Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ZwO7bt27WQ8p14KvJ97ZjtwmVMo.roa
File: ZwO7bt27WQ8p14KvJ97ZjtwmVMo.roa (raw, json)
Hash identifier: 7KJBIjp99ZQQCo3eQ7l1MQIjE03P04WugloadcQBvSo=
Subject key identifier: 67:03:BB:6E:DD:BB:59:0F:29:D7:82:AF:27:DE:D9:8E:DC:26:54:CA
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0194125A5B70210E2D5B50717FB8258614BC
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ZwO7bt27WQ8p14KvJ97ZjtwmVMo.roa
Signing time: Sun 29 Dec 2024 12:18:19 +0000
ROA not before: Sun 29 Dec 2024 12:18:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51396
IP address blocks: 213.21.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:5a:5b:70:21:0e:2d:5b:50:71:7f:b8:25:86:14:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Dec 29 12:18:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6703bb6eddbb590f29d782af27ded98edc2654ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:71:9b:94:f4:46:5f:c3:9d:68:7b:32:93:87:
1a:d7:95:fa:2e:74:1a:5a:cb:c5:3b:a0:bb:02:8a:
53:29:3b:f6:d4:6f:41:dd:95:2d:ac:6b:2a:04:54:
13:a2:75:05:c1:a9:31:b4:e3:f5:15:43:45:b8:de:
1d:37:1d:04:2c:a9:74:ef:e4:86:4a:5a:e8:23:94:
1b:68:e5:50:92:af:69:7e:ab:0e:0b:42:00:07:52:
47:18:9a:bb:bd:a5:db:c0:33:9d:63:f1:2e:09:be:
e3:7a:e7:35:7d:97:94:ee:8c:87:52:8d:98:b5:70:
28:07:cc:45:f8:72:17:e0:3c:91:74:c7:42:22:87:
59:6a:b1:29:8f:ba:45:61:23:76:62:39:13:a5:9e:
6c:05:73:ca:c6:05:1b:e6:8e:cc:3c:02:90:2a:4e:
4a:a8:4f:20:4c:19:91:12:28:a5:af:64:48:3a:63:
8e:09:e0:09:9b:2b:b2:90:f4:e8:a6:05:d5:9e:91:
9f:5b:e5:e9:bd:f2:7e:1c:0d:cf:bc:fd:14:b0:b1:
da:83:04:d9:a8:7f:96:4c:6f:7d:0e:37:8e:ff:c7:
5d:a3:7b:16:1b:8a:16:e7:00:5d:62:d9:e1:a3:d2:
84:f8:2f:b9:1f:19:30:7f:0a:5c:a2:e0:27:32:70:
9a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:03:BB:6E:DD:BB:59:0F:29:D7:82:AF:27:DE:D9:8E:DC:26:54:CA
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/ZwO7bt27WQ8p14KvJ97ZjtwmVMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.232.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:8a:d0:b4:9c:4e:90:3d:4a:ad:51:e4:89:c2:c1:f9:5b:c5:
3b:ae:1d:0a:4b:04:d3:19:11:08:1d:c0:a9:81:c2:0c:e4:7f:
4b:66:1a:67:5d:4b:61:e2:99:9f:83:47:af:5c:74:f2:09:dd:
05:1b:0c:42:13:ce:92:1c:45:fe:b2:e0:5a:01:6b:8a:7b:e3:
7c:b8:98:2c:f0:af:ab:75:90:2b:d8:75:a4:d1:ab:ab:57:e2:
e3:b2:f3:67:de:c9:ef:07:14:f8:d9:fb:f6:e9:99:75:61:1a:
6f:18:36:db:f2:32:bf:ab:41:2e:e0:53:76:6f:0a:c1:b4:f3:
0d:ed:98:86:af:4a:68:1d:36:10:9c:df:e6:0a:8b:2a:78:3c:
9e:90:28:6c:98:db:bf:0e:cf:8f:db:97:91:7d:56:99:07:89:
a0:13:dd:10:e1:06:67:b1:f8:6d:c2:a9:d0:88:7b:73:07:dd:
4b:c3:6b:80:7a:31:aa:0b:48:d9:ca:e6:e9:20:0f:04:f6:90:
fd:0d:8e:c8:95:f4:1a:16:6d:dc:6d:17:f8:30:ee:6b:f8:f8:
e2:5a:c4:40:29:71:7e:3c:f5:5f:e6:f2:b2:84:82:80:20:b1:
14:a0:d1:ad:c6:37:c8:d6:7a:51:aa:f6:f0:e8:c2:7d:9f:36:
a2:4a:5d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:30:20 2025 by rpki-client