Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/4u-QMESNMn7dOAlrw2yA_5LeEzY.roa
File: 4u-QMESNMn7dOAlrw2yA_5LeEzY.roa (raw, json)
Hash identifier: S93KmhgKcL7qXbmrxtDxIw+B5cVVD3UnEn6yB7Bj7GY=
Subject key identifier: E2:EF:90:30:44:8D:32:7E:DD:38:09:6B:C3:6C:80:FF:92:DE:13:36
Certificate issuer: /CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Certificate serial: 01856B9C71D31164D4CAEB7006235A8625E1
Authority key identifier: 0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/4u-QMESNMn7dOAlrw2yA_5LeEzY.roa
Signing time: Sun 01 Jan 2023 04:34:52 +0000
ROA not before: Sun 01 Jan 2023 04:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.248.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:71:d3:11:64:d4:ca:eb:70:06:23:5a:86:25:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Validity
Not Before: Jan 1 04:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2ef9030448d327edd38096bc36c80ff92de1336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:aa:85:4f:c5:0e:dd:16:2d:0e:48:b1:b1:e6:
07:20:87:70:40:cc:27:15:63:28:ce:66:ec:b9:14:
26:0d:6a:a3:67:83:54:e8:3e:cd:7c:70:07:ea:2c:
97:11:16:5a:36:75:9d:7a:7e:38:eb:8c:cd:f6:f1:
4f:b3:32:3f:d2:84:43:e9:2b:73:89:07:3b:e3:68:
1a:11:71:6d:79:d0:c9:2e:7c:3e:44:6a:34:0d:cc:
1d:54:62:40:88:31:06:e1:e0:da:d8:3a:8e:68:cc:
b2:8d:fb:0c:d0:c1:ed:34:6a:7b:92:61:48:db:8e:
11:76:fc:ef:a7:65:c3:59:44:e7:0d:03:c6:7f:c4:
70:c5:2a:8e:a4:c7:c9:0f:d0:bc:89:32:4d:fd:43:
5c:29:3d:95:4f:a0:7c:d1:35:f2:7b:63:00:8c:3c:
dc:08:f9:29:bc:04:a0:95:8d:1b:29:a8:d1:36:c4:
e2:cb:54:51:0c:a9:fa:1f:ae:dc:d3:d6:18:0c:2a:
0c:98:74:cc:8b:e5:0a:22:79:2d:90:bb:12:8b:f2:
21:9b:b2:89:9b:32:da:9c:bf:d6:49:80:79:bd:50:
52:57:50:5b:61:d7:43:7c:8d:23:dd:e1:26:de:bb:
53:b4:dc:fd:ca:07:2d:7b:42:43:98:23:8e:6c:ac:
91:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EF:90:30:44:8D:32:7E:DD:38:09:6B:C3:6C:80:FF:92:DE:13:36
X509v3 Authority Key Identifier:
keyid:0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/4u-QMESNMn7dOAlrw2yA_5LeEzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/Ds2ZqhcBdjpaHtm7430swJMpybo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.71.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:bb:bc:97:90:14:36:6a:0c:12:d4:4d:4c:b2:71:4a:cf:f2:
c9:1e:f5:55:a2:a6:6e:ec:40:93:71:b7:63:b4:1f:69:f0:b9:
0a:66:31:a9:92:6d:f6:cc:10:94:09:1f:c6:19:d0:18:19:39:
40:08:e5:6a:63:ad:72:94:c7:ff:cf:86:18:8e:f4:f1:a3:72:
44:c5:e9:cb:7c:95:b0:a0:48:0b:99:4b:a8:9e:d5:c0:e9:78:
f3:4b:5d:b8:61:f1:9f:62:f4:80:4c:f6:2c:7d:32:b6:d7:cc:
37:d8:6a:9c:0d:15:7f:9f:20:79:bd:c8:74:43:20:ef:24:40:
b8:f7:d7:ff:35:3a:ce:22:fc:b0:83:7e:64:bf:ef:e1:d2:93:
ce:61:57:26:8b:0a:5b:6a:3e:82:7c:07:e2:f5:29:54:02:0b:
9a:13:8a:f7:93:fe:1a:78:de:dc:c5:fb:5a:00:5d:22:88:97:
78:b2:0c:d3:ba:b9:e4:ed:b8:f8:30:a8:44:8e:a2:9d:20:b0:
b5:25:f6:76:2c:eb:95:fc:6d:1c:c0:c6:6b:4c:37:e1:45:78:
77:5c:90:97:7f:26:d9:d2:11:09:10:7b:94:72:5f:5d:75:41:
54:1b:5d:1d:98:73:73:32:95:e8:86:0b:54:22:ed:c6:bd:72:
63:cb:f5:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 21 07:06:24 2023 by rpki-client on console-fra.rpki-client.org