Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/D2htwBzakWknTJCXReLBIY3QAfk.roa
File: D2htwBzakWknTJCXReLBIY3QAfk.roa (raw, json)
Hash identifier: irufErKunxqZNNDo5CHJM9Kw3BzdB4nMFWK61U0fj04=
Subject key identifier: 0F:68:6D:C0:1C:DA:91:69:27:4C:90:97:45:E2:C1:21:8D:D0:01:F9
Certificate issuer: /CN=d8646e6ccb716e89501958fc86823a98368fb51a
Certificate serial: 01C8572E
Authority key identifier: D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/D2htwBzakWknTJCXReLBIY3QAfk.roa
Signing time: Sat 12 Mar 2022 23:23:50 +0000
ROA not before: Sat 12 Mar 2022 23:23:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 89.107.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29906734 (0x1c8572e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8646e6ccb716e89501958fc86823a98368fb51a
Validity
Not Before: Mar 12 23:23:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f686dc01cda9169274c909745e2c1218dd001f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:42:cb:ff:2b:70:d8:28:9a:8c:e9:f9:93:a2:
b0:eb:3c:ba:9d:af:61:50:e5:75:3e:7e:8a:c3:be:
a3:38:f5:dd:74:a9:02:77:7c:d8:02:f2:ae:af:5d:
dc:03:3b:f8:6e:5f:21:8a:04:b5:e2:31:07:c1:3b:
69:4f:de:7c:0f:22:39:e0:01:5c:6d:4f:6e:e9:37:
92:d8:b3:69:e4:b8:bf:2f:eb:08:68:19:9f:eb:70:
20:1b:c7:e6:7a:14:9c:f4:eb:50:db:7d:01:b0:21:
38:25:fa:96:c0:14:5c:fc:0a:c2:4a:d7:6c:0b:2c:
b9:bf:b8:0e:83:ef:3d:f5:c4:c3:d3:90:4c:76:63:
97:a8:0f:ca:e0:c7:9a:34:8e:1f:f2:32:ee:9b:2e:
34:74:26:26:6d:c2:6f:46:02:59:62:9c:66:a7:90:
3c:38:d2:e9:3b:0e:8d:e0:e9:3c:cd:b5:e5:db:53:
20:07:63:99:45:07:d8:c9:40:3b:5b:4a:9e:3a:79:
41:eb:8f:d4:d3:95:4e:2a:7b:21:70:57:08:da:62:
d8:63:9e:17:d7:f3:bd:22:9b:13:46:34:f1:2c:67:
d7:cc:5f:70:71:3b:9e:f7:f3:55:4b:10:cf:f5:07:
d5:53:b4:5c:b9:2e:f1:5b:4a:e8:f9:fe:1a:19:78:
15:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:68:6D:C0:1C:DA:91:69:27:4C:90:97:45:E2:C1:21:8D:D0:01:F9
X509v3 Authority Key Identifier:
keyid:D8:64:6E:6C:CB:71:6E:89:50:19:58:FC:86:82:3A:98:36:8F:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GRubMtxbolQGVj8hoI6mDaPtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/D2htwBzakWknTJCXReLBIY3QAfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/837042-572f-4884-86fc-d8603b4ee39b/1/2GRubMtxbolQGVj8hoI6mDaPtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.9.0/24
Signature Algorithm: sha256WithRSAEncryption
10:cb:27:43:aa:4b:69:c5:46:73:38:6b:1c:7a:86:3a:2a:6f:
88:7b:ab:d9:98:21:5b:d6:58:68:0e:ac:29:6e:f0:31:4b:73:
63:53:54:28:b4:81:79:73:a5:9b:8d:aa:ec:3c:3a:e6:6e:17:
06:02:00:f3:9f:c2:19:0a:e0:98:82:e9:e9:77:69:ac:1b:41:
d0:5f:b6:ea:7f:99:84:54:23:0b:12:93:bc:69:c5:eb:af:c8:
62:55:07:07:b2:b0:20:70:7d:a8:cd:9c:7a:61:6e:fc:0b:f3:
e0:80:8e:4a:42:ad:59:1a:9a:f0:29:5f:bd:43:2e:fa:47:ed:
54:70:39:ff:6a:be:e4:0b:7a:de:2d:27:97:72:24:99:a9:54:
ca:98:9b:1d:36:60:8c:8f:36:9d:65:c8:69:30:e0:c4:6d:6c:
7b:53:19:cc:30:4e:0d:b3:01:bc:7c:00:13:04:a3:9a:f8:8b:
98:d0:ae:74:13:9c:a4:3b:3d:a5:db:66:c9:96:f9:7e:31:16:
18:02:52:a9:50:cf:9f:77:47:3c:46:2c:df:49:ff:73:9c:ac:
1d:6f:30:6d:be:03:26:4c:ed:5b:a0:33:6b:0f:7b:60:d9:d9:
a0:05:9f:4f:50:44:0b:25:40:fb:9b:06:1d:1d:fc:a8:ff:47:
1b:53:61:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:47 2023 by rpki-client on console-fra.rpki-client.org