Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/91b98e-12ae-4d4b-9c1c-e261bd2806e9/1/czoU3k8FQ3WhjtvNXbAxyUd5Sbw.roa
File: czoU3k8FQ3WhjtvNXbAxyUd5Sbw.roa (raw, json)
Hash identifier: Yj6VjUZs1f0JNXNdY4YgVFDQd05bzatXF7szGeVy0VM=
Subject key identifier: 73:3A:14:DE:4F:05:43:75:A1:8E:DB:CD:5D:B0:31:C9:47:79:49:BC
Certificate issuer: /CN=66991c0122d0ec2595cf3afb16ead873180ae091
Certificate serial: 03A1F46D
Authority key identifier: 66:99:1C:01:22:D0:EC:25:95:CF:3A:FB:16:EA:D8:73:18:0A:E0:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpkcASLQ7CWVzzr7FurYcxgK4JE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/91b98e-12ae-4d4b-9c1c-e261bd2806e9/1/czoU3k8FQ3WhjtvNXbAxyUd5Sbw.roa
Signing time: Sat 01 Jan 2022 10:05:04 +0000
ROA not before: Sat 01 Jan 2022 10:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41931
IP address blocks: 31.135.192.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60945517 (0x3a1f46d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66991c0122d0ec2595cf3afb16ead873180ae091
Validity
Not Before: Jan 1 10:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=733a14de4f054375a18edbcd5db031c9477949bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:82:a7:83:17:db:80:83:f0:b1:15:a6:e5:
af:19:d9:8b:63:67:51:26:3e:99:78:f4:eb:49:5d:
b1:98:f0:45:11:3d:76:37:53:37:f5:43:b5:51:15:
e1:07:20:c0:81:55:9e:89:28:c2:d7:ce:40:69:dd:
79:e4:59:8b:9e:5a:a1:97:00:2c:76:11:23:3d:a2:
d9:22:71:11:26:8c:3c:ca:bf:45:a9:1f:3d:d4:dc:
b9:9b:75:22:9c:1b:22:13:7e:9d:b7:80:85:50:b0:
06:34:dd:b8:a9:d6:55:23:2d:fc:c3:db:ee:80:0e:
ad:26:54:59:6c:56:21:59:b1:6d:66:52:c2:d8:67:
99:97:52:1d:34:6a:d5:1b:08:b5:05:01:77:32:69:
b1:1b:35:68:3b:16:d0:0c:c3:78:e3:a1:a1:69:83:
00:1f:81:fd:b4:7f:76:50:ab:a6:97:49:1d:0e:5d:
75:4a:80:68:5b:51:45:50:0f:cf:1c:fd:4b:fa:b2:
dd:ed:5e:94:f2:0a:e8:9a:b1:31:15:dd:d2:11:d8:
2a:51:58:6e:2b:22:77:83:02:7c:ef:3a:ff:ab:f2:
40:27:0c:73:40:1a:30:2d:fd:b3:7e:5d:9f:d0:73:
77:b8:95:1b:bd:b3:ac:e0:5c:48:df:eb:29:3f:8d:
59:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3A:14:DE:4F:05:43:75:A1:8E:DB:CD:5D:B0:31:C9:47:79:49:BC
X509v3 Authority Key Identifier:
keyid:66:99:1C:01:22:D0:EC:25:95:CF:3A:FB:16:EA:D8:73:18:0A:E0:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpkcASLQ7CWVzzr7FurYcxgK4JE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/91b98e-12ae-4d4b-9c1c-e261bd2806e9/1/czoU3k8FQ3WhjtvNXbAxyUd5Sbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/91b98e-12ae-4d4b-9c1c-e261bd2806e9/1/ZpkcASLQ7CWVzzr7FurYcxgK4JE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.192.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:28:9d:da:8d:a6:f3:c4:9d:0d:8e:c6:39:d2:eb:51:99:aa:
f0:95:0d:9d:b2:56:01:7a:4c:73:2a:22:bf:80:db:a7:c4:7f:
53:76:84:8e:68:01:3e:48:e0:37:62:e7:74:ba:bc:5c:93:07:
b4:18:8d:41:3b:67:7a:76:5a:2d:21:97:a8:ee:32:6e:88:ba:
7c:6e:4a:38:12:72:3e:1d:9a:d5:54:f7:b5:65:99:61:0d:f2:
f7:b8:b4:04:c0:a4:81:9f:bf:c8:22:ec:96:37:28:1f:ca:88:
89:d9:fa:55:7d:09:0a:44:65:36:85:0a:9c:46:46:43:8a:bc:
31:cf:6d:bc:b8:06:67:15:d8:77:25:ba:16:7f:61:37:73:d7:
57:6a:79:e6:de:15:23:a0:78:2d:48:a5:cf:b2:f2:3b:39:c8:
55:2f:d4:f9:c1:29:de:bf:c7:e6:a9:af:25:b2:aa:1f:d2:d8:
d7:d4:ef:36:8f:e0:7c:27:df:0e:c4:da:c6:27:80:3c:63:63:
f5:31:ce:67:51:49:85:20:66:28:5a:9d:07:94:71:b1:76:fd:
ee:0a:36:ab:42:e3:0c:c2:ec:7c:d7:c3:b6:5a:a5:dd:64:d6:
4a:55:9b:ba:8e:c8:c3:f2:e5:03:37:6f:85:1e:94:1f:e9:cb:
a7:a6:70:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:00 2024 by rpki-client on console-fra.rpki-client.org