Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/O1vjnWoXRLMuYzaPZkbq6ahgxS0.roa
File: O1vjnWoXRLMuYzaPZkbq6ahgxS0.roa (raw, json)
Hash identifier: 4l5vpOw8KNEtArb1uiBOT6CWVmKI0ErJW1LfSefBaOE=
Subject key identifier: 3B:5B:E3:9D:6A:17:44:B3:2E:63:36:8F:66:46:EA:E9:A8:60:C5:2D
Certificate issuer: /CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Certificate serial: 01887165BBBFA13BA77417EC29B360F03203
Authority key identifier: C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/O1vjnWoXRLMuYzaPZkbq6ahgxS0.roa
Signing time: Wed 31 May 2023 10:41:12 +0000
ROA not before: Wed 31 May 2023 10:41:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50868
IP address blocks: 89.23.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:65:bb:bf:a1:3b:a7:74:17:ec:29:b3:60:f0:32:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Validity
Not Before: May 31 10:41:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b5be39d6a1744b32e63368f6646eae9a860c52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:44:2e:89:b2:91:3a:10:a8:1c:49:cf:26:00:
bc:8e:92:2f:86:8d:0c:2f:1b:e3:2f:fc:4e:14:15:
b0:35:16:da:f3:1b:49:f7:81:78:0e:1d:19:f7:a9:
31:3e:0e:b3:43:83:42:2d:90:94:22:1e:ea:5b:9c:
3b:f2:cd:9d:08:14:00:cc:d1:2e:8a:eb:b9:5f:e9:
15:b9:be:6d:82:46:01:99:c3:fa:50:5e:f6:de:04:
d6:c8:d7:db:aa:e9:fb:13:d6:1b:8c:fd:ab:f8:c1:
40:d8:07:76:ad:14:68:89:d2:5d:92:7c:4e:75:b6:
0f:f5:f8:6f:f2:99:e2:65:3f:5d:ed:28:fa:e0:e8:
ee:43:d4:b0:5d:55:47:bf:ab:96:73:d0:4d:09:db:
62:b1:74:f5:7f:fd:95:fa:95:2b:51:1f:86:46:97:
b2:2b:9b:4d:06:5b:1b:cb:8c:94:80:e6:6e:f8:05:
ca:eb:dd:c9:0d:44:65:55:66:9a:fe:06:dd:b3:a1:
33:92:c8:54:43:79:df:b2:78:75:90:37:94:cb:57:
dc:74:dd:c6:e8:78:56:f8:09:50:74:5d:b1:b8:f1:
32:4d:aa:8f:8c:ee:a4:6e:78:50:73:37:85:8e:53:
c4:b8:8c:0f:83:a4:8d:be:1f:ca:ff:18:01:4a:bc:
2e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5B:E3:9D:6A:17:44:B3:2E:63:36:8F:66:46:EA:E9:A8:60:C5:2D
X509v3 Authority Key Identifier:
keyid:C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/O1vjnWoXRLMuYzaPZkbq6ahgxS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/wsO16XxGqTvDo1zHEFXE8N_GxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.89.0/24
Signature Algorithm: sha256WithRSAEncryption
66:43:bf:6c:45:0e:83:53:a6:22:38:0f:7d:34:8b:ae:27:db:
99:9c:94:61:e6:56:32:12:a9:28:f2:01:d2:f3:07:ef:ab:8f:
61:4b:3c:73:55:f6:f2:9a:19:6a:ce:06:50:ec:80:3e:26:5b:
69:ef:14:fc:ed:d0:e5:20:af:cc:44:56:68:39:17:8a:d4:04:
a5:f9:22:6c:ff:1f:9b:08:e4:c2:fb:ba:e2:f3:ba:95:64:60:
0a:b4:c4:68:ea:25:9f:73:bb:e9:6a:2c:87:3c:f6:92:14:5b:
e9:36:e1:af:2f:b7:eb:15:f9:c5:57:9c:db:cf:d3:da:d9:2d:
ad:50:5c:78:5f:a4:fc:a6:f2:02:05:9e:72:68:bd:bc:25:01:
23:a6:0c:37:a4:04:92:50:12:be:0b:ec:7f:88:dc:0a:60:e7:
df:36:77:1e:24:d3:b4:52:f3:a8:e1:f5:ce:03:7c:af:0f:15:
21:89:16:a8:fa:64:a3:2c:52:4d:24:91:cc:be:bf:e0:47:de:
56:72:24:f6:17:5f:e9:ff:c4:cd:fd:e8:89:e7:81:8a:99:09:
bb:de:c8:6b:d8:0a:bd:17:3b:e5:61:ec:d0:63:87:c7:27:c8:
16:b6:da:7f:7a:53:c7:05:1f:8a:8d:0a:7c:5a:80:9c:82:3a:
18:ac:d6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:03 2023 by rpki-client on console-ams.rpki-client.org