Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/jdgVnp-fW7uBCemowqwI8aQZStg.roa
File: jdgVnp-fW7uBCemowqwI8aQZStg.roa (raw, json)
Hash identifier: S4/MDRxCWXZDSt8vqySCU77C/uubO1+jA+pgK7FF2nA=
Subject key identifier: 8D:D8:15:9E:9F:9F:5B:BB:81:09:E9:A8:C2:AC:08:F1:A4:19:4A:D8
Certificate issuer: /CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Certificate serial: 0188716A503C9FD58163488969249B3FFB75
Authority key identifier: C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/jdgVnp-fW7uBCemowqwI8aQZStg.roa
Signing time: Wed 31 May 2023 10:46:12 +0000
ROA not before: Wed 31 May 2023 10:46:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200196
IP address blocks: 89.23.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:6a:50:3c:9f:d5:81:63:48:89:69:24:9b:3f:fb:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c3b5e97c46a93bc3a35cc71055c4f0dfc6c451
Validity
Not Before: May 31 10:46:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dd8159e9f9f5bbb8109e9a8c2ac08f1a4194ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7b:d9:a0:c7:36:60:d2:e7:fb:25:90:41:ca:
9c:52:79:b4:98:45:97:84:0b:58:71:6e:9a:6a:af:
65:c2:10:b6:d6:50:65:06:b8:3c:1c:ec:69:bc:68:
2f:a8:3c:aa:fa:c8:f5:25:e7:ef:38:cb:87:39:27:
9c:5a:21:92:d7:e7:0c:f0:77:dd:8a:75:f3:62:7d:
9c:04:ae:45:21:1f:00:a9:69:64:ee:81:8d:e3:a5:
17:7f:8b:a8:d0:03:63:b0:6b:43:64:bc:c2:19:14:
fc:87:7a:86:e2:90:09:af:e8:2a:6c:eb:7e:44:73:
56:99:b9:10:b6:2c:b9:69:73:e9:16:d4:78:3f:1b:
8d:e2:f9:d3:00:24:78:70:20:2e:7c:a6:b5:fd:08:
b3:b9:97:0d:c7:15:cf:9a:45:1f:46:ed:c5:1d:9c:
eb:5b:78:50:ab:86:44:6f:54:9d:54:c2:6e:70:1f:
8a:29:7c:f9:d0:7e:37:77:07:89:f1:fa:95:77:70:
0b:6f:cf:74:45:74:ad:b8:9c:2a:19:78:7f:30:20:
b5:fd:d3:3e:d8:d0:eb:37:81:26:34:77:b8:6b:31:
ac:43:26:4a:1a:fc:92:a1:50:c6:87:1c:4b:83:91:
e3:ab:d4:d5:99:c3:2d:7e:e5:17:fe:84:b3:b0:58:
86:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D8:15:9E:9F:9F:5B:BB:81:09:E9:A8:C2:AC:08:F1:A4:19:4A:D8
X509v3 Authority Key Identifier:
keyid:C2:C3:B5:E9:7C:46:A9:3B:C3:A3:5C:C7:10:55:C4:F0:DF:C6:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsO16XxGqTvDo1zHEFXE8N_GxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/jdgVnp-fW7uBCemowqwI8aQZStg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1651b5-cde5-4cdf-a29f-42b4fb834f15/1/wsO16XxGqTvDo1zHEFXE8N_GxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.88.0/24
Signature Algorithm: sha256WithRSAEncryption
f5:61:42:81:05:b5:1f:fc:fa:ff:f8:0d:76:e9:9b:e2:ee:49:
ec:49:06:a2:75:f9:a0:b7:c4:0c:c5:e3:dd:b4:02:0e:fd:15:
85:12:c5:38:1c:2e:36:8f:ea:c3:e7:99:d6:0d:8f:8d:07:3b:
a9:1e:f2:ac:ae:c5:5c:a4:39:f6:b6:f2:54:9a:55:d6:6d:81:
4d:ad:ca:2c:74:f3:49:ef:27:fd:0b:ff:5e:e5:bb:c3:19:c9:
62:3a:8a:e9:34:c5:6f:d7:05:c2:36:d2:d0:b7:fe:c3:39:fd:
7a:dc:c6:7c:8d:af:8c:5e:17:58:25:df:20:f7:3d:58:58:82:
ed:7b:12:11:e9:38:d9:51:c8:91:0e:fc:1d:7e:a3:03:ae:bb:
5d:f1:91:d5:b5:31:f6:1b:9a:a3:e3:d2:27:2a:17:20:8f:ae:
69:39:6d:82:9c:8e:49:fc:00:1e:f9:92:74:93:8f:7d:ad:11:
5c:96:71:27:f8:da:6e:ef:af:64:94:0e:03:da:43:79:87:97:
8c:ac:be:5f:d2:d6:2c:53:30:3c:88:3e:43:82:02:d0:53:93:
3c:ea:ea:c4:51:b9:ae:95:72:7a:20:11:57:9a:13:06:38:e1:
6d:88:19:da:a6:5f:8c:18:34:c4:cb:2b:fa:d1:66:bd:da:43:
5c:00:70:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:46 2024 by rpki-client on console-fra.rpki-client.org