Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/TZF6X5DqbRLMcqtN7fbSNdRE3AU.roa
File: TZF6X5DqbRLMcqtN7fbSNdRE3AU.roa (raw, json)
Hash identifier: Gb8WRMWYNjhxFXdEtYvj1qLomT1t/Qb4OkvDw9uLde8=
Subject key identifier: 4D:91:7A:5F:90:EA:6D:12:CC:72:AB:4D:ED:F6:D2:35:D4:44:DC:05
Certificate issuer: /CN=68d6604c88c2e04e6167241315b74a758ce648c3
Certificate serial: 0193CFF4BC283F9F307E1A7130C817E1F651
Authority key identifier: 68:D6:60:4C:88:C2:E0:4E:61:67:24:13:15:B7:4A:75:8C:E6:48:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNZgTIjC4E5hZyQTFbdKdYzmSMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/TZF6X5DqbRLMcqtN7fbSNdRE3AU.roa
Signing time: Mon 16 Dec 2024 14:52:22 +0000
ROA not before: Mon 16 Dec 2024 14:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43361
IP address blocks: 37.17.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:f4:bc:28:3f:9f:30:7e:1a:71:30:c8:17:e1:f6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d6604c88c2e04e6167241315b74a758ce648c3
Validity
Not Before: Dec 16 14:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d917a5f90ea6d12cc72ab4dedf6d235d444dc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:46:fd:a6:e0:40:3b:40:15:68:84:8e:e1:15:
be:ea:ae:50:aa:49:5c:ac:15:23:73:67:4e:49:1b:
2e:cc:0f:85:4d:6d:b7:7d:83:eb:62:4a:6a:ae:03:
fd:9d:4a:44:53:2c:74:fc:55:1e:51:e3:8e:f8:fd:
a6:2d:f4:78:ed:98:4e:bb:44:92:df:6a:61:6d:55:
30:a0:94:5b:fe:0d:4a:ca:10:8b:c6:e8:af:85:f0:
5e:25:06:28:a3:e3:60:2a:b0:e6:aa:4e:14:e6:de:
af:4c:41:33:6a:1f:5b:af:df:6f:41:1f:dc:61:0c:
98:74:d7:08:bc:b1:98:7e:61:f2:bb:2c:77:9d:91:
c8:63:b8:df:ad:3c:ce:a0:d5:05:6a:af:21:0f:be:
6d:dd:a1:63:51:a1:af:e9:ed:98:3f:45:81:33:22:
51:f3:92:d2:c8:dc:92:39:9c:bc:ef:0e:1b:a1:79:
4f:5f:9e:0c:b8:28:43:8d:fd:e5:6b:57:0b:3f:ec:
3d:e6:58:19:7d:92:b8:64:bb:ae:77:ca:24:15:c9:
89:c5:49:17:d4:b5:18:d5:34:26:57:25:b4:06:0d:
af:32:66:bb:cc:5b:1e:65:6d:09:15:5a:20:b3:e5:
2c:06:df:6d:3b:5b:55:1b:94:ad:3e:b0:a0:03:87:
22:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:91:7A:5F:90:EA:6D:12:CC:72:AB:4D:ED:F6:D2:35:D4:44:DC:05
X509v3 Authority Key Identifier:
keyid:68:D6:60:4C:88:C2:E0:4E:61:67:24:13:15:B7:4A:75:8C:E6:48:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNZgTIjC4E5hZyQTFbdKdYzmSMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/TZF6X5DqbRLMcqtN7fbSNdRE3AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/006225-9bff-4583-8a15-7cc2945f2ca6/1/aNZgTIjC4E5hZyQTFbdKdYzmSMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.17.244.0/22
Signature Algorithm: sha256WithRSAEncryption
29:a0:a9:a3:cc:5e:a2:6c:cc:28:81:73:16:dc:ed:4e:fc:e7:
11:54:2b:a6:64:0b:c0:48:2a:e6:2e:bb:44:0c:3d:9c:ad:52:
c2:a5:b0:8d:1c:ba:d8:f5:86:88:5b:6d:d4:41:51:3b:e4:22:
42:4b:25:a2:42:b3:73:b3:f4:01:0f:58:ec:e9:57:61:fa:2d:
71:90:88:02:48:5e:62:de:f0:f4:9e:38:eb:be:e9:bf:08:97:
b2:30:9e:cb:81:6c:79:03:db:78:16:a1:e4:ef:f7:da:4d:14:
4e:26:d6:8a:3d:1a:2b:54:1e:11:1a:83:f0:c7:70:3c:1f:6d:
f9:45:f2:87:90:fd:f3:64:c8:50:94:da:01:08:04:13:9d:86:
35:9f:d4:a7:51:65:8a:49:b2:bf:f4:8f:be:b4:3b:32:d2:bc:
ea:ab:ce:be:71:63:7b:71:fa:c7:fe:38:7c:2a:b0:49:64:b6:
92:52:54:38:32:c1:d7:a7:c7:66:cb:7c:fe:aa:6d:68:dc:0a:
11:c4:c5:0c:66:52:be:b4:47:04:a1:ea:96:55:ba:14:c3:a5:
3f:c4:b2:2e:2f:73:bb:e7:a4:ec:0f:4d:88:fc:c4:54:04:33:
95:e7:e0:ed:7c:d6:46:e6:70:67:c4:77:ab:11:fe:8b:b4:cc:
94:05:c2:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:36 2024 by rpki-client on console.sobornost.net