Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/EQnWy7Qdbwxt9PGnNsISojppQgM.roa
File: EQnWy7Qdbwxt9PGnNsISojppQgM.roa (raw, json)
Hash identifier: tM7d4XvZxCFX24seT1y6z8ablxOY1Bq9NzmfeJOGVyM=
Subject key identifier: 11:09:D6:CB:B4:1D:6F:0C:6D:F4:F1:A7:36:C2:12:A2:3A:69:42:03
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018ACDDC8A6FB162170044AFEA6F7ACEB9C7
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/EQnWy7Qdbwxt9PGnNsISojppQgM.roa
Signing time: Mon 25 Sep 2023 19:41:37 +0000
ROA not before: Mon 25 Sep 2023 19:41:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 89.249.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cd:dc:8a:6f:b1:62:17:00:44:af:ea:6f:7a:ce:b9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Sep 25 19:41:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1109d6cbb41d6f0c6df4f1a736c212a23a694203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:15:8b:21:b2:74:d8:34:8c:8d:4c:de:e7:
b1:1a:92:16:5c:0e:88:72:85:55:4f:90:52:82:41:
4d:54:a0:6d:01:00:02:18:fb:8f:a7:a3:63:9c:05:
32:1d:93:d9:82:35:02:69:89:5a:8a:bf:08:16:52:
77:cc:95:44:c0:d6:11:24:a6:ca:85:4f:2d:db:06:
ab:28:d3:d8:0e:38:ef:e2:70:c8:9a:f7:8e:59:0d:
5f:ea:9e:42:8e:ab:88:47:df:d9:82:4f:e9:40:61:
de:bc:73:73:26:c6:d3:5c:34:fa:09:e6:9e:18:7a:
7e:f3:68:c9:99:be:36:a4:3e:2c:9e:f9:22:2e:f6:
e5:54:00:0b:6f:2d:f5:5c:d0:55:67:ba:62:26:9b:
6b:39:84:fc:e2:87:c5:2f:a4:fb:e7:e5:ea:c5:d2:
e7:c5:26:f2:5d:27:72:65:36:f9:da:76:e9:8e:b3:
9c:11:3b:cc:65:a7:04:db:80:b9:1f:cb:29:71:31:
e6:ab:9e:d8:d3:a2:11:a0:c8:66:f4:db:43:ec:83:
f0:23:4c:fe:49:d8:e6:32:2b:15:98:ac:79:b5:ec:
30:fa:db:cb:fc:6b:aa:6b:c0:5e:24:e2:ff:04:cc:
d2:73:ef:54:5a:09:9f:26:b3:05:2c:c5:83:bc:0f:
3a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:09:D6:CB:B4:1D:6F:0C:6D:F4:F1:A7:36:C2:12:A2:3A:69:42:03
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/EQnWy7Qdbwxt9PGnNsISojppQgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.204.0/24
Signature Algorithm: sha256WithRSAEncryption
17:51:c3:ab:78:6a:ed:f8:3a:8a:fd:de:a3:cf:6f:86:e4:48:
25:8c:46:6f:71:f1:4c:98:6f:c9:d0:2f:59:5d:1f:60:9c:c9:
53:b5:10:b4:42:63:08:5b:da:99:2f:99:78:e3:ec:db:cc:20:
f1:8b:26:a4:a1:d2:09:a0:fb:6d:f2:88:27:c0:99:f1:73:b5:
84:a7:46:f5:2c:0f:db:88:a7:13:3a:0c:36:3e:ca:50:40:c0:
8b:52:5a:6b:d9:be:27:56:09:ba:59:6f:7e:dc:23:92:4c:32:
79:08:62:67:83:81:62:9a:60:e3:d8:52:82:7b:46:8f:7f:73:
72:0e:77:54:34:28:3f:d4:5b:40:7a:40:84:e2:1f:6d:a2:92:
d6:e4:59:13:7f:04:14:8e:da:f6:aa:71:a6:5a:5b:d4:9c:c0:
2b:03:4d:23:ed:d9:28:fe:94:18:39:eb:9a:d4:20:1a:04:84:
45:29:a2:51:c2:3e:f3:a9:7e:8d:a8:93:19:62:e2:a0:9d:1e:
ed:5e:da:60:71:66:56:15:b3:c5:f9:c2:50:d8:4b:e6:f1:b3:
ae:8a:44:da:98:f0:98:5b:5f:0f:62:3f:de:ea:d0:d8:d5:14:
c2:3e:2b:17:4c:f2:3c:18:95:a0:4c:b2:5e:19:f5:c0:70:d7:
95:46:44:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:05 2025 by rpki-client