Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/ZD_FpKjKViUl879tuolvb-XDzO0.roa
File: ZD_FpKjKViUl879tuolvb-XDzO0.roa (raw, json)
Hash identifier: XIiyyRUq6mqDvWS83FyRivSsC1buAtOIRwyu1cLCUZc=
Subject key identifier: 64:3F:C5:A4:A8:CA:56:25:25:F3:BF:6D:BA:89:6F:6F:E5:C3:CC:ED
Certificate issuer: /CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Certificate serial: 01856CC1428CA13F6635D871FE35DA8BEAFA
Authority key identifier: A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/ZD_FpKjKViUl879tuolvb-XDzO0.roa
Signing time: Sun 01 Jan 2023 09:54:42 +0000
ROA not before: Sun 01 Jan 2023 09:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.233.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:42:8c:a1:3f:66:35:d8:71:fe:35:da:8b:ea:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Validity
Not Before: Jan 1 09:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=643fc5a4a8ca562525f3bf6dba896f6fe5c3cced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8f:23:29:0e:14:e4:b8:25:d4:49:73:07:95:
d0:61:59:b3:97:cb:55:99:5b:62:fa:69:8f:42:8c:
5a:09:7e:dd:60:ee:cc:17:48:44:b7:6a:19:d9:95:
69:57:ac:0d:33:df:25:c1:3f:a1:8b:9c:c4:45:5a:
04:ce:79:32:27:ac:89:b4:16:47:a8:c1:eb:11:be:
d7:07:e8:12:a0:30:bb:90:71:8b:61:b7:4d:e2:2c:
7a:e9:7c:65:f2:70:e0:cc:61:7b:c3:af:6a:3d:40:
ff:70:1b:6e:4f:56:65:a9:19:f3:db:7e:1f:92:27:
89:a8:18:7b:e5:d3:db:5f:98:e2:ac:ce:11:66:49:
5a:39:7f:78:1a:29:44:12:16:d3:e6:8c:eb:6f:a6:
02:cd:92:9a:00:ff:bc:a6:ed:d5:78:51:3e:fa:66:
b5:cc:99:e5:b4:c0:c9:8c:bf:65:a6:79:f3:56:9c:
46:b6:54:ae:75:eb:2b:d8:92:41:47:94:d3:b3:5c:
11:4d:e5:cf:c5:cc:56:37:83:fe:e0:21:40:b9:2a:
ba:1c:92:75:5e:18:e3:1c:64:99:c8:88:db:30:1e:
02:c8:9a:ca:b7:d8:c4:51:b9:99:b8:f6:da:41:c7:
3a:b6:6a:85:d1:41:38:67:c2:16:a5:f4:a6:4d:19:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3F:C5:A4:A8:CA:56:25:25:F3:BF:6D:BA:89:6F:6F:E5:C3:CC:ED
X509v3 Authority Key Identifier:
keyid:A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/ZD_FpKjKViUl879tuolvb-XDzO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/oA4m67RNKklqQvjNhhm_jYbOTtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.131.0/24
Signature Algorithm: sha256WithRSAEncryption
07:cc:69:5a:d7:69:c9:0a:ef:bc:c0:34:d9:84:04:75:40:27:
aa:71:7b:c5:f4:15:2a:9a:eb:d4:28:5c:93:2c:dc:ed:63:3b:
8f:6a:26:d1:c9:b0:80:07:54:f4:92:2e:c3:76:8f:d4:45:1f:
5b:a7:0d:f2:1f:b3:01:48:6c:07:58:3c:3f:49:4f:ae:bc:a1:
ce:bd:5c:2d:67:79:e4:d1:fe:71:23:f5:fc:41:f4:5b:ac:23:
a0:00:76:1d:35:18:20:06:9b:52:43:57:4f:91:09:7b:50:6f:
1b:9e:ce:2d:6b:a5:b7:74:6e:92:79:7c:31:97:46:e4:e2:0a:
53:66:17:ec:ac:c2:0b:78:60:cd:29:da:42:e0:7d:ce:cf:94:
60:9a:6c:99:32:33:a3:ba:3e:7d:0d:89:9f:20:99:59:99:71:
21:73:b7:71:45:43:91:65:bb:27:61:b3:db:53:78:29:16:81:
23:2a:16:e4:9a:c5:2e:97:73:41:cd:2f:b0:97:c7:06:d8:3c:
e8:16:8d:63:bd:d4:11:c1:44:43:43:90:a9:44:4b:91:29:db:
55:2e:e6:a5:40:cd:b8:14:f5:95:fa:11:15:f6:ce:15:6d:ad:
88:88:e5:26:5b:46:49:dd:a7:42:e8:8e:1c:04:fd:e8:2f:37:
64:5f:e3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org