Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/1-EllfV6Stduk5IhgbZ6OTLBM1k8.roa
File: 1-EllfV6Stduk5IhgbZ6OTLBM1k8.roa (raw, json)
Hash identifier: sfn4drTLL6omxx7EOacJmOCGYpMGgTLeLVwOIZABQK8=
Subject key identifier: F8:49:65:7D:5E:92:B5:DB:A4:E4:88:60:6D:9E:8E:4C:B0:4C:D6:4F
Certificate issuer: /CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Certificate serial: 01856B9C7390CC1ABE11AD8CE2D64A878BF7
Authority key identifier: 0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/1-EllfV6Stduk5IhgbZ6OTLBM1k8.roa
Signing time: Sun 01 Jan 2023 04:34:53 +0000
ROA not before: Sun 01 Jan 2023 04:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 89.248.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:73:90:cc:1a:be:11:ad:8c:e2:d6:4a:87:8b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Validity
Not Before: Jan 1 04:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f849657d5e92b5dba4e488606d9e8e4cb04cd64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5d:f1:4a:50:1a:33:bc:c1:72:e6:78:bf:88:
50:03:2d:14:06:5a:eb:e2:77:df:19:d9:e4:26:3c:
bb:27:8f:b9:d8:d3:b0:ef:42:71:59:fb:aa:09:00:
f6:fb:a5:4f:2c:d7:a8:57:a1:21:a2:47:73:cb:05:
65:4a:b0:d3:03:b8:cf:8e:68:76:9d:04:df:15:9e:
da:b5:ce:0e:50:3a:d2:e2:d6:1f:9c:d9:5e:ff:92:
e0:06:6f:14:0f:8c:e8:2a:8d:16:3f:6e:5b:af:c5:
d3:4c:5d:38:03:e4:42:91:be:0f:88:da:d6:0c:7c:
6f:f8:1e:af:97:2b:34:6f:6b:cc:96:4d:79:01:b3:
fd:77:37:aa:49:e9:16:d1:2c:ae:45:17:9c:02:5d:
92:e1:a8:30:ff:3c:d6:96:55:eb:59:cf:b0:73:2c:
32:c2:d1:6c:b9:35:94:f7:5e:58:99:28:54:9e:29:
fb:cf:db:42:e8:9c:8d:de:86:16:f9:e5:da:e8:a1:
f9:58:e1:b8:86:07:d3:0e:e0:65:04:ba:3c:95:57:
46:e8:5c:37:72:55:f5:2e:87:dc:a4:3f:3b:08:5d:
df:b9:3f:9b:d1:b1:51:6e:8a:c6:ce:53:2d:68:a7:
10:2e:ae:14:8a:dc:2f:c8:87:42:cc:d9:74:8e:49:
f4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:49:65:7D:5E:92:B5:DB:A4:E4:88:60:6D:9E:8E:4C:B0:4C:D6:4F
X509v3 Authority Key Identifier:
keyid:0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/1-EllfV6Stduk5IhgbZ6OTLBM1k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/Ds2ZqhcBdjpaHtm7430swJMpybo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.71.0/24
Signature Algorithm: sha256WithRSAEncryption
26:c7:24:b9:f1:35:ce:2a:4e:5b:94:60:f7:9e:c7:1e:7f:0a:
bf:71:5a:36:b7:c0:e7:36:75:66:cf:35:90:4c:72:67:c9:7a:
71:c0:1d:17:f7:49:c9:da:46:de:3b:db:b7:54:d0:97:31:d7:
