Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/7d7d35-55b1-4dab-bbaf-a5fc5c47dc74/1/ZjpHWxYQ5QW0IW56y9OK1gxm230.roa
File: ZjpHWxYQ5QW0IW56y9OK1gxm230.roa (raw, json)
Hash identifier: b3LEuiRIqmVVb/mv/3BHox3Xmz1RiyGg1hyxW0AIEoQ=
Subject key identifier: 66:3A:47:5B:16:10:E5:05:B4:21:6E:7A:CB:D3:8A:D6:0C:66:DB:7D
Certificate issuer: /CN=474180cc1112bd41687ba6609c2716757e5425de
Certificate serial: 018CC86F0605A50A86621CE9C24B4004D4CE
Authority key identifier: 47:41:80:CC:11:12:BD:41:68:7B:A6:60:9C:27:16:75:7E:54:25:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R0GAzBESvUFoe6ZgnCcWdX5UJd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/7d7d35-55b1-4dab-bbaf-a5fc5c47dc74/1/ZjpHWxYQ5QW0IW56y9OK1gxm230.roa
Signing time: Tue 02 Jan 2024 04:29:28 +0000
ROA not before: Tue 02 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59729
IP address blocks: 91.220.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:06:05:a5:0a:86:62:1c:e9:c2:4b:40:04:d4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=474180cc1112bd41687ba6609c2716757e5425de
Validity
Not Before: Jan 2 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=663a475b1610e505b4216e7acbd38ad60c66db7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:30:b6:7b:e3:81:96:bb:f7:a4:b2:e0:5d:f8:
c6:31:40:ec:88:9f:fd:a9:23:d5:ad:05:cc:6c:ff:
76:8d:4c:2f:db:17:b4:db:bb:ea:8b:7d:32:c5:29:
66:43:c0:7e:92:c7:e6:81:d1:eb:32:f3:e5:63:a3:
85:e4:b6:7f:f8:25:0a:33:ae:db:95:35:bc:62:01:
a3:d2:be:3a:23:da:f3:98:5f:0c:7c:54:2d:4d:1d:
45:99:9a:a1:2e:5e:c8:e6:4a:a5:f2:60:8b:ec:60:
4d:7d:6e:57:b9:bc:3a:82:80:3f:ae:4e:b0:48:c7:
68:27:62:b8:a0:bf:ce:53:66:8f:79:bc:07:78:f3:
e9:8a:3e:0b:01:4a:f8:15:cf:14:15:c0:10:aa:04:
fd:a0:ae:ae:15:8c:4c:2c:8e:32:fc:e4:da:b0:45:
1f:a1:64:73:3b:c0:03:5f:3c:fd:58:2e:b7:9c:27:
3b:9a:ad:7b:e0:a9:3f:05:ea:b0:84:6e:30:f0:ac:
a1:d4:77:8f:b9:d9:c8:f3:d4:ae:0f:db:16:78:35:
c5:f3:26:a6:16:28:87:ae:f8:dc:aa:f5:64:aa:2f:
64:67:20:49:fa:a1:1b:12:cf:b8:f8:62:a3:62:5e:
d5:be:39:e1:7e:81:68:5b:71:e8:dd:8c:b4:20:bb:
12:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3A:47:5B:16:10:E5:05:B4:21:6E:7A:CB:D3:8A:D6:0C:66:DB:7D
X509v3 Authority Key Identifier:
keyid:47:41:80:CC:11:12:BD:41:68:7B:A6:60:9C:27:16:75:7E:54:25:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R0GAzBESvUFoe6ZgnCcWdX5UJd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7d7d35-55b1-4dab-bbaf-a5fc5c47dc74/1/ZjpHWxYQ5QW0IW56y9OK1gxm230.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/7d7d35-55b1-4dab-bbaf-a5fc5c47dc74/1/R0GAzBESvUFoe6ZgnCcWdX5UJd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.198.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:2e:be:f8:01:49:e2:24:fb:57:00:81:eb:51:d5:8a:d2:8a:
1e:7e:bd:22:2a:8a:d9:52:7d:6c:04:bc:56:84:9a:dd:55:58:
32:c9:17:5f:56:9e:70:ef:be:25:84:1c:0a:77:e8:0e:d2:78:
a3:d5:17:a0:0a:46:0c:08:5a:2b:31:d5:ee:24:ed:44:cf:9e:
48:a6:10:eb:0a:10:7f:2b:13:53:fc:1c:28:c9:5a:30:5c:f4:
90:3f:11:42:70:89:87:fa:a6:ec:4c:e4:51:5e:ee:25:66:03:
8b:7b:8c:45:38:fa:38:ba:6a:98:b1:04:d3:df:e4:2f:24:4d:
c1:62:4f:16:eb:d5:87:8f:a8:a6:b6:02:3a:5f:89:bd:93:63:
9c:39:d8:18:34:b3:2f:60:4d:b4:31:a4:59:11:5a:bb:c8:90:
db:5a:2a:71:5d:28:c8:14:49:63:4d:80:50:68:7a:74:83:de:
92:40:dd:b3:b0:06:a0:e3:46:78:1e:31:71:72:72:62:09:8d:
6f:44:13:f9:85:0b:90:43:e8:47:bb:9b:ad:2e:48:df:5c:86:
c8:78:98:f9:52:fc:88:b7:9a:e1:c2:57:7e:86:0d:54:eb:ab:
c3:3d:7c:45:95:a1:ac:23:18:58:ad:6c:5e:a6:e9:c0:5c:b7:
fa:b7:df:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:48 2024 by rpki-client on console-fra.rpki-client.org