Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/Z1r4_bg_z070Jcyb7U3o7Hf323I.roa
File: Z1r4_bg_z070Jcyb7U3o7Hf323I.roa (raw, json)
Hash identifier: T7owBT/Q/oKGVhpXIh5aJ3FhPGL5D1nokPDEsY2WLWM=
Subject key identifier: 67:5A:F8:FD:B8:3F:CF:4E:F4:25:CC:9B:ED:4D:E8:EC:77:F7:DB:72
Certificate issuer: /CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Certificate serial: 0185719E6A995630A75396EFC30679B992DF
Authority key identifier: AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/Z1r4_bg_z070Jcyb7U3o7Hf323I.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 193.163.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6a:99:56:30:a7:53:96:ef:c3:06:79:b9:92:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa9318ec68abf7fea3bc9972bca3bde8a14cbd54
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=675af8fdb83fcf4ef425cc9bed4de8ec77f7db72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5c:8c:78:2b:a9:ee:02:94:fd:55:fd:b9:62:
85:02:ad:5c:77:03:d0:b4:f4:6a:78:7a:1e:99:43:
3c:73:21:19:56:fb:db:c8:7c:83:a2:b6:b3:93:67:
ac:94:68:9a:cb:40:a2:48:10:f6:1b:cd:33:36:22:
36:e4:d4:f9:b5:f5:93:4a:66:25:38:75:73:d4:9a:
af:a3:0c:a6:1c:15:4b:45:da:ae:c4:29:c8:d4:6b:
6f:8f:1b:85:28:ce:0f:e2:80:4a:b8:f7:55:47:12:
46:57:c7:dc:b4:59:6d:ef:17:1a:c2:22:92:8b:d8:
fa:90:49:8b:75:fa:2b:78:11:e8:a7:b5:00:2d:28:
eb:02:58:83:3d:f4:44:a3:be:f3:c3:96:b0:86:9e:
2f:c7:15:5b:2c:43:ab:54:fb:10:51:d5:d4:9e:73:
7e:9f:3e:6e:e6:74:8c:83:5d:87:8d:de:8a:99:b2:
67:5f:32:2c:69:57:e0:69:3c:d6:03:3a:7e:d4:f8:
4f:dc:cc:04:11:8e:d7:ca:f0:3b:06:ce:9c:5c:a0:
3b:f7:38:bb:3b:d0:f3:7c:a2:ed:a2:83:1d:8e:ed:
2e:a3:ed:5e:c1:8b:d0:10:f6:2c:89:c5:f6:aa:e8:
5d:71:07:51:a6:e2:1d:c8:48:5c:79:25:fb:47:45:
94:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5A:F8:FD:B8:3F:CF:4E:F4:25:CC:9B:ED:4D:E8:EC:77:F7:DB:72
X509v3 Authority Key Identifier:
keyid:AA:93:18:EC:68:AB:F7:FE:A3:BC:99:72:BC:A3:BD:E8:A1:4C:BD:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qpMY7Gir9_6jvJlyvKO96KFMvVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/Z1r4_bg_z070Jcyb7U3o7Hf323I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/11b1a0-22f2-40e7-a45f-cb95a286990d/1/qpMY7Gir9_6jvJlyvKO96KFMvVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.207.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:07:39:96:39:77:e4:d5:7b:31:41:10:40:12:97:5a:9f:31:
11:e5:6f:a6:e9:ea:66:a9:d4:94:69:b7:9f:db:38:09:b0:ac:
34:d3:3e:37:70:40:c8:e8:ec:c7:07:3f:f3:1a:2c:3e:99:87:
a7:d4:78:d5:38:ef:45:60:73:d0:6a:63:bb:db:be:05:1d:26:
82:aa:54:62:9f:47:51:ee:fc:95:f7:98:1f:08:fb:c0:4a:a1:
40:fb:a0:19:59:71:62:c1:38:d9:64:47:35:21:d3:de:30:2f:
4a:5a:0a:43:be:97:f8:8e:91:72:97:84:56:ce:13:dd:6f:15:
28:1d:4d:94:41:b1:af:ab:de:7e:33:fe:ee:f9:5f:bb:c3:f7:
83:90:4e:c0:ea:bf:e0:d2:34:22:ad:0c:f7:9c:6a:f7:83:0e:
66:4f:2d:9d:61:a7:fc:19:c8:7b:5c:23:67:dd:ec:84:d6:7b:
4e:e1:39:4e:2d:b2:24:4e:32:77:21:16:f6:63:b3:47:b6:ce:
a9:ea:b1:c2:c9:89:90:ba:32:61:00:c8:ac:bf:e2:cb:0d:ba:
bd:8f:4b:70:e4:a1:a0:e2:3c:29:5f:b3:9c:17:cf:aa:03:53:
00:c8:f5:03:78:80:5a:2f:37:f7:22:95:f7:e5:67:7b:19:7c:
51:c6:1b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org