03:19 +0000
ROA not before: Tue 26 Apr 2022 07:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34655
IP address blocks: 109.71.163.0/24 maxlen: 24
109.71.162.0/24 maxlen: 24
109.71.160.0/24 maxlen: 24
109.71.166.0/24 maxlen: 24
109.71.165.0/24 maxlen: 24
109.71.164.0/24 maxlen: 24
109.71.167.0/24 maxlen: 24
5.159.216.0/24 maxlen: 24
5.159.217.0/24 maxlen: 24
185.13.91.0/24 maxlen: 24
185.13.90.0/24 maxlen: 24
95.128.120.0/24 maxlen: 24
95.128.125.0/24 maxlen: 24
95.128.124.0/24 maxlen: 24
95.128.123.0/24 maxlen: 24
95.128.122.0/24 maxlen: 24
95.128.121.0/24 maxlen: 24
95.128.126.0/24 maxlen: 24
93.93.54.0/24 maxlen: 24
2a03:9c40::/48 maxlen: 48
2a03:9c40:200::/48 maxlen: 48
2a03:9c40:400::/48 maxlen: 48
2a03:9c40:600::/48 maxlen: 48
2a03:9c40:800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399180984 (0x17cb04b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704eb0324b167299dd6064dbbf340d2f99c402c2
Validity
Not Before: Apr 26 07:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=64fa4cb578e2eabe0022b3e28e11886959594d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:80:1c:c8:ea:d4:63:ac:4b:0f:4e:21:93:
7e:44:60:b8:7f:74:f0:06:05:9f:97:ef:90:2c:d2:
b0:af:e8:92:ce:c7:d1:27:4c:c9:23:d3:2e:74:6e:
45:17:bf:b3:04:40:96:dd:c9:97:4e:02:c8:0f:20:
ac:58:ba:07:d6:a5:a8:13:74:e0:43:c8:18:d0:a7:
02:70:7b:ad:06:89:e8:55:ad:45:84:cb:98:6d:e4:
db:25:23:90:e9:f7:7a:a2:e2:03:34:ab:8f:cf:22:
2c:65:6d:77:0a:e8:61:2b:5a:9f:58:1f:27:ae:75:
b9:d0:03:65:cf:d3:05:a2:7d:89:e6:c5:37:b8:c5:
99:c1:92:e5:96:85:fe:2a:03:48:3d:2b:9e:f4:b4:
30:5f:5b:71:c2:55:aa:53:1a:97:b4:46:79:51:85:
7c:54:99:08:e3:26:8c:dc:6b:ba:a8:03:7f:bd:13:
5e:45:6a:27:a2:5f:1e:28:f3:e7:ae:cf:ff:fb:9b:
94:05:5a:c4:5b:13:27:df:6f:90:26:ee:22:69:8b:
2a:c6:9e:ed:97:62:75:38:76:ec:2b:56:7c:e0:52:
d8:eb:cd:88:96:5c:6c:6d:76:23:ee:f9:20:cc:d6:
b3:c4:cb:5b:57:d8:90:23:14:f9:08:07:5f:b6:67:
36:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FA:4C:B5:78:E2:EA:BE:00:22:B3:E2:8E:11:88:69:59:59:4D:42
X509v3 Authority Key Identifier:
keyid:70:4E:B0:32:4B:16:72:99:DD:60:64:DB:BF:34:0D:2F:99:C4:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cE6wMksWcpndYGTbvzQNL5nEAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/ZPpMtXji6r4AIrPijhGIaVlZTUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ada691-0e3a-488f-89de-4cf298576b01/1/cE6wMksWcpndYGTbvzQNL5nEAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.216.0/23
93.93.54.0/24
95.128.120.0-95.128.126.255
109.71.160.0/24
109.71.162.0-109.71.167.255
185.13.90.0/23
IPv6:
2a03:9c40::/48
2a03:9c40:200::/48
2a03:9c40:400::/48
2a03:9c40:600::/48
2a03:9c40:800::/48
Signature Algorithm: sha256WithRSAEncryption
89:f8:7a:ba:9f:ac:84:02:8c:33:49:55:ac:b0:fb:32:ab:3c:
13:3d:dc:b8:09:24:a0:b3:00:f8:ad:62:0c:99:ce:60:20:4b:
e9:96:cd:70:af:ac:91:32:fd:27:99:01:60:d4:44:50:d0:d7:
dd:c1:f2:27:c4:b1:ff:4c:64:50:40:16:be:77:03:f9:11:d3:
43:12:68:df:68:37:44:a1:46:79:ba:04:a2:7d:65:f6:b4:5e:
86:1d:40:bf:27:39:55:d3:fe:75:71:0c:1a:2a:5b:d2:06:20:
22:c2:59:67:91:ef:42:a1:83:40:45:a6:1c:ca:ef:97:92:7c:
cc:8b:f8:ee:9c:68:38:12:6b:d1:da:34:d2:02:06:ee:69:0b:
3d:f4:9f:f5:a9:74:3b:32:bf:d4:21:22:52:cf:8d:3a:c9:ed:
37:e8:42:06:b0:0a:42:aa:7d:1f:f3:10:8d:fd:e4:cb:0b:72:
ed:49:9a:9e:96:b0:c5:8b:67:28:1a:af:0e:80:1c:7e:ec:cb:
98:2f:73:81:5c:46:fc:f4:92:5b:e1:62:35:4a:c1:58:5d:83:
5e:76:c3:50:f4:b4:a7:3a:a6:09:7e:0a:a1:b1:2c:99:27:1f:
cb:e8:2a:3b:2c:0a:52:71:68:46:14:08:7f:70:52:9b:13:2b:
4c:16:ae:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org