Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/16571f-c485-4e73-9cdf-cc3db54f6a47/1/Z7JW630MafIizMxpzswUxgC1WAc.roa
File: Z7JW630MafIizMxpzswUxgC1WAc.roa (raw, json)
Hash identifier: yCt+kaT8QoAV8B9cXJOxUh1TB3vipteylGtsOpZBHK8=
Subject key identifier: 67:B2:56:EB:7D:0C:69:F2:22:CC:CC:69:CE:CC:14:C6:00:B5:58:07
Certificate issuer: /CN=19a6857c5ba3f51dbe38f4c4a0c77c84ff0fb355
Certificate serial: 018B1DC81CC99969999D6E15C1E0497A4161
Authority key identifier: 19:A6:85:7C:5B:A3:F5:1D:BE:38:F4:C4:A0:C7:7C:84:FF:0F:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GaaFfFuj9R2-OPTEoMd8hP8Ps1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/16571f-c485-4e73-9cdf-cc3db54f6a47/1/Z7JW630MafIizMxpzswUxgC1WAc.roa
Signing time: Wed 11 Oct 2023 08:08:55 +0000
ROA not before: Wed 11 Oct 2023 08:08:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50591
IP address blocks: 109.230.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:c8:1c:c9:99:69:99:9d:6e:15:c1:e0:49:7a:41:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19a6857c5ba3f51dbe38f4c4a0c77c84ff0fb355
Validity
Not Before: Oct 11 08:08:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67b256eb7d0c69f222cccc69cecc14c600b55807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1d:83:26:0c:4b:90:82:a5:3d:c8:34:82:46:
a5:43:67:a8:49:20:18:75:41:2f:66:53:7d:ff:63:
79:60:3a:fb:3a:3b:e4:3d:64:de:dc:9d:86:3f:82:
b2:95:6f:98:1e:76:c8:e0:c8:c4:c7:80:0b:b5:00:
5a:99:de:6a:68:a7:38:85:f9:4a:a6:ea:fb:8f:06:
16:e0:cb:12:04:69:e5:7c:85:3e:09:b8:ab:fc:5c:
c4:01:df:1e:51:d0:51:3c:e8:5f:39:f8:45:c4:3d:
8e:98:6f:ac:ac:c4:71:c2:16:8a:23:80:7b:b2:82:
9b:25:a7:57:e1:47:05:4e:f3:1e:a4:1f:17:0f:5e:
82:a1:ac:92:54:42:13:11:4a:06:1e:4a:c2:83:e7:
55:27:57:30:0d:7e:e7:41:68:ad:13:74:3b:c5:15:
7e:14:67:4e:a5:77:cb:e3:d3:6c:d1:f9:3b:9f:f6:
f5:11:94:e5:5d:84:bb:3e:c5:b9:5d:bf:48:c3:f4:
be:e8:91:d0:fd:13:7f:de:40:7b:8f:8a:ff:b1:30:
2c:8c:0c:be:54:8e:d4:03:8c:be:de:95:51:e0:16:
0a:97:78:7b:2b:1a:df:7f:25:26:c2:87:84:bb:1a:
78:af:e2:79:f9:1d:e6:50:96:7f:57:c8:79:43:2e:
3a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B2:56:EB:7D:0C:69:F2:22:CC:CC:69:CE:CC:14:C6:00:B5:58:07
X509v3 Authority Key Identifier:
keyid:19:A6:85:7C:5B:A3:F5:1D:BE:38:F4:C4:A0:C7:7C:84:FF:0F:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GaaFfFuj9R2-OPTEoMd8hP8Ps1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/16571f-c485-4e73-9cdf-cc3db54f6a47/1/Z7JW630MafIizMxpzswUxgC1WAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/16571f-c485-4e73-9cdf-cc3db54f6a47/1/GaaFfFuj9R2-OPTEoMd8hP8Ps1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.230.72.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:c6:3f:79:b1:88:43:a8:81:f0:b2:5b:63:05:07:6e:5a:90:
fe:83:de:cb:31:05:d2:e9:14:00:49:bb:e7:93:a8:71:ad:89:
c8:30:e9:02:db:06:f1:25:95:d2:aa:92:2d:23:49:fc:00:a6:
36:06:32:0c:d4:9c:fc:73:8d:28:78:55:45:fc:f5:69:3a:4f:
4c:6d:b1:69:1e:14:9c:90:b8:52:4e:e1:a1:82:7b:ca:45:a7:
ea:3c:32:04:f5:d0:03:97:af:0a:9d:fa:65:29:2e:76:91:64:
9e:2f:c0:d9:d1:0b:42:dd:36:6d:cf:86:47:4d:39:1e:48:8b:
19:37:f0:3c:ac:49:5e:f5:02:02:ac:5c:7e:07:e4:45:93:69:
5e:73:34:8c:7f:7f:49:ff:26:50:eb:35:27:8b:56:dc:bd:16:
37:ca:a9:ac:77:29:8a:a1:77:73:a6:3b:93:75:ea:0d:c4:d5:
91:90:8b:af:04:0d:05:fe:c7:df:f5:09:29:0d:ff:6e:28:39:
ca:4b:5e:84:eb:8b:5d:c2:a8:6c:02:e8:15:d6:a5:a0:40:89:
02:de:ee:71:5c:f2:dc:78:fc:41:88:35:8b:e7:94:b0:a4:43:
5a:b9:02:66:4e:e9:3d:2a:b9:a3:67:be:2c:97:fc:19:a1:72:
11:b1:a2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:57 2025 by rpki-client