Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/a64061-52c9-43dc-9ee0-5afde294d1c2/1/KZ4-Auy5ymIFPNpcCv809UrG6QI.roa
File: KZ4-Auy5ymIFPNpcCv809UrG6QI.roa (raw, json)
Hash identifier: Amgdbhfl48lT2ZS3GcNR6Y6dlY9GQc4kQR+sWPSk+fw=
Subject key identifier: 29:9E:3E:02:EC:B9:CA:62:05:3C:DA:5C:0A:FF:34:F5:4A:C6:E9:02
Certificate issuer: /CN=3b13bf822592bd1b54b77cc2c1cc42b28ccf1669
Certificate serial: 018CC56EE57302F05A7529CAA0BAE9A55EB3
Authority key identifier: 3B:13:BF:82:25:92:BD:1B:54:B7:7C:C2:C1:CC:42:B2:8C:CF:16:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxO_giWSvRtUt3zCwcxCsozPFmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/a64061-52c9-43dc-9ee0-5afde294d1c2/1/KZ4-Auy5ymIFPNpcCv809UrG6QI.roa
Signing time: Mon 01 Jan 2024 14:30:28 +0000
ROA not before: Mon 01 Jan 2024 14:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 213.178.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:e5:73:02:f0:5a:75:29:ca:a0:ba:e9:a5:5e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b13bf822592bd1b54b77cc2c1cc42b28ccf1669
Validity
Not Before: Jan 1 14:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=299e3e02ecb9ca62053cda5c0aff34f54ac6e902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:69:d5:03:df:64:33:df:23:b3:5d:4d:bc:
9a:d7:5a:57:1e:0c:16:01:a8:b2:12:62:d2:20:4b:
23:f2:9a:84:b2:e3:dd:47:e6:fe:a0:20:96:23:85:
d7:03:1e:e6:1b:f2:38:99:e5:9b:83:26:6c:0f:73:
1a:0f:7f:75:6d:1c:cf:c1:c8:87:ab:6f:b9:cd:a4:
6b:0d:4c:f6:f8:d6:25:a0:ed:be:69:3f:cb:09:c5:
be:16:47:5c:21:f0:df:bf:75:be:9e:70:42:b4:48:
ff:2a:d2:0d:22:ea:b2:3c:c2:4a:bb:63:1d:fb:47:
c7:61:24:bd:37:09:57:e1:fb:43:40:ed:36:fa:3d:
89:e6:5d:16:11:bb:33:99:92:10:a5:85:7c:00:c9:
e1:ed:90:bd:b0:2f:28:85:4a:15:05:f5:3f:94:8c:
db:8f:b9:2b:18:d2:64:e0:49:7c:22:ae:3c:4d:51:
73:09:41:08:c8:76:c3:be:d4:7b:7f:09:4f:28:b6:
6d:39:c7:4d:36:b0:85:0a:40:df:86:a9:da:1d:41:
9c:e2:08:3b:e9:9a:e1:a8:64:01:10:4d:ac:4d:ac:
84:d8:df:ed:0f:f1:30:d8:df:61:c7:5e:94:8e:c9:
e8:6c:86:6e:f6:02:a4:77:35:8d:62:b5:7e:5f:d8:
5c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9E:3E:02:EC:B9:CA:62:05:3C:DA:5C:0A:FF:34:F5:4A:C6:E9:02
X509v3 Authority Key Identifier:
keyid:3B:13:BF:82:25:92:BD:1B:54:B7:7C:C2:C1:CC:42:B2:8C:CF:16:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxO_giWSvRtUt3zCwcxCsozPFmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/a64061-52c9-43dc-9ee0-5afde294d1c2/1/KZ4-Auy5ymIFPNpcCv809UrG6QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/a64061-52c9-43dc-9ee0-5afde294d1c2/1/OxO_giWSvRtUt3zCwcxCsozPFmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.142.0/24
Signature Algorithm: sha256WithRSAEncryption
54:85:c1:6a:6a:40:0e:f6:d4:b7:bf:60:a9:8e:f8:14:6f:d6:
18:ae:e8:ab:3d:60:7a:b8:b4:71:c0:dc:91:35:be:4b:92:8d:
b2:4f:78:da:ad:a2:3a:be:33:78:82:3c:79:18:7d:81:9a:85:
c8:23:9f:e3:f2:8f:57:44:7e:28:a5:7b:49:62:03:00:a6:6e:
37:fa:3e:2f:d6:85:19:da:75:bd:4a:d1:aa:f2:09:50:6a:d8:
88:b9:da:79:84:cf:cb:8c:16:fe:c6:ec:7d:94:3c:06:86:4f:
d2:29:cd:df:34:64:8c:95:65:ec:f1:28:46:8c:e6:1f:a1:be:
65:71:23:a9:0d:98:47:ce:50:ae:76:6e:0c:36:06:36:d1:3a:
67:e0:63:70:50:45:f4:86:25:59:37:c0:fa:e4:9d:a8:03:9e:
f7:8c:e5:2b:bc:b5:41:77:b5:bc:81:23:a4:4e:7c:f4:59:8b:
83:3c:02:b6:d6:fd:b4:f4:a1:86:b9:19:14:bd:a8:15:45:2d:
58:f2:52:12:8a:cd:ca:95:a8:e0:5d:13:c3:f5:e4:f2:d9:88:
cd:85:04:b8:ee:81:de:ba:04:40:ce:b5:2b:16:48:00:e2:01:
30:63:75:8c:a9:af:49:e6:4f:6f:03:bd:4e:fa:b3:5d:81:b6:
5a:b1:ce:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org