Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/21ZWZIG48dPwFY05EBaoqUi0e0c.roa
File: 21ZWZIG48dPwFY05EBaoqUi0e0c.roa (raw, json)
Hash identifier: hJ1LQkw2s3Hj0BHE9mt2xelDuRyzaa+2UEQg1ajPqdQ=
Subject key identifier: DB:56:56:64:81:B8:F1:D3:F0:15:8D:39:10:16:A8:A9:48:B4:7B:47
Certificate issuer: /CN=29337fd8db864bf3ebfcbe799d8af9a230449b1a
Certificate serial: EFE57A
Authority key identifier: 29:33:7F:D8:DB:86:4B:F3:EB:FC:BE:79:9D:8A:F9:A2:30:44:9B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTN_2NuGS_Pr_L55nYr5ojBEmxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/21ZWZIG48dPwFY05EBaoqUi0e0c.roa
Signing time: Sat 01 Jan 2022 12:05:27 +0000
ROA not before: Sat 01 Jan 2022 12:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210697
IP address blocks: 213.5.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15721850 (0xefe57a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29337fd8db864bf3ebfcbe799d8af9a230449b1a
Validity
Not Before: Jan 1 12:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db56566481b8f1d3f0158d391016a8a948b47b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1f:2c:13:bf:ac:ad:0c:b1:70:95:0e:f3:85:
63:ec:5d:e0:09:7d:32:c0:d4:ac:05:46:ec:fa:14:
d6:dd:f3:7c:04:eb:26:d3:e7:04:78:86:7e:e7:26:
29:73:64:db:34:ea:98:1f:1d:a8:6a:5d:1f:04:3d:
08:6c:61:a9:e9:08:e3:0d:19:83:f5:03:69:98:2b:
d1:54:15:25:a7:cc:19:71:5b:71:81:60:30:19:0f:
d3:e3:52:29:bc:c3:11:a7:0c:ac:b5:3b:a9:03:a9:
01:27:95:2a:63:1d:4c:1c:e0:17:98:67:94:cb:f1:
69:18:94:3a:01:d4:0c:7d:6a:44:61:f6:26:a8:24:
07:57:3f:d8:b3:e3:09:c5:6d:a2:9d:b0:32:77:fc:
49:ec:77:46:9b:8d:cb:ef:69:55:4e:a9:9a:90:a5:
3b:a6:b0:9b:77:0f:9f:f7:2b:58:2e:ba:6a:7c:90:
f8:36:91:cf:e7:00:ef:f2:cd:b1:d3:5f:14:d8:37:
2f:e4:c4:67:ef:85:24:d7:c1:00:ac:05:3d:09:79:
db:a6:09:15:b7:61:4e:54:84:49:3b:ab:30:70:65:
b9:3f:84:a6:a4:46:cd:b1:46:62:2c:c7:e9:eb:d9:
70:8e:91:bf:6f:a9:8c:5f:31:c0:ca:9e:0a:3b:10:
95:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:56:56:64:81:B8:F1:D3:F0:15:8D:39:10:16:A8:A9:48:B4:7B:47
X509v3 Authority Key Identifier:
keyid:29:33:7F:D8:DB:86:4B:F3:EB:FC:BE:79:9D:8A:F9:A2:30:44:9B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTN_2NuGS_Pr_L55nYr5ojBEmxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/21ZWZIG48dPwFY05EBaoqUi0e0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/KTN_2NuGS_Pr_L55nYr5ojBEmxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.5.128.0/24
Signature Algorithm: sha256WithRSAEncryption
