Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/bff758-4b83-473d-b072-a2ce1cc8b87f/1/Zn-AKKNC-tSgxKe4lgGkLwF7mRk.roa
File: Zn-AKKNC-tSgxKe4lgGkLwF7mRk.roa (raw, json)
Hash identifier: etCnigYdieWnp8dZWAslPZDUwkc5R267oqaLI5cLMQ0=
Subject key identifier: 66:7F:80:28:A3:42:FA:D4:A0:C4:A7:B8:96:01:A4:2F:01:7B:99:19
Certificate issuer: /CN=5bcd40d10b56f3b532fa0dfd01d817ef93da1a34
Certificate serial: 018680D042850EB92CC39B9D4981C3E2EAC7
Authority key identifier: 5B:CD:40:D1:0B:56:F3:B5:32:FA:0D:FD:01:D8:17:EF:93:DA:1A:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W81A0QtW87Uy-g39AdgX75PaGjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/bff758-4b83-473d-b072-a2ce1cc8b87f/1/Zn-AKKNC-tSgxKe4lgGkLwF7mRk.roa
Signing time: Fri 24 Feb 2023 00:26:17 +0000
ROA not before: Fri 24 Feb 2023 00:26:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211449
IP address blocks: 193.57.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:80:d0:42:85:0e:b9:2c:c3:9b:9d:49:81:c3:e2:ea:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bcd40d10b56f3b532fa0dfd01d817ef93da1a34
Validity
Not Before: Feb 24 00:26:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667f8028a342fad4a0c4a7b89601a42f017b9919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:fd:62:d9:83:13:b1:1c:6d:a0:fd:14:4b:
0e:af:d8:d0:5c:61:85:bd:52:e2:42:56:b7:bd:33:
71:99:28:26:1f:19:c6:ca:84:f3:a9:e1:79:aa:a3:
54:15:2f:71:5b:e6:86:ec:18:87:ce:f2:bf:ef:4b:
cd:93:a6:ed:62:cc:d5:fd:e3:68:a4:20:03:e3:76:
01:66:5c:2d:ad:aa:e4:ff:8c:02:9f:3f:b2:a7:41:
4c:23:c2:5c:49:b7:18:98:7a:dc:e5:aa:e5:dc:bf:
88:5d:9e:f2:b9:60:84:28:2d:b5:37:ae:26:64:fd:
e9:e0:7c:66:a4:b0:d2:47:80:d5:e3:44:7a:ba:3e:
a1:7c:9a:c7:4b:59:3e:4f:46:96:e8:b5:57:4c:3e:
e2:0f:fa:34:d4:b3:00:1b:d4:33:5d:0a:01:f3:9c:
1a:46:4c:29:98:05:d4:a9:90:87:37:56:cf:9a:a9:
29:57:c8:3b:f3:4c:32:28:20:e8:a4:bc:c7:3a:82:
9e:8a:b2:08:42:63:60:f3:c9:09:2c:f0:4c:86:c5:
1e:35:6a:3f:a0:83:61:75:b4:60:55:a7:51:6a:28:
7c:1d:96:2d:3b:42:c4:7f:85:4c:c9:b7:a2:eb:26:
bb:1a:10:cc:05:4e:6d:3f:67:d6:4c:5b:8e:93:3f:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7F:80:28:A3:42:FA:D4:A0:C4:A7:B8:96:01:A4:2F:01:7B:99:19
X509v3 Authority Key Identifier:
keyid:5B:CD:40:D1:0B:56:F3:B5:32:FA:0D:FD:01:D8:17:EF:93:DA:1A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W81A0QtW87Uy-g39AdgX75PaGjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bff758-4b83-473d-b072-a2ce1cc8b87f/1/Zn-AKKNC-tSgxKe4lgGkLwF7mRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/bff758-4b83-473d-b072-a2ce1cc8b87f/1/W81A0QtW87Uy-g39AdgX75PaGjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.224.0/24