49:d9:de:0e:bc:b1:7d:37:c3:6f:8d:a9:8d:8d:5c:43:6f:d1:
18:e6:b8:cf:33:55:47:49:03:b6:be:92:5f:05:6d:5d:b7:fa:
bc:84:f8:f2:0c:f7:c9:00:68:c7:d9:bd:f3:5f:b4:d5:92:af:
37:b9:06:51:16:86:38:47:37:d7:84:c9:3e:91:f5:26:a3:2b:
e5:ab:2b:83:20:77:d0:21:6e:ff:2c:1c:aa:84:b0:58:e1:45:
32:6e:d4:47:99:9d:44:f3:5a:50:59:ba:e5:46:e9:bb:a8:69:
11:d3:e5:d0:5a:a9:7d:bc:52:19:85:29:db:0f:59:4d:e9:ec:
91:70:1f:50:ab:b1:fb:f6:79:e8:38:f7:09:25:a9:8f:56:02:
bd:f4:aa:c1:d4:39:30:07:df:46:d7:cb:12:0d:07:90:02:3e:
56:20:1f:93:d1:7b:b8:8a:a5:45:9b:5d:d3:5e:62:af:9b:83:
16:b8:38:a5:48:89:9d:db:90:af:07:c0:88:ff:de:36:14:1a:
c6:56:e3:68
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVrnHOQzBq+Ea2M4tZKh4v3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlY2Q5OWFhMTcwMTc2M2E1YTFlZDliYmUzN2QyY2MwOTMy
OWM5YmEwHhcNMjMwMTAxMDQzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODQ5NjU3ZDVlOTJiNWRiYTRlNDg4NjA2ZDllOGU0Y2IwNGNkNjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAil3xSlAaM7zBcuZ4v4hQAy0UBlrr
4nffGdnkJjy7J4+52NOw70JxWfuqCQD2+6VPLNeoV6EhokdzywVlSrDTA7jPjmh2
nQTfFZ7atc4OUDrS4tYfnNle/5LgBm8UD4zoKo0WP25br8XTTF04A+RCkb4PiNrW
DHxv+B6vlys0b2vMlk15AbP9dzeqSekW0SyuRRecAl2S4agw/zzWllXrWc+wcywy
wtFsuTWU915YmShUnin7z9tC6JyN3oYW+eXa6KH5WOG4hgfTDuBlBLo8lVdG6Fw3
clX1LofcpD87CF3fuT+b0bFRborGzlMtaKcQLq4UitwvyIdCzNl0jkn0TwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPhJZX1ekrXbpOSIYG2ejkywTNZPMB8GA1UdIwQY
MBaAFA7NmaoXAXY6Wh7Zu+N9LMCTKcm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHMyWnFoY0JkanBhSHRtNzQzMHN3Sk1weWJvLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9lMWJkMmYtNjE5Ny00NDY1LWEzNjgt
YTdkZWE1NzI3YzJjLzEvMS1FbGxmVjZTdGR1azVJaGdiWjZPVExCTTFrOC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODMvZTFiZDJmLTYxOTctNDQ2NS1hMzY4LWE3ZGVhNTcyN2My
Yy8xL0RzMlpxaGNCZGpwYUh0bTc0MzBzd0pNcHliby5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFn4RzAN
BgkqhkiG9w0BAQsFAAOCAQEAJsckufE1zipOW5Rg957HHn8Kv3FaNrfA5zZ1Zs81
kExyZ8l6ccAdF/dJydpG3jvbt1TQlzHXSdneDryxfTfDb42pjY1cQ2/RGOa4zzNV
R0kDtr6SXwVtXbf6vIT48gz3yQBox9m981+01ZKvN7kGURaGOEc314TJPpH1JqMr
5asrgyB30CFu/ywcqoSwWOFFMm7UR5mdRPNaUFm65Ubpu6hpEdPl0FqpfbxSGYUp
2w9ZTenskXAfUKux+/Z56Dj3CSWpj1YCvfSqwdQ5MAffRtfLEg0HkAI+ViAfk9F7
uIqlRZtd015ir5uDFrg4pUiJnduQrwfAiP/eNhQaxlbjaA==
-----END CERTIFICATE-----
Generated at Mon Aug 21 07:06:24 2023 by rpki-client on console-fra.rpki-client.org