Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/MPilqFY5Oj5ZgZ3JLeaPqXZqWtc.roa
File: MPilqFY5Oj5ZgZ3JLeaPqXZqWtc.roa (raw, json)
Hash identifier: EtcViSAy4hN7lDT97RTB2SBpK7D9hB5ZJuPG5vWoEQE=
Subject key identifier: 30:F8:A5:A8:56:39:3A:3E:59:81:9D:C9:2D:E6:8F:A9:76:6A:5A:D7
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD40D1ED08765593326591C32F81315
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/MPilqFY5Oj5ZgZ3JLeaPqXZqWtc.roa
Signing time: Sun 01 Jan 2023 14:54:51 +0000
ROA not before: Sun 01 Jan 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60893
IP address blocks: 89.18.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:0d:1e:d0:87:65:59:33:26:59:1c:32:f8:13:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30f8a5a856393a3e59819dc92de68fa9766a5ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:ff:ec:60:40:3e:de:03:29:a0:5c:1a:d1:
6b:63:35:d0:50:53:21:fb:07:51:20:c6:76:ae:38:
e7:9c:bc:3a:91:35:7e:83:60:96:61:ce:64:61:7f:
95:44:b4:3c:e2:fc:60:6f:d9:4d:eb:69:78:dd:87:
b2:46:0c:2a:e8:6c:c5:91:8f:b5:c7:ce:a3:39:02:
3c:85:58:8d:ce:c0:59:43:94:79:9d:fc:8d:7a:8e:
e8:9a:9a:c6:74:2f:41:4d:14:c9:76:ed:80:b8:ac:
9b:bf:5b:5f:4d:f3:e1:8f:37:27:df:5f:60:9f:86:
37:c3:0a:8c:b4:bb:6a:57:6c:2a:24:68:9c:3f:4a:
26:b3:b3:87:e8:c7:e3:cd:9e:f3:1f:69:e4:c7:f2:
7f:3b:09:1a:16:11:5e:ea:90:ca:cc:83:91:3a:2e:
bf:a8:93:32:18:37:bf:d1:49:66:12:72:0c:6e:2a:
3d:73:0d:b6:90:c0:68:79:cc:fb:c1:9b:9a:f0:ab:
6f:01:dd:71:71:e3:7b:69:1b:18:5e:af:d0:26:5e:
f1:f5:66:5c:50:94:55:dd:2f:e5:79:49:81:9b:17:
10:4d:eb:75:19:6c:20:26:b2:73:2f:63:1a:78:b7:
3b:be:8b:d8:46:cc:cb:07:41:bc:f8:79:45:7c:54:
6a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F8:A5:A8:56:39:3A:3E:59:81:9D:C9:2D:E6:8F:A9:76:6A:5A:D7
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/MPilqFY5Oj5ZgZ3JLeaPqXZqWtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.18.175.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:23:66:26:3e:a2:3d:6e:90:1e:fc:4e:9f:5c:b6:8d:05:29:
ee:0a:26:ad:88:01:5a:bb:20:3c:d0:13:cf:7d:6d:2d:52:9d:
60:9a:da:4c:00:93:4b:39:1a:55:34:0f:53:7e:18:f7:4e:f3:
99:ae:80:34:7a:d0:b1:7d:a6:89:ec:7d:62:50:38:f2:cd:28:
82:9f:03:c8:8d:d2:ac:ef:1e:29:2c:8a:b7:82:75:94:33:ba:
03:e4:61:ed:f6:52:07:e1:7d:72:08:97:3a:0b:8d:e2:78:f6:
9c:a3:30:17:9d:7a:00:16:72:34:18:79:17:96:75:04:65:f3:
a0:cd:23:7b:7b:66:6e:a8:8a:84:70:1b:02:d6:21:2d:ad:83:
1e:12:92:f9:40:a6:2c:87:6c:d4:e6:02:77:5b:fd:87:e3:e7:
be:63:08:1c:a0:e5:40:6a:61:42:eb:9c:e9:bd:bf:18:e3:9e:
dc:6c:f6:e9:1d:d7:e8:e4:53:b0:81:0e:dc:c8:ea:53:3a:8c:
42:6d:2b:84:fe:4b:90:01:a8:02:c2:49:23:be:b9:d5:1f:cb:
bf:27:80:e0:5b:38:dc:2c:5f:ef:5f:71:a7:ec:41:92:52:de:
93:63:ad:fc:5e:59:23:05:0d:f8:ab:6f:9b:3b:7b:8b:e4:8d:
71:b1:bb:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org