Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NJmC8RwogAURTtDwbC5U7w9aIk0.roa
File: NJmC8RwogAURTtDwbC5U7w9aIk0.roa (raw, json)
Hash identifier: +ewiGOWyJdY2bjVcyUWQ1hev6hY4s+9tB7YVshQniL8=
Subject key identifier: 34:99:82:F1:1C:28:80:05:11:4E:D0:F0:6C:2E:54:EF:0F:5A:22:4D
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE933E61F8AE91975D06D58E830417
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NJmC8RwogAURTtDwbC5U7w9aIk0.roa
Signing time: Mon 02 Jan 2023 09:44:50 +0000
ROA not before: Mon 02 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51287
IP address blocks: 185.89.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:93:3e:61:f8:ae:91:97:5d:06:d5:8e:83:04:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=349982f11c288005114ed0f06c2e54ef0f5a224d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3d:c0:5f:7c:ba:32:d5:ae:e0:39:83:8c:29:
36:fc:8e:13:23:cf:53:53:57:b1:16:47:4e:ea:43:
0c:c5:c8:3c:52:04:b4:fa:53:b3:48:f9:3e:70:c2:
9d:53:a4:6e:a7:e4:fe:9b:f6:18:db:3f:6e:04:1e:
60:7b:e4:77:29:3d:4d:a3:bc:28:2b:cc:f6:9c:f4:
13:69:dc:41:f6:d0:fe:d5:42:e4:9d:68:23:2a:fa:
22:72:4f:24:71:b4:3a:35:44:c7:da:c1:23:3b:75:
56:db:77:ed:b6:9a:cc:58:77:ec:59:d7:4e:b4:ac:
4a:7d:5d:9a:d7:82:9e:ed:50:5c:ab:fa:de:52:33:
db:3c:d8:12:19:71:8e:03:55:d0:42:13:c5:d7:f1:
68:2d:d4:b3:b3:fa:f1:cf:23:38:d8:0d:2a:4d:5b:
3c:19:c7:e6:a2:5b:bd:c2:c4:1f:12:6c:43:5c:1d:
26:55:57:10:b1:83:26:4f:63:14:2d:04:4e:51:a1:
c0:4f:c4:73:07:59:83:f2:39:d8:01:25:df:59:f8:
86:6a:7a:79:04:55:12:e2:2d:0a:85:90:1c:a4:64:
6c:0c:06:bd:76:83:3a:84:2e:bb:30:d3:c7:93:94:
e6:4f:e2:a8:fa:e2:7a:51:47:c6:e8:ff:c2:41:95:
6f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:99:82:F1:1C:28:80:05:11:4E:D0:F0:6C:2E:54:EF:0F:5A:22:4D
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NJmC8RwogAURTtDwbC5U7w9aIk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.76.0/24
Signature Algorithm: sha256WithRSAEncryption
25:95:45:1c:4b:2f:8e:e8:6c:a4:89:5b:50:79:d5:0c:d7:5d:
03:7f:d1:56:7a:8f:ff:2a:f1:14:5c:4a:42:4d:79:32:17:1d:
57:7e:16:e1:f1:63:0c:d0:77:df:7e:1f:5c:b4:26:11:e3:c6:
7a:fc:d3:cb:85:97:c4:ef:0b:06:55:c6:95:62:75:2e:ef:16:
b6:32:e9:26:60:8a:2a:4e:ba:2b:b6:e9:ee:f5:6f:15:d6:e0:
c0:d4:05:7b:eb:7c:fa:3a:5f:ef:72:aa:1b:74:0c:71:b8:b0:
5b:a2:64:0c:42:c1:a1:10:7a:73:cd:0b:c3:93:51:ca:a9:70:
30:f7:82:7a:a6:0b:b5:6d:8a:d7:b3:05:5c:6a:93:a5:43:ff:
b4:5f:16:12:cc:2b:cc:92:12:77:2c:49:5a:3d:49:71:00:b8:
71:d6:36:b6:02:dd:5f:91:fd:7c:14:74:f0:5f:05:e6:14:27:
a8:a8:79:80:07:95:97:be:eb:50:2a:0f:cb:4b:6e:a6:0f:3d:
36:7e:32:ae:d0:ff:50:fb:0c:10:d9:a8:39:4b:ab:95:15:03:
b8:27:73:7b:97:2f:f5:56:03:05:70:86:6f:e4:44:82:9e:88:
e1:4a:ef:b3:e9:1a:8b:99:f4:1e:1d:81:41:9a:d0:51:2c:59:
6c:f1:0d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org