Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/ZUTwTfvy5gZ1XNeuDKqDlkFc_Mo.roa
File: ZUTwTfvy5gZ1XNeuDKqDlkFc_Mo.roa (raw, json)
Hash identifier: SddHLfDCxBkTM+dyjdzcw1b/Y+MxxC1+o1NdthXEeug=
Subject key identifier: 65:44:F0:4D:FB:F2:E6:06:75:5C:D7:AE:0C:AA:83:96:41:5C:FC:CA
Certificate issuer: /CN=34a9eb6c4d3a57c9a56456ddbf0012b81750b1d3
Certificate serial: 01857070408BEEB21C735222BBD943A5C5C1
Authority key identifier: 34:A9:EB:6C:4D:3A:57:C9:A5:64:56:DD:BF:00:12:B8:17:50:B1:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NKnrbE06V8mlZFbdvwASuBdQsdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/ZUTwTfvy5gZ1XNeuDKqDlkFc_Mo.roa
Signing time: Mon 02 Jan 2023 03:04:42 +0000
ROA not before: Mon 02 Jan 2023 03:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43624
IP address blocks: 185.138.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:40:8b:ee:b2:1c:73:52:22:bb:d9:43:a5:c5:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34a9eb6c4d3a57c9a56456ddbf0012b81750b1d3
Validity
Not Before: Jan 2 03:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6544f04dfbf2e606755cd7ae0caa8396415cfcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:55:37:2e:29:7b:26:77:47:60:1d:a4:af:97:
02:d6:2a:f8:25:b8:2d:f2:f0:3a:ab:97:18:57:38:
22:39:50:0d:6d:0a:36:5a:e5:1f:3e:f0:58:89:63:
7d:a3:d5:c5:45:8a:f2:dc:8e:7b:c1:9f:d0:c0:c2:
c5:91:db:5f:25:e4:f9:67:ce:50:d6:e7:56:53:7e:
8a:57:dc:82:98:c1:c4:c9:1e:54:44:6c:76:be:8b:
a8:0f:62:11:88:7c:6e:07:af:0d:c1:80:36:8b:d3:
da:4c:31:26:00:4f:7b:d5:c1:7f:dd:d7:24:09:08:
7d:89:53:99:5f:13:b6:27:36:b5:c3:99:4b:d2:8b:
b9:c9:15:fb:e4:d8:fe:35:38:f6:b9:62:92:ea:97:
0e:67:a0:7f:77:42:f4:5a:18:46:6c:36:1b:ee:ca:
28:bd:f7:a5:86:f7:01:00:4d:2f:c7:68:21:38:9f:
56:b6:01:5a:09:a5:2d:8b:ed:82:ae:4f:d2:e9:5d:
92:b0:e8:6e:fd:bc:a8:20:cc:65:98:60:65:9c:f2:
82:93:89:fd:d7:62:a0:93:81:ac:af:62:60:ad:3a:
d5:98:20:18:88:14:dc:ca:03:3a:59:b3:86:d8:58:
fe:76:47:dd:a1:c5:41:76:1a:32:7b:ea:28:13:23:
d8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:44:F0:4D:FB:F2:E6:06:75:5C:D7:AE:0C:AA:83:96:41:5C:FC:CA
X509v3 Authority Key Identifier:
keyid:34:A9:EB:6C:4D:3A:57:C9:A5:64:56:DD:BF:00:12:B8:17:50:B1:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NKnrbE06V8mlZFbdvwASuBdQsdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/ZUTwTfvy5gZ1XNeuDKqDlkFc_Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/NKnrbE06V8mlZFbdvwASuBdQsdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.164.0/24
Signature Algorithm: sha256WithRSAEncryption
12:72:27:c8:27:af:f3:39:35:8a:91:a2:88:b7:f1:31:69:08:
39:f6:7f:f1:23:e2:95:bf:20:fb:dd:0c:94:6a:0c:b9:27:2e:
cd:24:73:3c:ca:29:0f:31:9a:3b:3e:71:08:be:1e:90:29:6e:
09:69:92:4a:d8:5c:27:b6:17:a3:ae:c7:cf:f3:b5:6f:d6:be:
c4:a7:ff:b1:b0:0e:47:ac:28:da:d0:ad:0a:a3:57:56:b6:e7:
c8:42:75:c5:f2:d7:33:1b:a8:d8:b1:4d:fe:19:a3:80:29:fe:
87:a3:75:1c:d6:c7:12:97:65:e8:a1:b8:b2:4f:f0:a4:a3:84:
28:40:61:76:74:a3:b6:6b:63:be:ea:7c:4b:ff:23:ef:bb:80:
67:8d:7e:6b:ed:3b:37:d4:6a:ba:28:eb:2f:4a:fd:05:ec:ef:
53:98:38:47:dc:e3:d8:c0:60:aa:ac:08:a4:51:38:e7:59:f8:
45:6b:44:ed:62:61:b9:f7:ea:4d:c5:51:69:88:7b:74:53:69:
df:8c:e0:68:81:4f:4b:0c:d7:6b:3d:19:b6:77:df:04:de:85:
85:68:25:32:6e:db:39:b1:f3:ed:2c:29:92:e7:80:46:d9:ee:
5a:41:fa:76:d7:4e:6d:8f:79:51:3b:c5:3f:a6:06:cb:3f:74:
61:0e:b4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:40 2023 by rpki-client on console.sobornost.net