Signature Algorithm: sha256WithRSAEncryption
44:05:83:f7:a9:ec:91:85:22:81:a2:80:53:ae:25:ea:ac:b5:
ce:bd:f5:3a:89:d3:85:87:ee:30:93:21:0b:6f:75:fc:7a:5f:
59:bb:cf:69:46:e2:0d:81:d9:05:5c:90:20:22:25:15:22:5a:
a8:bf:fa:41:b5:0e:95:d9:fe:ca:51:a1:54:e3:3d:bb:a2:cb:
7f:ed:c6:e7:7d:71:68:f1:9c:5e:79:07:8c:56:4f:88:aa:13:
89:e7:74:30:b8:3e:34:ea:02:0d:a7:f4:3e:b3:70:66:92:4d:
9c:cd:e4:7b:63:d0:c0:bb:3a:e1:b8:b8:28:26:2f:c8:6f:04:
2f:3f:00:07:bf:a1:eb:74:86:6d:86:ed:ad:85:c5:29:c7:a3:
55:83:47:4a:20:2d:6c:d4:e1:68:31:18:bc:44:dd:f2:78:78:
50:a0:e2:2b:f2:6d:b4:08:46:06:95:70:db:26:5b:82:bb:7e:
45:16:03:f2:b6:da:2d:e4:45:c1:61:51:62:4b:21:cc:ed:9f:
27:61:9a:a6:50:e9:b0:c6:3f:a5:44:d2:78:5c:dd:e2:65:61:
4e:74:9f:a9:e3:66:b0:0b:49:19:22:3a:78:33:b9:dd:da:fb:
f6:98:a6:15:60:d3:cb:c3:d7:25:02:82:f8:4e:28:1b:80:8d:
a1:7b:01:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaA0EKFDrksw5udSYHD4urHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViY2Q0MGQxMGI1NmYzYjUzMmZhMGRmZDAxZDgxN2VmOTNk
YTFhMzQwHhcNMjMwMjI0MDAyNjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjdmODAyOGEzNDJmYWQ0YTBjNGE3Yjg5NjAxYTQyZjAxN2I5OTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGP9YtmDE7EcbaD9FEsOr9jQXGGF
vVLiQla3vTNxmSgmHxnGyoTzqeF5qqNUFS9xW+aG7BiHzvK/70vNk6btYszV/eNo
pCAD43YBZlwtrark/4wCnz+yp0FMI8JcSbcYmHrc5arl3L+IXZ7yuWCEKC21N64m
ZP3p4HxmpLDSR4DV40R6uj6hfJrHS1k+T0aW6LVXTD7iD/o01LMAG9QzXQoB85wa
RkwpmAXUqZCHN1bPmqkpV8g780wyKCDopLzHOoKeirIIQmNg88kJLPBMhsUeNWo/
oINhdbRgVadRaih8HZYtO0LEf4VMybei6ya7GhDMBU5tP2fWTFuOkz9kNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZ/gCijQvrUoMSnuJYBpC8Be5kZMB8GA1UdIwQY
MBaAFFvNQNELVvO1MvoN/QHYF++T2ho0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzgxQTBRdFc4N1V5LWczOUFkZ1g3NVBhR2pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9iZmY3NTgtNGI4My00NzNkLWIwNzIt
YTJjZTFjYzhiODdmLzEvWm4tQUtLTkMtdFNneEtlNGxnR2tMd0Y3bVJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9iZmY3NTgtNGI4My00NzNkLWIwNzItYTJjZTFjYzhiODdm
LzEvVzgxQTBRdFc4N1V5LWczOUFkZ1g3NVBhR2pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTngMA0G
CSqGSIb3DQEBCwUAA4IBAQBEBYP3qeyRhSKBooBTriXqrLXOvfU6idOFh+4wkyEL
b3X8el9Zu89pRuINgdkFXJAgIiUVIlqov/pBtQ6V2f7KUaFU4z27ost/7cbnfXFo
8ZxeeQeMVk+IqhOJ53QwuD406gINp/Q+s3Bmkk2czeR7Y9DAuzrhuLgoJi/IbwQv
PwAHv6HrdIZthu2thcUpx6NVg0dKIC1s1OFoMRi8RN3yeHhQoOIr8m20CEYGlXDb
JluCu35FFgPyttot5EXBYVFiSyHM7Z8nYZqmUOmwxj+lRNJ4XN3iZWFOdJ+p42aw
C0kZIjp4M7nd2vv2mKYVYNPLw9clAoL4TigbgI2hewG+
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:04 2025 by rpki-client