Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/Z88-O1THuqfACTtrj0uuwImQ2Zg.roa
File: Z88-O1THuqfACTtrj0uuwImQ2Zg.roa (raw, json)
Hash identifier: 4tuoOIU+piFFQxaEkp9DF5Ir+XpvV1nYJHybbIIzs2s=
Subject key identifier: 67:CF:3E:3B:54:C7:BA:A7:C0:09:3B:6B:8F:4B:AE:C0:89:90:D9:98
Certificate issuer: /CN=4944680c20d1af01f169b18ac9c77d9877133cde
Certificate serial: 0188B48F322864059E4F503517EBEF5DECBA
Authority key identifier: 49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/Z88-O1THuqfACTtrj0uuwImQ2Zg.roa
Signing time: Tue 13 Jun 2023 11:41:03 +0000
ROA not before: Tue 13 Jun 2023 11:41:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207023
IP address blocks: 85.255.112.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:8f:32:28:64:05:9e:4f:50:35:17:eb:ef:5d:ec:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4944680c20d1af01f169b18ac9c77d9877133cde
Validity
Not Before: Jun 13 11:41:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67cf3e3b54c7baa7c0093b6b8f4baec08990d998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:1a:b4:6d:95:c5:43:ea:5c:bd:06:0d:f8:
a4:42:04:f6:c7:fd:79:f6:36:e5:36:9a:a8:1a:ab:
73:74:74:64:d1:c2:ed:a1:b9:1b:a8:f1:bf:49:8b:
3f:c6:50:40:e3:7c:67:e8:e1:ff:38:39:da:b5:a0:
a8:18:62:42:4f:fc:2e:0f:46:ce:82:f7:c8:92:16:
84:01:44:49:23:4c:91:0b:36:30:f3:24:e5:4b:9e:
50:e4:9b:95:4f:19:36:55:a3:f8:d4:89:d8:bf:cf:
64:35:f3:28:0e:55:d3:b1:79:72:c4:76:ca:0d:0a:
24:ac:0d:3f:d6:94:c6:55:00:b4:ac:88:a7:5f:2d:
57:fa:85:ee:c3:a6:53:37:7e:22:0e:d0:3f:99:65:
0b:78:3b:b0:3c:f7:b5:57:ff:2c:e3:1a:a6:48:96:
a1:22:f9:0a:3e:dd:80:04:3c:6c:22:8a:00:dc:bb:
7e:3e:bc:97:c2:c6:ec:dc:ec:79:83:73:c5:d9:5f:
b4:8c:b7:9b:66:0e:d3:da:39:cc:cd:f2:f2:7e:cc:
a1:cb:95:83:28:e1:46:f2:cd:78:c7:40:94:84:e6:
4b:7c:c7:7e:33:44:92:04:39:e7:64:88:bf:8a:fa:
0a:0e:94:f8:f0:00:db:53:2a:72:74:37:39:90:84:
82:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CF:3E:3B:54:C7:BA:A7:C0:09:3B:6B:8F:4B:AE:C0:89:90:D9:98
X509v3 Authority Key Identifier:
keyid:49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/Z88-O1THuqfACTtrj0uuwImQ2Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/SURoDCDRrwHxabGKycd9mHcTPN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.112.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:91:63:0a:28:5d:ba:68:35:fa:a8:3a:67:e3:75:4e:00:57:
52:f2:4c:c5:16:bb:38:58:dc:71:d5:db:72:49:55:b8:f8:1c:
7a:83:76:c3:88:07:37:9b:f3:71:df:5b:4c:cd:4d:2c:cb:c8:
be:e5:77:5a:83:7e:cc:d6:33:cb:78:dd:6a:2a:5d:83:6d:aa:
11:da:e6:fb:08:94:58:a2:04:21:0d:72:44:36:53:2e:33:ce:
95:c6:95:ee:67:39:cd:bf:40:f8:8b:c5:36:fa:f0:16:82:e9:
d4:7e:b1:e1:de:10:6a:fe:fc:7a:03:bd:7d:42:f9:82:0f:af:
ef:9f:79:7f:46:1b:8d:f7:39:97:e1:95:f0:97:2b:bd:5d:c8:
ec:40:93:82:4d:33:63:cb:b9:9a:a5:a1:4b:3d:5c:50:8d:0e:
1b:a0:9a:ee:be:6a:e6:77:c1:43:d8:ed:1a:c2:ad:d7:c9:52:
31:78:10:bc:54:d1:52:09:6a:68:bf:6a:c2:c6:74:ec:0c:e9:
c8:59:56:3e:ef:20:96:b8:e5:8d:64:32:90:46:41:9c:04:e8:
bc:d3:7b:91:93:dd:6b:a8:76:9e:fe:63:bb:33:0b:d7:1e:ec:
86:74:cb:30:36:f8:25:3f:52:48:93:8f:3b:24:b5:5a:d6:e1:
ad:75:8b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 28 09:52:51 2023 by rpki-client on console-fra.rpki-client.org