Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/ZnX17Jec7vm3ruJgDxEWVXHzVRI.roa
File: ZnX17Jec7vm3ruJgDxEWVXHzVRI.roa (raw, json)
Hash identifier: Uqz9qmg31TwGomN2csbpwRSHYFqoglO0u27TV2LfMDY=
Subject key identifier: 66:75:F5:EC:97:9C:EE:F9:B7:AE:E2:60:0F:11:16:55:71:F3:55:12
Certificate issuer: /CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Certificate serial: 012EE7E6
Authority key identifier: D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/ZnX17Jec7vm3ruJgDxEWVXHzVRI.roa
Signing time: Sat 01 Jan 2022 11:02:51 +0000
ROA not before: Sat 01 Jan 2022 11:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393398
IP address blocks: 194.31.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19851238 (0x12ee7e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Validity
Not Before: Jan 1 11:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6675f5ec979ceef9b7aee2600f11165571f35512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:94:5e:85:7d:fd:04:c4:55:f8:3a:31:86:dc:
4f:ec:4e:be:cf:63:de:5c:d6:bf:8d:b8:c0:7d:69:
1b:41:5d:f6:ca:93:d3:82:b3:47:8e:4d:85:80:4d:
5f:d9:54:9c:9f:56:23:ab:37:af:c6:ae:85:c1:06:
a8:e7:7c:85:50:b3:60:94:ab:b4:da:e6:88:8d:ae:
68:e9:7d:ec:df:92:11:c1:d1:3d:f9:74:df:9d:7a:
23:36:ab:b8:92:68:7c:37:30:39:d7:ca:eb:35:dc:
1b:92:3a:ea:2e:15:61:02:68:be:de:af:89:29:b0:
c4:09:f9:f1:3e:fa:e8:fa:75:35:09:f9:4d:97:34:
89:c0:c4:af:21:fe:70:8e:1e:45:c3:a0:39:58:65:
44:8d:4e:f5:30:b2:11:60:7b:c1:6d:0e:e5:80:3d:
c5:05:a9:e1:d0:fe:53:ee:46:a9:74:cc:b5:06:3f:
06:43:bd:8c:35:66:27:5a:73:d2:19:b8:74:ac:e9:
88:94:7a:59:ad:fd:b3:e3:95:1f:e4:24:cf:66:5d:
09:c3:2a:b8:de:c1:6d:95:b2:7b:68:5f:03:e6:76:
9a:d0:8c:dd:3f:f6:20:a2:e3:54:31:0e:44:a1:22:
c1:60:21:a2:f0:7a:99:63:65:df:ed:d0:1e:f8:a6:
ce:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:75:F5:EC:97:9C:EE:F9:B7:AE:E2:60:0F:11:16:55:71:F3:55:12
X509v3 Authority Key Identifier:
keyid:D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/ZnX17Jec7vm3ruJgDxEWVXHzVRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/1BvKOYYfnDDHV2FIAfhtF-XqHks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.204.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:f4:a4:2d:ff:14:65:f4:9b:7b:ed:1c:ff:b0:32:76:98:68:
4d:b2:17:47:31:c5:fa:2f:b2:06:07:ef:4e:e9:92:da:5a:fb:
34:a6:d3:da:34:31:14:39:91:6d:70:c3:59:42:dd:0d:82:17:
50:b6:0e:b3:1c:dc:e2:af:19:2a:76:65:b4:cc:55:2f:e2:66:
ec:49:94:8c:89:51:ef:5e:2f:1a:54:f0:bf:39:4f:cc:7f:a9:
53:64:70:19:53:30:ac:ad:1e:6c:39:68:b2:3e:63:11:02:03:
7a:16:01:b1:a4:2c:74:4e:da:14:c7:5e:14:f3:7e:1e:ce:96:
7b:eb:f3:6d:09:25:b9:53:50:d4:c7:81:46:80:03:44:b6:55:
79:62:f1:02:d3:fc:9b:05:da:10:d8:82:b6:32:8c:ee:17:70:
11:bf:c8:d9:0f:5c:62:e9:07:20:59:60:57:cb:bc:be:19:c4:
3d:2f:fe:74:6a:e6:16:fd:a4:51:40:91:8c:95:d8:7f:24:9d:
d6:12:ab:a8:cf:92:df:1e:cd:cf:d7:04:8c:62:ac:06:39:c1:
3a:eb:67:d9:58:d7:6d:2c:dc:d9:40:b5:d5:a8:b9:e0:33:ec:
e0:5f:21:47:d0:c7:c5:7c:4c:cd:2d:0c:8f:15:1e:08:18:ee:
e8:95:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org