Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/rgIHzEG1BGl8oix1t4n4LYEXADE.roa
File: rgIHzEG1BGl8oix1t4n4LYEXADE.roa (raw, json)
Hash identifier: 1U8lyCi4zyMIepDM0QQvrMjZWfM3qg20EQm68AhDNF4=
Subject key identifier: AE:02:07:CC:41:B5:04:69:7C:A2:2C:75:B7:89:F8:2D:81:17:00:31
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018BB460FE5BCB7D3C7ADF718234FC0BAAD7
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/rgIHzEG1BGl8oix1t4n4LYEXADE.roa
Signing time: Thu 09 Nov 2023 13:58:57 +0000
ROA not before: Thu 09 Nov 2023 13:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 89.249.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b4:60:fe:5b:cb:7d:3c:7a:df:71:82:34:fc:0b:aa:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Nov 9 13:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae0207cc41b504697ca22c75b789f82d81170031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:75:cf:18:5c:7e:a7:e7:bd:3b:30:06:4e:1b:
1c:30:6c:c2:4e:0c:2a:06:ef:ce:a9:04:f5:75:83:
c0:c4:14:56:06:30:a3:51:4d:a8:cb:16:16:43:21:
b0:ad:e7:c0:f1:6c:a1:6d:b6:cd:00:63:a8:11:6d:
62:46:fe:4c:1e:f2:bb:a2:9b:06:6f:ae:59:69:a3:
26:81:bc:9a:e4:3d:af:89:f7:05:bb:03:40:63:46:
ba:21:c1:05:1a:35:4f:3d:f4:17:67:09:3f:4e:87:
75:f3:77:65:99:18:05:57:b0:ea:78:26:87:23:97:
ca:2e:3d:8d:7f:17:a1:1f:1f:50:0a:03:64:60:d2:
fe:c5:79:90:55:11:c7:40:b8:fd:ae:48:ec:bf:76:
6e:65:92:b5:81:90:82:bb:3d:c9:a1:39:e0:fd:e1:
20:21:0f:ce:c1:a9:8e:be:70:bf:05:54:4a:aa:ab:
18:0e:e4:de:c3:7b:4f:e2:76:80:18:f0:0c:3e:b9:
0c:d5:44:1c:5c:9c:c0:31:6d:6f:c6:66:77:27:69:
c2:f0:f4:71:31:a8:ed:a2:61:ba:bc:63:d8:bd:15:
6f:ea:43:5e:a3:48:34:c2:45:9c:1e:c7:fa:de:d1:
00:00:d7:f8:ce:fe:6b:e0:72:d0:89:3e:50:46:24:
11:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:02:07:CC:41:B5:04:69:7C:A2:2C:75:B7:89:F8:2D:81:17:00:31
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/rgIHzEG1BGl8oix1t4n4LYEXADE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.205.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:8f:cd:c6:16:e9:40:49:36:77:b7:09:1c:53:74:41:eb:20:
a1:79:f9:14:a3:20:75:64:e1:07:98:f6:ad:00:dd:fa:8b:6f:
10:7e:a3:7e:49:61:80:6e:d4:94:a4:2b:df:52:45:b3:fc:dc:
56:7b:80:41:39:4d:c8:3e:99:10:32:8c:2d:25:47:2a:7d:81:
eb:fc:1c:4f:fc:8d:92:9e:5e:01:41:e4:fe:6f:32:fb:20:8a:
a6:bf:53:79:d8:4d:04:51:60:2f:1b:a7:43:68:ac:24:b7:57:
fa:1a:ef:58:da:01:5e:c8:54:86:f7:48:6f:cd:21:63:df:93:
7f:31:dc:04:53:03:f0:70:70:3c:4d:a0:45:10:ae:b9:30:1e:
ae:83:56:87:ac:07:f9:59:3a:fb:cd:2f:1f:1f:38:4c:78:56:
89:fb:b4:93:1f:34:e1:e1:dd:1c:2b:3f:07:ab:c6:dd:70:a0:
6e:76:d9:9a:aa:1a:ef:e3:89:61:88:f9:3c:58:20:63:34:69:
33:dd:c4:50:02:19:63:2c:ff:9d:0b:ae:9f:4e:45:df:f9:26:
a5:e1:63:23:4b:f8:28:72:e5:b3:58:b8:03:fd:59:e9:f1:62:
43:07:11:23:a8:cd:23:01:df:8b:50:54:e2:9e:c4:58:95:f6:
b5:8f:52:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:29 2025 by rpki-client