Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/ZtIOA1e8pgOoGCAO5sJ3W5fsCeE.roa
File: ZtIOA1e8pgOoGCAO5sJ3W5fsCeE.roa (raw, json)
Hash identifier: jqzQR3orFbRF5IkRtHQ27cTo3rdxfwUGan2ZkQssHcY=
Subject key identifier: 66:D2:0E:03:57:BC:A6:03:A8:18:20:0E:E6:C2:77:5B:97:EC:09:E1
Certificate issuer: /CN=880369c01e0f62570710f7b702302928250f65da
Certificate serial: 0186A31998C657D6571ED0F9A2E3CBB4FA8D
Authority key identifier: 88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/ZtIOA1e8pgOoGCAO5sJ3W5fsCeE.roa
Signing time: Thu 02 Mar 2023 16:13:29 +0000
ROA not before: Thu 02 Mar 2023 16:13:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212953
IP address blocks: 146.19.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a3:19:98:c6:57:d6:57:1e:d0:f9:a2:e3:cb:b4:fa:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880369c01e0f62570710f7b702302928250f65da
Validity
Not Before: Mar 2 16:13:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66d20e0357bca603a818200ee6c2775b97ec09e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:56:71:26:c0:02:e4:f8:00:8a:a5:24:af:
68:89:3a:1c:16:e7:4f:e4:e0:9a:e7:2a:48:28:b8:
80:8a:41:d3:45:31:26:1d:60:8e:2e:07:4b:38:7b:
4e:5a:00:72:5d:0d:23:c6:dd:94:20:a1:c5:05:83:
e6:6f:2b:2c:f5:8d:b7:c2:df:3f:63:1d:84:26:53:
6d:48:d9:63:33:7b:fe:ee:9c:2b:a1:b3:88:29:96:
c3:15:5c:26:82:6a:96:4c:ed:fc:ec:24:55:16:33:
c3:9b:fd:66:10:b5:18:63:66:fe:27:83:3f:e2:26:
98:84:62:83:c5:ea:36:d7:b8:93:e7:64:c6:bc:7c:
69:7d:79:d3:9f:58:70:29:74:16:2c:fb:b7:ef:25:
bb:be:31:57:e6:a1:ef:35:f9:44:52:7e:4f:36:68:
d9:0e:bc:69:36:b5:75:e9:2c:ef:60:65:62:34:d8:
b2:02:8b:46:4f:46:b1:19:bc:36:fc:cd:74:7e:3c:
71:90:9a:b6:16:c0:98:23:18:49:2c:c7:88:a3:35:
d3:33:fc:25:2d:9f:52:0c:81:30:37:52:9c:97:6c:
4a:24:2a:ac:77:6c:ab:46:7c:1d:b7:90:6c:cd:c4:
48:30:19:a4:ac:b8:74:1e:52:02:ee:1f:d5:96:21:
9d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D2:0E:03:57:BC:A6:03:A8:18:20:0E:E6:C2:77:5B:97:EC:09:E1
X509v3 Authority Key Identifier:
keyid:88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/ZtIOA1e8pgOoGCAO5sJ3W5fsCeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/iANpwB4PYlcHEPe3AjApKCUPZdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.67.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d4:64:c3:b7:4a:87:05:6c:35:36:1a:b2:30:32:0e:36:22:
a9:bd:67:2f:e6:98:54:1b:1f:19:66:ed:e9:49:a0:3c:9d:3c:
36:bf:0d:1a:10:d0:5a:a2:22:61:6e:15:9b:cd:58:40:a8:eb:
bb:d5:e5:34:0a:7b:c6:47:db:e9:14:ab:90:65:08:30:9a:d3:
fe:0a:b9:9e:a5:5f:c2:a6:aa:d6:7c:fb:84:28:f6:a2:4a:d7:
1f:2f:1e:6b:f0:86:64:45:67:00:5e:f1:d7:f7:34:b0:9c:c7:
9f:3e:29:af:49:1a:08:0a:7b:26:c1:bc:05:eb:8a:31:38:43:
83:3c:f9:ba:66:56:4f:03:0d:7c:8e:8c:9f:ce:fd:db:a7:69:
e5:8d:22:43:52:10:b9:3f:ae:a0:06:2c:97:dd:02:c1:78:25:
c4:d7:95:c2:71:a0:7e:3a:41:d2:ce:5b:cb:72:5f:5d:81:b0:
75:f0:46:50:9d:f6:15:53:3b:97:b3:5e:65:20:b5:be:37:75:
98:8f:af:23:48:22:a1:69:2e:a3:c7:62:62:da:56:db:ef:d9:
c0:01:18:b9:5b:c8:92:d1:a8:da:aa:d2:74:4c:ba:7f:e0:63:
e4:7d:68:59:20:40:da:05:11:03:34:ad:63:55:8c:1e:d1:f0:
e8:6b:df:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net