Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Jwb03lpHaDo-p0NJ1cZW9N45Vn4.roa
File: Jwb03lpHaDo-p0NJ1cZW9N45Vn4.roa (raw, json)
Hash identifier: qnLYVHJ6tiaiYCQAw6BQjrRNG++n1DW03tQPoSk75RE=
Subject key identifier: 27:06:F4:DE:5A:47:68:3A:3E:A7:43:49:D5:C6:56:F4:DE:39:56:7E
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018459B5E4FCF9BEC2D4137A4D8CD985F506
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Jwb03lpHaDo-p0NJ1cZW9N45Vn4.roa
Signing time: Wed 09 Nov 2022 00:06:43 +0000
ROA not before: Wed 09 Nov 2022 00:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51287
IP address blocks: 185.89.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:59:b5:e4:fc:f9:be:c2:d4:13:7a:4d:8c:d9:85:f5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 9 00:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2706f4de5a47683a3ea74349d5c656f4de39567e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:45:17:aa:eb:85:a5:b1:1d:a4:a9:19:5e:
26:2d:bd:56:6a:7d:3e:c9:ad:0c:0c:84:db:47:9f:
83:4e:a3:1f:3f:bb:14:af:45:4b:f0:75:d1:16:ae:
09:29:2d:40:a6:3b:27:bf:a5:e4:cd:16:57:41:4b:
cb:af:b0:c6:dc:97:25:39:b5:e2:d7:d1:dc:e5:0f:
ca:3b:58:1b:2c:cd:07:1a:a8:45:c6:69:82:c7:17:
41:30:3d:cd:c2:60:5e:b2:f8:ab:3f:f1:b6:68:de:
56:af:88:93:9c:c3:56:f8:f0:fc:50:16:e3:ea:e0:
e4:84:7d:a0:19:50:03:6d:1c:0b:b6:17:d4:bb:31:
c3:cc:38:e0:da:34:d0:51:26:08:fe:6d:0c:b1:1b:
80:98:d4:61:5b:b0:06:c5:4c:4b:6c:2b:9e:ec:f5:
e7:10:9a:23:32:d6:83:27:fd:55:e9:0a:35:85:f8:
d2:4d:91:e2:59:f5:c0:b7:ca:32:8b:01:59:d3:66:
fc:5a:e6:8a:b0:cd:ac:41:3d:25:80:ce:a5:c1:98:
f8:d8:61:27:25:3a:b2:23:14:bb:4a:d9:91:26:7f:
0b:0f:92:2a:3f:dc:da:1f:cd:87:db:a3:7a:fe:04:
bb:7a:a3:76:7f:6c:66:85:53:f9:e0:90:d5:7a:4e:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:06:F4:DE:5A:47:68:3A:3E:A7:43:49:D5:C6:56:F4:DE:39:56:7E
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Jwb03lpHaDo-p0NJ1cZW9N45Vn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.76.0/24
Signature Algorithm: sha256WithRSAEncryption
65:5f:98:b6:5f:66:35:94:1f:f3:97:03:4c:5c:67:a5:91:e7:
c7:45:7e:f2:d8:ed:1a:52:c4:9d:01:3c:b7:f4:4f:22:b1:f9:
b3:4f:70:9a:36:5f:e5:74:eb:5d:16:76:f7:70:1c:b7:6a:7b:
11:c8:1d:40:84:ee:9a:b7:46:60:b0:ef:69:09:5b:4e:48:d0:
93:e3:e3:bf:c9:75:1a:13:ac:70:6f:5d:3b:d4:0b:61:fd:9e:
a0:da:10:21:bc:96:93:31:d0:57:39:0c:65:aa:dc:db:d3:9a:
00:ed:f3:f4:e1:17:08:52:bc:2b:7a:56:c3:2b:0a:22:ab:ce:
6d:be:01:84:dd:16:a2:f9:db:2c:71:37:0f:7d:0c:95:db:d5:
14:60:0b:e9:3c:e0:cd:04:76:73:b3:80:8b:f5:fc:23:ba:74:
19:f4:6e:b8:0f:d2:f8:b1:7a:12:0f:43:e8:16:fa:77:96:4f:
e9:a7:df:ea:d8:fe:b7:74:fb:95:33:ac:10:6b:f3:44:d6:9c:
73:fc:20:0b:05:9a:d8:4e:12:da:28:bd:65:76:d4:61:23:6c:
7c:00:c7:ad:e7:e9:d4:bc:a5:30:b0:0e:99:69:56:5c:ce:36:
0a:87:08:74:9e:71:a5:b6:e9:3b:8e:57:ac:01:81:f3:b6:07:
30:e6:b5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org