Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/i3Mta8bP2gxJiN93obM-kIr0CgU.roa
File: i3Mta8bP2gxJiN93obM-kIr0CgU.roa (raw, json)
Hash identifier: 1E/bY9Rc4zzixHA+4OuhZf/zqUiMgczXHKefMfrX91o=
Subject key identifier: 8B:73:2D:6B:C6:CF:DA:0C:49:88:DF:77:A1:B3:3E:90:8A:F4:0A:05
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD40E58F6717C665E8B6929ECB6505C
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/i3Mta8bP2gxJiN93obM-kIr0CgU.roa
Signing time: Sun 01 Jan 2023 14:54:51 +0000
ROA not before: Sun 01 Jan 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205839
IP address blocks: 89.18.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:0e:58:f6:71:7c:66:5e:8b:69:29:ec:b6:50:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b732d6bc6cfda0c4988df77a1b33e908af40a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ec:af:48:94:a6:f4:9a:1e:bc:01:50:36:90:
e1:5d:ef:cb:6f:13:fe:78:e6:2f:d6:b9:a5:95:13:
66:78:df:5f:47:2f:5a:49:0b:98:65:f8:94:4f:11:
bf:69:25:65:5b:04:1f:84:75:01:00:ad:b8:21:9f:
50:01:2b:6d:ad:57:63:a9:c3:9c:5e:48:ac:1a:a0:
c0:b2:8c:81:1a:20:00:d2:df:bd:06:4b:db:b1:4d:
bd:1b:34:a7:55:ca:6c:5a:3b:df:c0:5c:e0:43:e0:
de:ae:bb:ac:64:d0:07:9d:e7:12:f6:07:c6:13:9c:
ed:b6:4c:14:4a:aa:51:61:46:5c:f5:07:0e:ff:ac:
d1:de:2e:83:78:5d:05:a0:6a:8f:d9:da:cc:6c:d4:
ac:91:1a:ea:65:f2:75:56:07:d9:ff:15:52:11:24:
e9:d5:18:5a:c4:70:9d:0b:e8:db:84:c6:22:cc:4d:
19:51:00:e8:6c:8e:de:4a:6d:8a:69:0b:d8:c3:52:
69:57:75:ab:75:3e:1e:04:fd:39:31:d6:19:1b:74:
9b:6f:16:fa:33:63:a4:d9:87:68:bb:ea:5e:77:de:
0e:a3:66:88:2b:35:d2:7c:df:7e:1b:9b:0d:1b:19:
df:12:a3:9a:9b:d3:66:81:49:50:22:c6:f2:03:46:
b9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:73:2D:6B:C6:CF:DA:0C:49:88:DF:77:A1:B3:3E:90:8A:F4:0A:05
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/i3Mta8bP2gxJiN93obM-kIr0CgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.18.183.0/24
Signature Algorithm: sha256WithRSAEncryption
05:5e:83:01:6e:3b:30:2c:ac:09:a9:76:31:4e:c6:98:78:42:
51:d1:2a:1e:31:70:36:64:2f:c2:dc:03:25:98:3d:41:79:19:
58:22:8e:63:9d:33:e7:64:c2:36:2c:c1:43:65:11:34:32:79:
f9:41:5e:09:62:b0:35:3f:3f:82:53:31:1b:8d:f5:5b:0f:bb:
19:4f:0f:a1:63:fd:61:d9:06:84:41:33:9d:12:ee:75:37:5c:
e9:da:1c:97:71:5b:fa:3b:6f:52:6e:35:9a:49:bc:59:a0:66:
be:75:e6:16:ab:62:e6:47:29:9c:b0:0a:65:24:3a:2d:99:0f:
40:9c:e6:cb:bb:8a:f3:77:7d:40:be:d1:d3:a2:e6:89:15:5c:
90:47:30:bd:f4:83:1f:b1:1b:70:10:c5:77:05:10:be:9f:16:
45:28:eb:43:b5:6c:c3:6d:25:14:ce:0e:28:c4:97:70:fc:dd:
3c:31:9c:40:1b:c3:53:8a:d4:04:60:30:ee:bf:ad:bf:f2:21:
89:83:3d:21:88:40:0c:1d:dc:6f:e1:4a:56:4a:a9:3c:bb:59:
12:61:a7:f5:72:10:f9:ad:c2:74:17:d7:56:41:bb:b2:0e:78:
77:55:e2:6f:7b:85:d8:89:d0:03:09:d7:b5:17:30:21:f9:c1:
a2:20:df:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org