Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/XTtNMANRP4msS5TufkHk0Jv05nI.roa
File: XTtNMANRP4msS5TufkHk0Jv05nI.roa (raw, json)
Hash identifier: WKZkPjLG1AFvnH5bbQc4J7Qf5aOIlcFpM4RTOrTmEzE=
Subject key identifier: 5D:3B:4D:30:03:51:3F:89:AC:4B:94:EE:7E:41:E4:D0:9B:F4:E6:72
Certificate issuer: /CN=45dab507c08976cc29d177373de627a1ce86efae
Certificate serial: 01856F02240C25A0745D954C4C8F0D6FD418
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/XTtNMANRP4msS5TufkHk0Jv05nI.roa
Signing time: Sun 01 Jan 2023 20:24:49 +0000
ROA not before: Sun 01 Jan 2023 20:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39216
IP address blocks: 213.198.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:24:0c:25:a0:74:5d:95:4c:4c:8f:0d:6f:d4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
Validity
Not Before: Jan 1 20:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d3b4d3003513f89ac4b94ee7e41e4d09bf4e672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:2a:7a:5d:7e:89:f7:66:10:5a:d0:0c:61:
c3:97:52:59:c4:3e:49:01:f5:b3:e7:ee:7c:6d:53:
61:78:d4:96:82:76:c3:d0:93:88:50:0b:f1:2e:ec:
85:a6:9c:a2:cd:65:66:6e:a2:57:e2:aa:e9:a3:55:
48:a0:31:02:6b:d3:b1:73:60:a1:1a:0b:50:9f:81:
32:25:dd:b0:ac:7f:0a:fd:20:95:8a:3e:25:ac:07:
3d:f4:b5:6f:e4:0a:20:e9:c2:4a:90:7b:53:67:15:
d2:9b:54:dc:5d:83:32:54:97:e8:40:9b:bb:fd:3b:
24:dc:ad:b9:e5:f8:2f:e6:87:af:96:49:fa:b6:61:
e2:10:cd:dc:b9:6d:a4:da:aa:b8:38:25:4c:9c:a2:
3d:d0:99:55:40:95:d3:71:8c:8d:d0:3c:b5:f7:7a:
22:00:d5:fa:2c:a0:75:00:53:6e:32:1c:e7:68:29:
94:e2:97:9c:08:d2:e7:8e:73:cc:ca:56:30:97:c4:
04:09:a9:35:e8:19:68:a2:53:53:89:5e:83:39:2d:
da:8c:aa:64:89:f3:3f:77:57:74:3f:c3:4c:8a:d0:
00:ff:2f:72:ed:02:ec:b0:00:58:19:cb:11:70:98:
24:78:f4:46:b2:4a:60:e2:01:1e:14:6f:3e:17:96:
ce:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3B:4D:30:03:51:3F:89:AC:4B:94:EE:7E:41:E4:D0:9B:F4:E6:72
X509v3 Authority Key Identifier:
keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/XTtNMANRP4msS5TufkHk0Jv05nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.198.89.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:a0:1e:ed:22:6d:3f:78:e3:39:49:ef:c1:81:df:8c:6b:0d:
74:b0:9e:f2:7e:53:2b:07:12:30:87:1e:50:84:3c:1d:0c:32:
dc:21:8f:04:32:d2:60:ef:2a:64:56:a4:84:bb:3a:07:a9:e8:
bd:6b:f9:77:1d:0e:31:4c:77:28:2e:e3:2d:a6:ff:5c:df:e1:
83:22:c3:d6:f3:30:3e:29:ce:e7:c4:16:ea:2e:69:5d:54:da:
50:d8:82:d3:86:0a:d3:47:38:57:09:fe:d7:24:ae:c8:10:66:
0f:fe:86:b1:96:43:48:fe:9d:3f:6b:fb:31:47:00:70:34:e9:
c8:26:00:cd:05:8f:f8:0a:04:11:92:86:7c:82:b7:2e:55:51:
52:7b:ee:f4:2b:99:d4:31:d5:bb:9e:a0:84:a1:23:8b:1f:2a:
6e:ef:43:4e:92:8f:d4:16:c4:a2:a8:b5:45:e2:ba:96:1d:1e:
16:79:14:99:6e:c7:d9:7b:d9:95:26:89:47:e4:c8:78:2c:52:
cf:98:20:89:d8:cb:ca:2c:5e:de:ca:a4:b4:71:97:95:f4:74:
c8:4d:93:e7:0a:c5:d9:85:d6:50:30:e6:76:67:01:e3:52:4c:
c6:94:db:03:a6:b1:46:61:20:2a:73:2e:b1:2b:06:c9:fc:17:
9f:d7:51:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-ams.rpki-client.org