Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/zwzbkT60pxdPl4-ontAyf0fYR-A.roa
File: zwzbkT60pxdPl4-ontAyf0fYR-A.roa (raw, json)
Hash identifier: QScYMuwe1Cz3ig18p6S3VO3CtQIzeTgNLQwKm7hUyec=
Subject key identifier: CF:0C:DB:91:3E:B4:A7:17:4F:97:8F:A8:9E:D0:32:7F:47:D8:47:E0
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018AF05EC79B2AE8DEF06C8FE554A2AD70B5
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/zwzbkT60pxdPl4-ontAyf0fYR-A.roa
Signing time: Mon 02 Oct 2023 12:30:57 +0000
ROA not before: Mon 02 Oct 2023 12:30:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46562
IP address blocks: 84.239.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:5e:c7:9b:2a:e8:de:f0:6c:8f:e5:54:a2:ad:70:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Oct 2 12:30:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf0cdb913eb4a7174f978fa89ed0327f47d847e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0d:d6:0f:9f:ac:24:4f:76:aa:c4:52:5f:5e:
38:fb:cf:60:21:fb:02:91:be:97:43:34:60:b0:d2:
72:39:71:b7:f5:b6:e0:d9:15:2f:4c:29:aa:df:41:
41:67:89:5f:61:11:48:32:fe:69:89:5c:8c:97:c4:
e6:1c:b2:27:36:e6:ee:67:3a:5e:00:05:10:94:b9:
9a:d4:1a:aa:19:c6:75:d6:f2:6a:52:66:a1:2a:ad:
f8:ab:d9:f2:07:e5:f2:ba:f5:fd:67:c5:60:80:2b:
0f:f1:df:b6:cb:aa:2b:0b:99:95:2b:bf:8c:9e:a9:
c5:6f:a0:d5:3f:bc:00:3e:e9:ec:54:40:02:32:a8:
04:a8:68:bd:12:e6:a2:f7:95:53:a3:7c:44:93:40:
94:10:91:68:2d:61:88:28:ba:5e:d4:43:32:7d:fe:
ad:24:7d:e5:dc:27:57:91:c1:c7:98:2e:cf:a7:7c:
c2:3e:f0:c8:c1:b6:ec:e0:c4:df:8c:c3:9b:82:a7:
83:bc:b6:6d:59:49:05:63:c2:6b:bb:3f:7a:80:bc:
47:31:c8:7a:e3:1e:00:23:06:13:19:5c:a5:bb:8c:
c4:82:95:53:15:5b:dc:ae:bc:5e:cd:5e:a1:07:bf:
a6:9b:68:f0:1d:26:cc:41:ac:2a:6d:18:3c:63:ab:
2f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0C:DB:91:3E:B4:A7:17:4F:97:8F:A8:9E:D0:32:7F:47:D8:47:E0
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/zwzbkT60pxdPl4-ontAyf0fYR-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:a9:e2:77:e8:da:11:52:cf:2a:74:75:93:a4:1e:4b:b3:4d:
6b:4c:d8:4a:a6:12:03:ef:a7:a6:3b:84:d4:c2:4b:1c:69:0a:
aa:27:d8:ce:3a:7e:c9:8f:82:2b:08:ec:a6:10:e9:09:6a:73:
5b:c8:a1:fa:49:c3:97:63:25:80:45:67:90:c6:28:fd:77:48:
8b:e8:3c:93:7f:00:bf:81:b2:4c:47:65:da:f5:f7:c6:a2:2f:
68:c8:42:d2:ea:f7:7d:59:30:af:20:e9:1e:c2:69:ef:c8:b7:
c9:93:f5:ac:56:bb:ec:f4:36:2d:5e:5c:b6:e6:e9:10:a9:cb:
ef:29:cd:d3:35:d9:49:67:52:00:0c:0e:00:b0:2d:c5:5a:64:
3c:45:9e:6a:60:71:32:07:39:e6:b4:00:ab:5d:e1:47:9a:5d:
9a:cd:ef:01:aa:2e:b5:3c:b3:2b:db:a7:eb:bd:a5:19:24:ee:
3b:d0:2e:63:56:84:3c:fc:e2:08:b7:d1:f7:fc:c1:ec:e3:2c:
31:bb:b8:f4:7f:e6:d3:c2:bd:0e:a9:47:bd:13:08:7a:6f:ea:
37:1d:42:be:1c:ac:48:d9:1b:36:3c:82:18:eb:a7:5b:11:37:
ad:99:90:18:9b:c7:92:42:8f:37:3e:f9:8f:8a:62:ad:5e:b7:
46:c5:ab:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:41 2025 by rpki-client