Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/MTqgWsW7tDd7Tgyo5CX4BVZDM2E.roa
File: MTqgWsW7tDd7Tgyo5CX4BVZDM2E.roa (raw, json)
Hash identifier: Cn/zRhcA5yW0ZKFyr8//CdewQqR27BAEziEAUm5QfYc=
Subject key identifier: 31:3A:A0:5A:C5:BB:B4:37:7B:4E:0C:A8:E4:25:F8:05:56:43:33:61
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01882DA5B3A64B0D3761006BD6215D7D8172
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/MTqgWsW7tDd7Tgyo5CX4BVZDM2E.roa
Signing time: Thu 18 May 2023 06:56:54 +0000
ROA not before: Thu 18 May 2023 06:56:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20616
IP address blocks: 89.34.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2d:a5:b3:a6:4b:0d:37:61:00:6b:d6:21:5d:7d:81:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 18 06:56:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=313aa05ac5bbb4377b4e0ca8e425f80556433361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:73:f4:83:70:2c:3d:77:37:52:49:d9:f8:13:
cd:7d:f4:3d:cb:eb:66:23:a1:f0:e5:47:25:5d:b6:
bf:d7:63:7f:3a:42:b7:03:2f:3c:86:f1:51:20:de:
ce:39:46:15:2a:49:14:3f:e6:14:c9:77:0b:8e:de:
73:44:e1:60:44:8e:1d:4e:67:1b:1c:86:d1:77:6d:
dd:e1:e4:94:e5:a2:94:fa:7b:38:89:81:d2:84:4d:
99:c6:b3:bd:06:2f:cb:80:aa:51:49:98:b6:a9:6a:
64:50:7d:73:bb:49:0d:94:d9:f4:8e:20:93:42:e7:
46:bf:6f:dc:47:44:ae:61:3e:17:b9:ce:6f:b2:22:
21:0a:f3:62:89:c8:86:80:7c:af:f4:a1:5d:6b:15:
90:00:e1:9a:36:94:c2:41:42:11:5c:e9:9c:ae:1e:
c1:62:9e:22:63:73:04:b4:b8:f7:66:91:c6:2c:f5:
0e:83:dd:92:18:58:bf:1d:ea:0f:87:e0:49:66:ae:
81:6f:4b:a4:fc:c2:47:65:c7:e8:79:76:67:a9:39:
34:a3:41:f8:79:09:b3:ba:92:3b:8e:ee:c4:58:2a:
a0:01:21:d7:43:6b:fe:26:56:8d:df:a6:a4:eb:55:
41:77:9e:01:f0:48:e0:b4:4f:70:6b:a7:7e:55:ce:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:3A:A0:5A:C5:BB:B4:37:7B:4E:0C:A8:E4:25:F8:05:56:43:33:61
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/MTqgWsW7tDd7Tgyo5CX4BVZDM2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.107.0/24
Signature Algorithm: sha256WithRSAEncryption
82:7e:f8:05:09:6b:fc:d3:50:44:58:ed:7a:e5:c3:52:ba:a4:
d8:47:6f:17:38:a9:09:07:3c:8a:40:94:51:7a:62:d3:3a:46:
8c:4a:84:13:32:3a:98:88:d1:32:cf:e4:f7:89:a7:6f:3e:a2:
49:3b:f5:51:4b:72:fc:54:98:74:03:2e:69:58:58:fc:21:a5:
33:a5:7f:5f:60:d3:45:86:db:03:23:d3:00:0f:25:40:67:e9:
29:1f:78:39:e1:9e:77:39:f8:fd:6f:44:81:02:17:eb:79:20:
26:ca:7b:6a:26:72:47:4b:d6:2c:9f:56:92:12:b7:63:a3:c2:
25:45:cb:00:49:38:c4:b4:33:44:1a:8a:f8:de:7e:f3:30:a9:
eb:13:1c:07:c4:85:d6:ab:31:a8:d8:2d:5d:ed:55:12:b5:a8:
94:7a:da:9a:03:61:ec:c2:5c:26:9b:3a:17:94:7b:8c:31:01:
ff:f2:d0:ff:9b:98:bc:e0:45:60:75:e4:7c:72:7b:be:28:86:
14:f6:0c:68:ec:68:26:3a:e9:47:4f:bc:51:b8:21:09:b4:0a:
8a:c2:b6:4a:7b:3f:b6:4f:4d:52:8b:b9:fd:b2:ec:3c:7c:90:
9d:01:e7:6f:e0:d0:e4:1d:d8:ed:0f:4c:87:f0:90:3d:57:95:
ed:0e:bc:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:49 2025 by rpki-client