Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/igZt11uimBYNjv6A0bZk3HAIBng.roa
File: igZt11uimBYNjv6A0bZk3HAIBng.roa (raw, json)
Hash identifier: +GoWiPwA/704MH58ZVg4LQgkR04SDnDPxcYVlwk4tLs=
Subject key identifier: 8A:06:6D:D7:5B:A2:98:16:0D:8E:FE:80:D1:B6:64:DC:70:08:06:78
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 018801D226A775BE16B33A9F6089749F288B
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/igZt11uimBYNjv6A0bZk3HAIBng.roa
Signing time: Tue 09 May 2023 18:42:09 +0000
ROA not before: Tue 09 May 2023 18:42:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 152.89.192.0/23 maxlen: 23
152.89.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:01:d2:26:a7:75:be:16:b3:3a:9f:60:89:74:9f:28:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: May 9 18:42:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a066dd75ba298160d8efe80d1b664dc70080678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:25:83:15:df:c7:e4:a0:cb:e7:7f:59:06:94:
01:7c:aa:36:12:0e:c7:76:21:16:75:57:6e:6c:b5:
f4:45:53:37:cd:4d:61:0c:1e:69:90:5b:6c:2e:bb:
ee:1a:53:34:e9:77:c8:96:a2:c6:ae:42:2b:db:10:
35:17:e5:7e:5a:1f:1b:d3:7a:38:3e:4f:b6:c2:43:
0c:52:53:67:eb:91:de:ea:97:4f:62:6d:48:7b:54:
33:64:64:3d:10:e8:a9:13:a0:a5:0e:5e:a4:1a:72:
3f:e9:56:fc:9c:fb:77:a0:e2:1d:28:ae:74:d3:c4:
6e:e3:c7:45:7d:3d:f1:cb:81:15:cd:2c:c5:f1:b8:
3b:03:71:b9:41:f5:64:79:34:fc:d2:9e:5f:48:65:
d1:66:3d:3b:1d:39:98:a3:c3:a5:71:8c:11:22:c3:
dd:bc:45:37:28:02:9a:e7:1c:44:d3:33:52:ee:69:
56:90:d3:cc:10:8a:0f:e9:11:a2:77:95:05:0e:cf:
61:73:33:33:94:76:ca:96:5c:a6:0e:b0:fd:34:12:
09:5c:e0:32:1a:36:dc:25:2c:07:b2:ba:27:6a:ad:
2e:f2:15:bc:40:cc:a9:bb:14:8b:4d:fa:fa:11:1d:
b8:f5:ce:a8:3a:8a:86:75:46:bd:18:d5:6c:f1:62:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:06:6D:D7:5B:A2:98:16:0D:8E:FE:80:D1:B6:64:DC:70:08:06:78
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/igZt11uimBYNjv6A0bZk3HAIBng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.192.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:30:4f:4d:2f:d8:19:52:23:91:86:8e:6d:d3:2e:42:10:a6:
2b:e3:82:68:63:95:e4:33:b6:b2:b2:ba:04:e2:55:da:70:58:
ed:b4:0d:3d:ce:89:f8:71:f2:e8:53:53:5f:0a:f7:a7:b8:f8:
8f:10:0f:b3:80:cc:3f:f6:31:03:33:50:57:d3:96:d8:6d:85:
b9:a4:6e:81:ff:bc:35:94:6b:a9:1f:57:1b:4d:6b:27:23:e3:
98:21:6f:12:b3:66:5b:65:77:04:76:2a:1f:a2:65:eb:c6:20:
b5:b6:bb:55:2b:a4:75:af:ff:f2:17:54:7d:0c:f1:ec:e6:c0:
90:51:99:40:e5:7a:68:6f:34:ef:a4:4a:35:74:70:41:a7:b7:
5f:fa:3e:be:17:62:ca:61:c5:ba:d1:98:c4:1d:35:fb:7c:f6:
f0:42:d4:8f:df:1a:4c:e0:3f:7d:e3:c3:65:39:42:0b:2e:61:
3c:3c:a3:e0:7c:64:53:02:f8:56:cc:d7:68:92:ac:ef:bc:6c:
58:2a:19:98:e6:bc:3a:0d:91:f5:65:98:e9:ef:d0:5d:9b:c6:
c0:39:45:16:7b:b9:61:67:80:fd:ec:8f:b6:16:0c:04:81:cb:
85:1b:c4:b1:39:48:f1:8f:c1:9e:63:e1:cf:4d:26:be:a8:fc:
44:5f:b6:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:42 2024 by rpki-client on console-fra.rpki-client.org