Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/Zl04m7qjspazkdjUDh_u61v3_IA.roa
File: Zl04m7qjspazkdjUDh_u61v3_IA.roa (raw, json)
Hash identifier: HYZlPcTeGn8g2zrmZ9yrV9Y6EDgjYNjfL0seRNItq9Y=
Subject key identifier: 66:5D:38:9B:BA:A3:B2:96:B3:91:D8:D4:0E:1F:EE:EB:5B:F7:FC:80
Certificate issuer: /CN=4e64f2a0b26df43de723099a63a723b5beb97f5a
Certificate serial: 01856D660C3D084A90C25E0E28E2A90A70B2
Authority key identifier: 4E:64:F2:A0:B2:6D:F4:3D:E7:23:09:9A:63:A7:23:B5:BE:B9:7F:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TmTyoLJt9D3nIwmaY6cjtb65f1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/Zl04m7qjspazkdjUDh_u61v3_IA.roa
Signing time: Sun 01 Jan 2023 12:54:42 +0000
ROA not before: Sun 01 Jan 2023 12:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204286
IP address blocks: 109.205.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:0c:3d:08:4a:90:c2:5e:0e:28:e2:a9:0a:70:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e64f2a0b26df43de723099a63a723b5beb97f5a
Validity
Not Before: Jan 1 12:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=665d389bbaa3b296b391d8d40e1feeeb5bf7fc80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f2:5e:5f:f0:ff:41:70:7f:8f:0f:2d:38:f3:
25:c1:dc:92:f7:fa:15:b1:0e:1c:15:0d:55:31:16:
74:26:cd:0e:28:5d:68:b6:58:43:69:d2:42:4a:61:
9e:24:1c:bb:0e:76:b9:76:40:72:43:a0:fa:3d:98:
ab:4e:2c:27:18:32:51:7f:8f:7a:31:46:b4:7a:41:
e0:36:a3:08:56:9d:9d:26:04:2d:93:48:34:48:0d:
ac:87:01:06:78:f6:4a:6f:e7:df:9f:16:31:72:bf:
ca:d2:5d:ff:52:2c:95:46:d4:f0:d0:79:83:f9:75:
c9:4e:1b:7e:11:f8:c5:88:c6:7f:a1:28:02:06:9c:
b9:4b:0b:84:46:e2:02:59:ae:0a:03:4b:2c:7e:fd:
c9:20:a4:4f:af:71:46:6b:22:6c:01:45:8b:c5:af:
09:cc:a4:24:51:2a:cd:4b:69:b1:68:32:ed:13:8a:
73:c9:d0:63:5b:7d:7e:fd:cb:0f:82:8c:60:b9:6f:
1b:4e:78:05:8b:aa:16:cf:f3:00:2b:b0:14:2f:34:
78:ad:b9:ad:4d:ba:8f:82:ea:9a:33:2e:a7:09:ef:
7f:69:15:a0:20:a9:c8:4b:df:68:ce:cb:73:e2:43:
f1:8f:3e:ac:8f:04:29:ac:f7:a6:a4:35:a6:88:3d:
60:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5D:38:9B:BA:A3:B2:96:B3:91:D8:D4:0E:1F:EE:EB:5B:F7:FC:80
X509v3 Authority Key Identifier:
keyid:4E:64:F2:A0:B2:6D:F4:3D:E7:23:09:9A:63:A7:23:B5:BE:B9:7F:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TmTyoLJt9D3nIwmaY6cjtb65f1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/Zl04m7qjspazkdjUDh_u61v3_IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/541e43-4f90-4716-8a18-9602e963f610/1/TmTyoLJt9D3nIwmaY6cjtb65f1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.60.0/24
Signature Algorithm: sha256WithRSAEncryption
12:b5:f2:d6:df:aa:34:2e:96:c3:91:2c:cc:4b:52:5d:19:f5:
51:8f:e3:13:06:97:71:3f:09:32:09:33:47:6e:25:69:6c:99:
e7:1d:66:34:36:27:45:e6:69:b2:ba:0e:6f:dd:19:45:ee:64:
a9:07:ba:8f:5b:e8:30:e1:98:37:ea:a7:fe:e8:e2:0a:ea:9c:
2a:1f:28:3a:74:2e:3c:30:5a:e2:b5:0b:1e:d7:eb:f5:c3:45:
ba:2e:58:b9:6d:3c:ce:66:e2:4f:d9:a2:75:df:06:51:a4:1a:
d0:07:71:bd:77:79:5f:8e:86:df:42:98:a5:e8:79:b3:09:73:
66:e2:9c:c6:3e:59:e9:ee:87:ca:a5:0b:67:72:11:e9:7f:1c:
52:52:44:29:d3:bc:7a:36:2f:69:93:77:38:48:04:68:76:bd:
5c:56:7d:b0:54:db:08:89:7f:e1:54:8d:07:3e:1a:83:23:fe:
f3:63:2d:79:ac:6f:84:94:15:9f:67:cc:86:86:fb:40:c9:e8:
ea:e2:5a:8f:fa:f9:ea:f8:f6:83:0d:c5:62:78:b4:9e:5a:ff:
76:47:c3:b5:11:15:ba:ff:a0:00:ac:d0:10:3e:54:ce:cd:cb:
f9:75:35:b4:dc:42:16:57:2c:82:79:db:55:ed:6f:64:fa:25:
f9:9b:dc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org