00:66:76:46:87:ab:68:29:26:99:e9:f2:c9:a5:51:d9:20:67:
20:bb:e4:b4:4e:19:fd:58:b4:81:15:fa:ec:7b:f7:26:21:96:
48:dd:0d:79:90:50:e9:9d:89:af:62:c2:82:6e:53:51:cf:fb:
e2:16:b1:84:3b:59:97:fc:40:8e:08:2b:21:db:49:8c:7f:25:
6c:a8:72:e5:5b:c1:8a:6d:36:38:a8:fe:49:d0:fb:41:6b:16:
7a:b0:2a:68:6e:db:ab:c7:18:e5:35:92:3b:81:58:eb:09:30:
f5:7c:a6:76:c1:ed:0c:5e:20:6b:a5:e3:d8:42:68:ed:d8:b7:
66:f3:9b:55:0a:56:fb:1a:00:e5:57:2b:45:5e:37:0c:03:96:
3e:c6:49:2b:7e:b6:e7:23:34:5b:d3:53:0f:30:cd:f8:79:88:
6b:28:f5:e9:6e:7f:d3:a7:0e:0f:fe:19:57:af:37:a6:0c:1c:
ec:55:34:b6:0f:eb:ab:ec:80:bb:90:0a:eb:30:49:29:1c:f3:
b7:a3:2e:06:48:53:cc:48:e4:27:b9:ea:7f:5b:1e:34:f5:5f:
26:1e:b6:0f:e5:c6:5d:dd:97:cc:33:c9:d1:ac:af:bf:0a:1a:
51:59:1c:a4:8e:06:8d:d1:73:a6:97:1a:48:74:a3:52:eb:be:
fb:7e:77:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAO/lejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTMzN2ZkOGRiODY0YmYzZWJmY2JlNzk5ZDhhZjlhMjMwNDQ5YjFhMB4XDTIyMDEw
MTEyMDUyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGI1NjU2NjQ4MWI4
ZjFkM2YwMTU4ZDM5MTAxNmE4YTk0OGI0N2I0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMfLBO/rK0MsXCVDvOFY+xd4Al9MsDUrAVG7PoU1t3zfATr
JtPnBHiGfucmKXNk2zTqmB8dqGpdHwQ9CGxhqekI4w0Zg/UDaZgr0VQVJafMGXFb
cYFgMBkP0+NSKbzDEacMrLU7qQOpASeVKmMdTBzgF5hnlMvxaRiUOgHUDH1qRGH2
JqgkB1c/2LPjCcVtop2wMnf8Sex3RpuNy+9pVU6pmpClO6awm3cPn/crWC66anyQ
+DaRz+cA7/LNsdNfFNg3L+TEZ++FJNfBAKwFPQl526YJFbdhTlSESTurMHBluT+E
pqRGzbFGYizH6evZcI6Rv2+pjF8xwMqeCjsQlTkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbVlZkgbjx0/AVjTkQFqipSLR7RzAfBgNVHSMEGDAWgBQpM3/Y24ZL8+v8
vnmdivmiMESbGjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tUTl8yTnVHU19Qcl9MNTVuWXI1b2pCRW14by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmQvMDlkMzQwLWYzZWEtNGFlZi1iN2QyLWIxMjc2ZTQ1Yzc4OC8x
LzIxWldaSUc0OGRQd0ZZMDVFQmFvcVVpMGUwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQv
MDlkMzQwLWYzZWEtNGFlZi1iN2QyLWIxMjc2ZTQ1Yzc4OC8xL0tUTl8yTnVHU19Q
cl9MNTVuWXI1b2pCRW14by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANUFgDANBgkqhkiG9w0BAQsFAAOC
AQEAAGZ2RoeraCkmmenyyaVR2SBnILvktE4Z/Vi0gRX67Hv3JiGWSN0NeZBQ6Z2J
r2LCgm5TUc/74haxhDtZl/xAjggrIdtJjH8lbKhy5VvBim02OKj+SdD7QWsWerAq
aG7bq8cY5TWSO4FY6wkw9XymdsHtDF4ga6Xj2EJo7di3ZvObVQpW+xoA5VcrRV43
DAOWPsZJK3625yM0W9NTDzDN+HmIayj16W5/06cOD/4ZV683pgwc7FU0tg/rq+yA
u5AK6zBJKRzzt6MuBkhTzEjkJ7nqf1seNPVfJh62D+XGXd2XzDPJ0ayvvwoaUVkc
pI4GjdFzppcaSHSjUuu++353wQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:19 2024 by rpki-client on console-ams.rpki-client.org