Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/1GboSit8nuZbrWjk_ZMRw551_wY.roa
File: 1GboSit8nuZbrWjk_ZMRw551_wY.roa (raw, json)
Hash identifier: 1eXjaxd6ncYafoXLO3dkcp8XDwbWcazr4htlYhfpvMM=
Subject key identifier: D4:66:E8:4A:2B:7C:9E:E6:5B:AD:68:E4:FD:93:11:C3:9E:75:FF:06
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 146BBDB8
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/1GboSit8nuZbrWjk_ZMRw551_wY.roa
Signing time: Sat 01 Jan 2022 03:58:56 +0000
ROA not before: Sat 01 Jan 2022 03:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16278
IP address blocks: 89.30.224.0/22 maxlen: 24
2a02:20b2::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342605240 (0x146bbdb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d466e84a2b7c9ee65bad68e4fd9311c39e75ff06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:66:c9:0b:68:11:06:a6:78:8c:7c:3e:dc:89:
0a:c6:7f:6c:90:be:41:68:28:c9:cf:4f:10:25:50:
03:5d:fd:af:be:84:fa:94:fd:a8:5f:1c:10:92:ec:
0e:12:83:2f:ff:da:21:65:c3:42:b3:cc:1b:23:9c:
89:3a:df:75:8d:eb:a1:6b:4e:68:79:83:45:7b:1f:
c9:75:24:dd:42:42:15:57:4e:14:d2:6c:a7:93:1b:
15:78:25:53:77:0f:f0:5b:18:de:89:73:15:96:4a:
ee:67:14:76:76:fa:30:91:f1:1a:52:f8:36:2b:5e:
d0:de:0d:e7:0b:76:a5:31:b7:f0:e4:bd:ed:ed:5f:
b8:bc:61:0a:65:4f:b7:a8:a5:ea:c7:5d:04:32:1b:
7a:b8:98:5c:9f:52:1f:5e:96:2c:35:ab:83:f3:78:
3c:01:2b:ee:2c:79:a4:ae:c3:05:ea:18:de:3c:04:
d8:ae:e9:3f:07:67:b6:87:c8:27:29:7f:51:cc:45:
97:de:89:d6:d1:35:40:97:ee:a6:7d:c5:8d:6d:74:
0d:07:77:42:65:02:4a:17:35:c0:5b:81:35:ff:1c:
b0:10:c1:96:39:1e:84:93:07:54:24:08:7a:eb:f2:
18:c6:de:96:46:60:07:6d:05:a6:23:8c:58:3e:76:
7b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:66:E8:4A:2B:7C:9E:E6:5B:AD:68:E4:FD:93:11:C3:9E:75:FF:06
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/1GboSit8nuZbrWjk_ZMRw551_wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.30.224.0/22
IPv6:
2a02:20b2::/32
Signature Algorithm: sha256WithRSAEncryption
85:d2:ef:2e:55:dc:62:48:fa:f3:46:94:1c:1f:59:3c:fb:a2:
db:18:cc:6e:81:2b:b0:c6:92:37:f8:be:d0:a0:c1:8b:10:0d:
b4:a7:79:b2:93:b0:21:44:1a:3a:6b:48:fa:4e:88:64:91:9c:
1b:79:14:3c:cd:2b:09:8d:28:38:93:85:c8:d2:21:06:f5:23:
a8:97:22:66:64:b4:48:14:4b:83:e5:1a:df:28:5c:dd:20:76:
2b:30:1a:c7:2c:10:f6:29:bf:5e:c3:eb:27:38:f2:96:9c:1b:
92:ab:a6:7d:72:71:23:ed:66:45:d5:64:6b:40:43:16:1d:c0:
19:b5:44:d6:95:b1:2d:33:a8:a0:f6:12:46:66:e5:5b:ee:76:
bd:e3:2b:23:84:c4:7c:dd:17:c1:5c:ac:09:0b:92:0a:89:b9:
12:95:62:f4:23:6d:56:a4:34:33:6b:bb:19:3b:d1:57:d4:df:
3d:b8:7f:5f:9d:1b:8a:b0:9a:35:63:ef:d6:69:8c:02:4d:e8:
56:2b:40:80:34:15:8f:20:b9:6e:db:38:6c:b8:74:93:7f:30:
2b:c1:91:d4:d2:b4:40:df:7d:15:3d:be:d4:8a:fe:98:f1:81:
66:fe:0a:d9:48:3e:ae:c9:8e:25:d6:af:b2:7a:98:bb:2a:92:
73:f9:11:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org