Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/6rzgF3pCQzZYjZZHxQrt6dOXoyQ.roa
File: 6rzgF3pCQzZYjZZHxQrt6dOXoyQ.roa (raw, json)
Hash identifier: tms37Pxb81VDsh6rRgCSjHx7HCeGiwgQY3WLA+Lsm0Q=
Subject key identifier: EA:BC:E0:17:7A:42:43:36:58:8D:96:47:C5:0A:ED:E9:D3:97:A3:24
Certificate issuer: /CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Certificate serial: 0188716A52E01DBE265DA4AE6005DC448856
Authority key identifier: C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/6rzgF3pCQzZYjZZHxQrt6dOXoyQ.roa
Signing time: Wed 31 May 2023 10:46:13 +0000
ROA not before: Wed 31 May 2023 10:46:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 89.23.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:6a:52:e0:1d:be:26:5d:a4:ae:60:05:dc:44:88:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Validity
Not Before: May 31 10:46:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eabce0177a424336588d9647c50aede9d397a324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:9c:12:96:b0:91:56:6a:b9:88:61:d3:4e:
ec:ee:a7:b6:5a:b9:55:3a:b2:21:a7:d6:bb:79:78:
e9:0c:cd:7c:bb:0e:77:81:c9:98:e5:95:3e:a6:da:
df:6e:b5:6a:5f:e4:d0:ae:8a:db:c0:41:e4:1e:24:
51:2c:84:fa:fc:2a:1d:fe:6c:e0:8b:da:70:53:91:
cf:2b:f7:ad:df:9c:bb:c1:51:1a:98:ac:eb:c1:db:
84:31:64:83:2d:62:20:a5:fa:c6:c8:88:85:30:90:
46:48:52:95:36:57:f4:1f:13:c1:8e:ee:e1:51:87:
4d:d6:b8:19:81:c1:08:66:aa:db:ab:3d:52:65:90:
1e:9c:38:91:5c:e5:6e:7f:10:86:a9:b0:4e:86:08:
51:28:3a:6d:02:7c:2e:80:0b:d0:a7:9a:ed:3b:ad:
61:cb:35:c1:5f:cf:2c:0e:ec:57:69:27:fb:8d:66:
20:e9:49:21:84:74:de:db:b2:a4:74:73:2d:19:69:
2b:57:37:7a:81:b5:95:41:59:d9:97:81:b6:0d:50:
50:92:8c:d5:74:f6:14:53:dd:ef:fa:66:90:a6:69:
0b:98:c8:fd:32:57:27:7b:aa:38:c6:22:12:0b:4e:
3b:1f:1a:dc:b9:b5:c1:39:7d:e3:62:20:d0:c7:f2:
b0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BC:E0:17:7A:42:43:36:58:8D:96:47:C5:0A:ED:E9:D3:97:A3:24
X509v3 Authority Key Identifier:
keyid:C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/6rzgF3pCQzZYjZZHxQrt6dOXoyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/wsO16XxGqTvDo1zHEFXE8N_GxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.83.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:11:1d:eb:da:02:a9:b1:45:db:ff:38:7f:8f:42:cf:0e:e5:
ed:c6:5f:60:4e:4a:b4:14:d0:65:0b:07:4f:44:89:2b:94:7c:
5f:40:5b:88:67:ab:6e:13:6e:54:35:fe:d9:e1:a5:0b:79:b3:
04:61:e3:5c:59:83:94:bf:bf:e7:4b:f6:7f:93:55:4c:2a:58:
e0:86:cb:b5:a1:ec:7b:56:d4:44:21:9d:c6:3b:28:b0:2e:e0:
95:af:74:6e:7f:f7:48:f0:2d:11:5f:62:f9:5b:25:40:b2:4d:
55:c8:49:ae:76:e5:40:35:ee:4e:43:01:44:e5:07:68:8e:64:
32:b2:94:76:e0:84:3b:df:3e:86:7a:08:0e:8b:0b:ee:60:ff:
69:71:e9:ef:4f:36:cb:22:ba:29:6e:f1:cb:1d:90:fa:fc:7b:
98:80:3e:c2:41:80:2b:e2:cf:69:7b:ff:99:cc:4e:e9:e3:37:
85:44:06:52:34:e3:f1:41:35:67:62:d3:be:3c:b9:34:54:f8:
94:d7:98:f3:c7:a0:01:c5:19:79:db:28:96:2b:0d:3b:ed:d9:
91:87:4f:e8:f2:d6:c2:14:ef:d8:f7:63:69:8e:fb:eb:01:b6:
f1:9d:bb:70:42:ff:fa:4e:f7:7d:83:57:fe:5b:9d:13:2f:a3:
5a:5c:fb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:46 2024 by rpki-client on console-fra.rpki-client.org