Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/qf_joDoNtky7M_6iqKhuWECJ6eU.roa
File: qf_joDoNtky7M_6iqKhuWECJ6eU.roa (raw, json)
Hash identifier: Q+lUBX1MKtuLsMKoCURi9seFbMzQRui/KnknrHFgFBk=
Subject key identifier: A9:FF:E3:A0:3A:0D:B6:4C:BB:33:FE:A2:A8:A8:6E:58:40:89:E9:E5
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01845B74AEFCD022EC32C273A8EA56C99F27
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/qf_joDoNtky7M_6iqKhuWECJ6eU.roa
Signing time: Wed 09 Nov 2022 08:14:44 +0000
ROA not before: Wed 09 Nov 2022 08:14:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 152.89.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5b:74:ae:fc:d0:22:ec:32:c2:73:a8:ea:56:c9:9f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Nov 9 08:14:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9ffe3a03a0db64cbb33fea2a8a86e584089e9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c5:da:7f:25:a9:8c:cc:d0:d3:c6:2d:d8:46:
38:a7:27:cf:97:bd:a4:7e:8e:91:66:81:92:95:6f:
ce:6b:95:18:77:ac:25:40:6e:84:63:2b:1b:f6:cc:
f0:d2:f3:67:34:60:9f:0b:da:37:a0:22:2a:3c:4f:
12:b8:9c:cf:9d:4c:92:d0:a7:c3:83:49:ab:00:c0:
98:f2:5f:2d:13:02:e9:8f:f5:fe:30:21:2b:04:d3:
ca:c2:7f:d8:48:4b:be:c3:12:5b:63:c6:4d:68:07:
1d:55:28:10:3a:b2:a7:80:bf:65:f6:15:1a:bc:6c:
31:0c:af:83:19:65:93:7a:ea:f8:3d:39:9c:72:fb:
4e:34:79:73:c7:22:63:dc:fb:d5:a5:4e:ca:a2:e0:
22:d5:6e:1e:77:62:c6:4d:d1:5b:8e:2a:0e:0f:c1:
58:49:8d:96:aa:6e:40:c1:2b:41:a2:f2:7e:f2:02:
7f:fd:3a:08:a7:96:f4:eb:99:3d:4b:0c:6d:ef:f3:
67:2c:70:1c:ad:b2:6a:4c:e3:73:88:3f:bc:9c:35:
03:34:1c:2a:1c:80:89:1b:d4:e1:b2:a8:48:36:2f:
0c:84:7c:20:a9:ab:37:5e:68:42:fe:84:54:81:77:
f3:71:68:b2:cd:26:23:d3:a5:2c:b9:b6:4c:7c:48:
6c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FF:E3:A0:3A:0D:B6:4C:BB:33:FE:A2:A8:A8:6E:58:40:89:E9:E5
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/qf_joDoNtky7M_6iqKhuWECJ6eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.251.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:2e:5b:8c:1b:53:75:92:b5:6d:c6:58:b1:b6:3b:6e:22:af:
a1:d4:bb:0e:f6:86:aa:dd:8d:90:29:ad:6a:c5:a4:a7:b1:c6:
ae:b6:99:8f:5d:95:23:31:cb:14:08:b2:61:db:e1:01:d9:0e:
72:82:72:1c:16:ad:97:64:f8:44:3c:09:e4:b1:57:87:d9:03:
4f:3e:c7:13:97:66:24:b4:68:44:d5:49:ae:31:aa:72:8e:5c:
b7:27:f6:c3:76:b1:46:50:6a:db:de:4e:98:d1:00:9a:c5:19:
bd:c1:82:6b:cc:08:7b:18:80:01:50:b0:03:cd:4e:df:ca:45:
c0:7c:11:ec:32:b2:ca:a3:39:f7:17:63:74:25:f2:e6:d2:8d:
dd:65:b8:78:ce:c3:d6:df:c9:e7:7b:e8:08:d6:b5:79:4b:f7:
30:3d:29:bb:c4:43:49:d1:55:80:57:54:12:0e:82:de:f8:a3:
82:9d:10:85:ed:b8:71:a7:5c:1b:0e:45:a8:d4:29:3c:f5:ec:
d9:04:d8:a4:2b:81:f0:54:ab:db:bc:53:29:da:5b:ec:b0:b8:
40:a7:29:5f:70:e0:8a:8a:2a:26:b0:3a:52:ca:e3:b0:8d:15:
51:11:8b:0f:90:84:27:87:12:04:de:72:ff:20:a2:44:85:27:
7d:95:e9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:58 2023 by rpki-client on console-fra.rpki-client.org