Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QfLHmZgPWoV5ETWxWPRfa9AjOik.roa
File: QfLHmZgPWoV5ETWxWPRfa9AjOik.roa (raw, json)
Hash identifier: 6gC/+hA9++W2Q3TuW8XY7vni486fivAQkVhoPQN5QKQ=
Subject key identifier: 41:F2:C7:99:98:0F:5A:85:79:11:35:B1:58:F4:5F:6B:D0:23:3A:29
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01917FF6BE9A1EA5684131A2A2A7639742D9
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QfLHmZgPWoV5ETWxWPRfa9AjOik.roa
Signing time: Fri 23 Aug 2024 15:59:22 +0000
ROA not before: Fri 23 Aug 2024 15:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39756
IP address blocks: 89.33.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7f:f6:be:9a:1e:a5:68:41:31:a2:a2:a7:63:97:42:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Aug 23 15:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41f2c799980f5a85791135b158f45f6bd0233a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ad:23:a5:e3:e1:c6:30:57:49:15:f9:75:83:
f1:32:32:6a:8b:9f:d1:17:4f:59:52:80:59:7f:48:
19:8d:bc:f5:95:a0:40:c8:6a:1a:b5:c7:26:12:80:
87:99:f5:eb:a8:fc:aa:18:5d:8f:24:b5:45:c6:80:
cb:71:8c:34:21:1e:63:ad:83:d5:51:ca:6a:65:de:
78:9a:00:11:a5:a8:30:68:7a:10:90:aa:e5:fb:35:
81:41:af:ea:15:cd:1f:7f:cf:3b:98:3e:b5:3d:d5:
c8:d5:7d:76:dd:4b:33:a2:d3:d9:91:6a:44:17:21:
26:87:17:44:94:8d:71:c7:49:d1:f1:03:70:c5:05:
d8:7b:bc:7e:68:7c:26:f6:06:c0:94:6a:55:9b:ff:
d0:55:23:50:3d:3b:c3:51:ed:02:13:6b:ce:1d:6f:
74:91:6a:59:af:91:29:e5:b8:c1:87:2d:b0:a9:94:
ec:ea:2a:01:67:cb:d7:aa:f2:89:ab:08:e2:ca:cd:
62:97:dc:9b:ac:e5:8d:fb:ad:f7:8c:1b:cd:c6:24:
ad:5c:8a:64:42:bd:64:48:35:59:37:59:36:05:81:
a8:be:bc:27:0e:9b:0c:0f:bb:78:2b:06:35:a3:54:
4b:04:03:39:95:11:1d:a2:f7:2c:f6:59:e3:33:a3:
ad:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F2:C7:99:98:0F:5A:85:79:11:35:B1:58:F4:5F:6B:D0:23:3A:29
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QfLHmZgPWoV5ETWxWPRfa9AjOik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.247.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:df:e8:c9:80:2c:d2:1d:5f:04:09:df:43:16:31:c7:bd:4d:
0a:ef:4d:50:eb:db:b1:82:e2:c0:62:04:aa:82:a9:3b:16:8e:
86:cc:74:3e:5a:2f:d8:74:e7:64:e6:49:72:8b:4f:6f:72:40:
43:19:d9:a6:12:d8:26:52:08:0c:f2:01:11:75:e9:5a:18:cd:
89:2f:45:b4:40:56:8e:df:d8:1e:0a:f7:43:9b:d6:41:ab:5a:
ea:e3:10:07:4e:6e:c3:a0:a1:c0:e4:4e:9d:8a:41:4a:94:14:
e6:63:0b:af:a2:17:cb:5e:cb:03:97:03:4e:31:41:b9:23:a2:
38:ba:c4:90:54:4b:10:4d:0f:ac:33:81:63:9f:37:1d:95:86:
b5:bc:4a:a5:04:03:02:2a:e5:28:13:0c:6a:ce:b6:9f:3e:57:
6c:78:9e:b1:99:17:f6:69:5c:89:ea:4f:8b:36:45:2c:56:67:
24:44:f4:cc:26:8e:7d:a8:3b:a8:9c:8e:2a:57:9b:fc:1d:a4:
6d:14:6d:cd:41:7c:7d:7a:9c:24:28:a4:6f:64:5c:9c:f9:d6:
cc:08:ad:c0:bb:8f:ae:bf:22:81:25:71:20:5f:b6:1f:b8:b6:
61:64:05:df:8d:7e:f5:15:5a:01:ef:f0:24:84:d7:ad:56:7e:
19:73:1c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:28 2025 by rpki-client