Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/8fVIE0qY2g4sdpbtnHSFXt_I4kE.roa
File: 8fVIE0qY2g4sdpbtnHSFXt_I4kE.roa (raw, json)
Hash identifier: IDT2tu7mr3lQvb2tCawFZRYYW897WaDJGBwvl6H+3D8=
Subject key identifier: F1:F5:48:13:4A:98:DA:0E:2C:76:96:ED:9C:74:85:5E:DF:C8:E2:41
Certificate issuer: /CN=403347d08fa26b658364dd006a181b3c49ac487b
Certificate serial: 018964753D56A311FE1843A2051FE0DE9A79
Authority key identifier: 40:33:47:D0:8F:A2:6B:65:83:64:DD:00:6A:18:1B:3C:49:AC:48:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QDNH0I-ia2WDZN0AahgbPEmsSHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/8fVIE0qY2g4sdpbtnHSFXt_I4kE.roa
Signing time: Mon 17 Jul 2023 15:25:52 +0000
ROA not before: Mon 17 Jul 2023 15:25:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 89.248.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:75:3d:56:a3:11:fe:18:43:a2:05:1f:e0:de:9a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403347d08fa26b658364dd006a181b3c49ac487b
Validity
Not Before: Jul 17 15:25:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1f548134a98da0e2c7696ed9c74855edfc8e241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:59:0e:53:7f:74:02:d2:12:46:1c:36:a5:99:
e3:75:e4:f6:f7:53:54:4b:20:be:eb:13:19:ae:f8:
d1:ce:b9:62:d5:9f:8f:08:f3:c5:60:71:5d:10:2d:
eb:9a:3b:4a:95:c7:de:ef:32:0a:a1:b3:1f:31:05:
66:6c:4d:e5:30:e8:bb:3c:f0:9a:02:db:90:76:6a:
4a:57:56:28:fe:60:78:53:24:64:f3:16:3a:6e:cb:
fa:02:f8:c4:d6:4a:d4:89:74:f7:07:14:ec:ed:74:
6c:0a:f0:aa:61:f3:22:e8:bb:6e:94:3a:38:83:dd:
52:7e:40:66:5c:d6:d1:c4:69:75:c8:73:03:2a:74:
ae:a6:71:1c:02:61:47:38:6c:ff:63:25:1b:05:2c:
19:6e:18:58:55:f1:17:14:c2:bd:39:d5:b5:76:48:
c8:b8:97:70:ce:f0:0c:64:0e:a8:21:fa:10:10:7c:
e7:1d:77:a4:a2:b2:5c:94:48:ea:b0:1d:77:3f:db:
66:73:e1:a6:a2:69:29:8b:ad:d8:fa:11:25:27:ea:
7e:1c:e7:56:46:97:e6:62:fc:17:c6:e3:d3:ec:95:
d3:3c:cb:8b:e1:a0:a4:72:f0:1d:f5:6a:6d:cc:5c:
bd:4d:27:32:b3:89:5a:1e:37:8b:53:01:d0:9f:bf:
1b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F5:48:13:4A:98:DA:0E:2C:76:96:ED:9C:74:85:5E:DF:C8:E2:41
X509v3 Authority Key Identifier:
keyid:40:33:47:D0:8F:A2:6B:65:83:64:DD:00:6A:18:1B:3C:49:AC:48:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QDNH0I-ia2WDZN0AahgbPEmsSHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/8fVIE0qY2g4sdpbtnHSFXt_I4kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/QDNH0I-ia2WDZN0AahgbPEmsSHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.68.0/24
Signature Algorithm: sha256WithRSAEncryption
02:ac:29:a8:bb:ca:e6:cc:5c:ea:62:41:68:2c:c3:ae:26:82:
a4:9f:2e:75:d7:2f:7f:43:c5:13:7d:a2:b8:2a:f6:5e:8e:5a:
2f:2d:ae:24:b4:45:1d:74:98:91:fb:d4:66:ad:e3:3d:40:ac:
4a:67:e3:25:38:e4:a8:25:b6:fc:a0:45:58:a4:38:41:4b:e6:
08:28:8e:1a:0a:68:86:61:d8:44:d3:65:bd:d1:a1:22:9f:ec:
64:ed:1e:1a:51:ff:55:38:ed:0d:0b:5e:60:9e:bd:e2:64:75:
11:a3:1a:c0:2b:b7:b0:b4:ac:a3:03:6e:77:98:8b:88:2f:0f:
95:8b:ad:53:f3:59:26:9c:5b:46:a2:ac:1b:92:26:83:39:49:
11:27:c3:9e:08:f1:45:03:69:09:d5:1a:e5:50:fa:5b:a1:28:
49:65:ea:5e:77:96:69:3e:90:e9:cd:95:b6:71:2e:02:1a:8f:
a0:70:e1:fe:22:4a:81:d6:d5:6a:77:8a:ae:fb:6a:f9:9e:c0:
7e:41:12:4e:24:eb:6c:d1:b3:43:04:56:a2:d1:e2:96:da:17:
b6:82:df:56:5e:1b:d3:f9:24:ff:11:3f:a3:21:45:6e:8e:d3:
36:4f:e5:cc:70:8b:5f:fa:53:05:52:6b:01:ea:5c:64:f1:81:
ac:c9:c5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:17 2024 by rpki-client on console-fra.rpki-client.org