Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/ZENqG8A48Ovb5zO2rmdgL9TwLn4.roa
File: ZENqG8A48Ovb5zO2rmdgL9TwLn4.roa (raw, json)
Hash identifier: L54UBmykJgMpvgwd3aQVk3xMxDIKQQxQXCqcpzNpwWY=
Subject key identifier: 64:43:6A:1B:C0:38:F0:EB:DB:E7:33:B6:AE:67:60:2F:D4:F0:2E:7E
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 01856F0B58DE74242023B8C08036D5A090C7
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/ZENqG8A48Ovb5zO2rmdgL9TwLn4.roa
Signing time: Sun 01 Jan 2023 20:34:52 +0000
ROA not before: Sun 01 Jan 2023 20:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133398
IP address blocks: 79.141.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:58:de:74:24:20:23:b8:c0:80:36:d5:a0:90:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jan 1 20:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64436a1bc038f0ebdbe733b6ae67602fd4f02e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:86:4f:b2:b1:e3:22:e4:0b:8b:5b:64:26:
bb:8e:4e:58:c0:0c:11:bc:d4:de:af:c1:f1:4b:d1:
1d:f2:9a:bb:66:4f:02:0c:c8:88:66:56:80:e4:e9:
9d:35:0f:47:09:89:ad:03:d1:15:db:f1:87:71:8c:
35:99:0c:c5:32:bd:91:b0:d7:f3:88:34:3e:57:07:
f3:32:37:a4:15:7d:f9:e2:00:a9:6a:e1:fc:b7:bd:
82:12:1c:63:d7:9a:75:0e:50:75:d4:55:b7:bc:e2:
4e:76:d8:68:ae:05:d5:84:27:05:8b:65:27:98:87:
88:0b:bf:d3:dd:b0:a6:59:68:3d:80:0f:de:22:44:
6c:32:d8:04:fb:89:79:2e:a6:21:fe:c8:2a:ea:c4:
97:66:07:e9:c1:b8:ad:2b:72:80:d6:e7:01:1a:ac:
3f:ba:83:b0:48:75:fa:c7:28:a5:37:28:97:53:70:
d8:32:53:91:d4:f5:ac:79:ce:0e:1f:48:15:6d:e7:
30:9d:a9:64:1b:47:45:ca:ae:cc:3a:e1:c4:b4:b8:
19:10:ff:9d:24:88:d4:43:cb:6f:df:5d:94:f2:4a:
62:59:22:c4:22:a4:3d:47:22:33:5c:53:c4:16:15:
8f:1e:b0:0d:65:0f:a4:1c:fa:d2:ad:79:fc:0f:58:
41:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:43:6A:1B:C0:38:F0:EB:DB:E7:33:B6:AE:67:60:2F:D4:F0:2E:7E
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/ZENqG8A48Ovb5zO2rmdgL9TwLn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.168.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:5f:83:14:08:dc:7a:d5:68:c1:d9:58:19:93:34:12:33:b5:
89:e4:3a:3b:53:b0:cd:0a:02:9a:2d:33:6d:dd:0b:74:0b:d1:
4f:0b:5a:38:31:54:5c:fc:be:03:69:5b:02:cd:e2:d7:a0:86:
7b:34:69:31:e6:07:5d:a3:04:81:bd:69:71:7a:89:25:79:a3:
6d:fc:c6:2a:e9:55:a9:89:89:1c:f7:9d:d5:38:83:27:75:3b:
ba:0d:57:af:97:77:8f:5a:13:eb:2b:02:65:5c:20:52:0c:dc:
a7:34:9e:24:12:e5:01:2d:c1:7f:a1:a4:68:b5:f7:bd:eb:c7:
c8:30:04:dd:99:5a:e0:40:24:92:1b:cf:09:63:c1:e8:0e:7a:
e1:f6:35:80:d8:5e:c1:71:7b:e6:ce:c0:fc:2a:56:a7:07:73:
d9:37:34:bb:e3:9b:5c:2a:1e:c7:3b:f2:5e:9f:43:c0:50:36:
5a:c6:8c:1f:d6:d1:1f:74:af:f5:48:99:77:04:ad:ec:3e:a6:
03:a3:f5:d6:31:fb:ef:11:73:13:ae:cd:7e:4c:80:70:d6:7c:
5b:c0:27:de:14:f2:0c:2e:25:84:20:69:bd:c2:eb:55:0b:19:
4a:c3:9f:ec:32:e4:f5:d8:da:1c:03:4b:cd:ba:f2:b9:1d:96:
40:3c:d6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:45 2025 by rpki-client