Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/716373-d341-4574-a363-a4ef498474c3/1/ZnuFe48MAn9y231I1D4RSsaCxjc.roa
File: ZnuFe48MAn9y231I1D4RSsaCxjc.roa (raw, json)
Hash identifier: xWl265HLZBn32CfCDYkzwpWexxwgeLy3LgFAJH3FN4I=
Subject key identifier: 66:7B:85:7B:8F:0C:02:7F:72:DB:7D:48:D4:3E:11:4A:C6:82:C6:37
Certificate issuer: /CN=7ff220abd607e357bfb25c2f7fd48fcc6ab66b88
Certificate serial: 018841E5E1F79E6E691CAF92AEE9DBD42940
Authority key identifier: 7F:F2:20:AB:D6:07:E3:57:BF:B2:5C:2F:7F:D4:8F:CC:6A:B6:6B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f_Igq9YH41e_slwvf9SPzGq2a4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/716373-d341-4574-a363-a4ef498474c3/1/ZnuFe48MAn9y231I1D4RSsaCxjc.roa
Signing time: Mon 22 May 2023 05:19:24 +0000
ROA not before: Mon 22 May 2023 05:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 94.247.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:41:e5:e1:f7:9e:6e:69:1c:af:92:ae:e9:db:d4:29:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ff220abd607e357bfb25c2f7fd48fcc6ab66b88
Validity
Not Before: May 22 05:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=667b857b8f0c027f72db7d48d43e114ac682c637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7c:13:a5:8e:b8:4d:6c:76:9e:70:5a:29:77:
36:e2:d5:17:d6:e1:09:eb:7a:9e:1e:5d:79:f7:7d:
8a:df:e4:69:b5:f8:60:44:37:26:98:6e:1c:e3:e3:
80:04:fa:f5:41:69:0c:34:69:1b:6b:77:57:aa:89:
d6:ef:b8:f4:96:18:64:9a:48:2f:18:76:6a:a1:10:
37:d6:0e:22:a7:99:f0:75:a1:f9:bf:67:f1:68:92:
46:05:b1:a9:09:9e:17:ae:9e:ee:f0:ba:e7:ca:f0:
f8:c2:45:b3:cf:4a:12:23:34:e6:33:db:77:94:1a:
5a:ea:5c:ff:1f:91:af:3f:c5:59:78:74:2c:f7:d3:
ed:a1:2e:96:71:6a:74:cb:ae:aa:9a:69:c3:e7:84:
d9:11:bf:e5:ca:67:8b:f8:46:13:fc:a1:74:05:3e:
fe:eb:42:f0:81:ab:3a:29:28:ca:76:2d:ca:8a:dc:
85:1b:cc:bd:73:c3:21:af:e5:a0:75:28:7b:ec:03:
76:3f:e5:9e:cc:39:6b:67:35:36:2c:a0:b7:38:37:
84:eb:2d:fb:ff:44:5f:42:7e:7b:af:1e:24:0f:1c:
16:bf:36:aa:38:89:35:07:9b:06:f4:e4:3f:d1:b0:
b5:36:c6:76:6a:44:f1:fd:32:9d:9c:94:0f:84:6b:
0e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7B:85:7B:8F:0C:02:7F:72:DB:7D:48:D4:3E:11:4A:C6:82:C6:37
X509v3 Authority Key Identifier:
keyid:7F:F2:20:AB:D6:07:E3:57:BF:B2:5C:2F:7F:D4:8F:CC:6A:B6:6B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f_Igq9YH41e_slwvf9SPzGq2a4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/716373-d341-4574-a363-a4ef498474c3/1/ZnuFe48MAn9y231I1D4RSsaCxjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/716373-d341-4574-a363-a4ef498474c3/1/f_Igq9YH41e_slwvf9SPzGq2a4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.139.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a0:f3:e3:74:af:1f:39:37:ca:34:c3:92:52:c0:b6:78:26:
44:3b:da:48:af:6b:87:21:96:e2:1f:58:03:3a:b6:84:6e:0b:
8c:9e:70:79:9b:a6:ed:4e:a8:35:84:f5:0b:be:57:fb:12:68:
2c:04:b3:31:20:9a:13:3f:0d:df:41:00:1a:25:b4:0e:11:5b:
35:3e:18:cf:f4:3b:6e:b4:1a:18:d7:7d:10:07:9a:01:95:b6:
93:65:da:1c:bf:da:15:a7:88:65:34:62:05:de:f7:d7:25:f6:
c4:a1:29:a5:c6:e2:48:c7:29:a4:bf:7b:16:4d:1f:39:a3:63:
42:24:b2:2c:5f:bd:9a:bb:66:16:7e:55:b3:47:5c:c5:43:49:
ef:dc:63:cc:51:11:03:ca:01:3c:7f:1d:b2:89:42:e3:23:9a:
a6:22:5e:52:b2:2a:a1:93:ea:cc:35:84:3e:c2:46:c5:44:82:
b3:3a:09:64:78:fc:b4:61:8c:5f:c3:d5:b3:8d:32:2e:d5:e7:
73:c0:bb:0d:0c:a6:67:83:23:98:df:65:eb:da:16:17:3d:4c:
5a:5f:da:b1:bf:9d:b1:34:47:36:78:b6:18:ed:95:b3:47:1a:
60:ad:0a:e2:2f:d8:d6:fc:87:79:81:b6:3a:72:f4:f0:1a:37:
0b:1a:60:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 10:12:23 2023 by rpki-client on console-ams.rpki-client.org