Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/SfVPVnOPSbmEr6SQTxgSOtIDPhs.roa
File: SfVPVnOPSbmEr6SQTxgSOtIDPhs.roa (raw, json)
Hash identifier: V7aLgxoNqXTtSZKoOKn8B3F1NMpn7cWdIR68LEXcyf8=
Subject key identifier: 49:F5:4F:56:73:8F:49:B9:84:AF:A4:90:4F:18:12:3A:D2:03:3E:1B
Certificate issuer: /CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Certificate serial: 01856B9C72E05A67514D990B5220964BB27E
Authority key identifier: 0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/SfVPVnOPSbmEr6SQTxgSOtIDPhs.roa
Signing time: Sun 01 Jan 2023 04:34:53 +0000
ROA not before: Sun 01 Jan 2023 04:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 89.248.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:72:e0:5a:67:51:4d:99:0b:52:20:96:4b:b2:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Validity
Not Before: Jan 1 04:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49f54f56738f49b984afa4904f18123ad2033e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:9e:b5:e9:b5:10:c2:f9:d2:c1:69:0d:44:
52:b1:51:27:f4:f7:f8:6e:b2:fc:ea:fc:f0:b2:ca:
b2:1e:f8:90:aa:3a:cf:b0:70:38:aa:4e:13:51:6c:
eb:6a:2a:4a:95:37:9e:92:06:81:bd:ba:6a:92:fd:
12:8e:ee:fb:4e:9c:e4:8a:e0:20:bf:39:2f:c7:0a:
67:9d:31:20:29:7a:45:7a:19:ba:a6:0b:d9:87:c1:
fa:81:73:db:7d:60:b1:db:78:1a:17:71:d1:8a:cb:
fc:d0:12:d5:12:5a:ac:91:d4:51:c4:0a:75:e7:6c:
c2:09:e8:6a:3c:bf:23:47:80:c2:fc:78:de:99:48:
04:55:0b:e3:52:4a:c4:be:8b:98:94:5c:94:db:6f:
ca:b0:14:e7:9a:c5:11:55:98:04:dd:12:57:5e:96:
19:10:2f:5c:89:d5:9e:32:1d:61:f6:90:09:f8:61:
25:a8:c0:d1:19:7c:a2:f1:cc:18:5b:0c:d0:c9:3e:
45:f4:4a:50:28:dd:f6:1a:7b:78:dc:28:1c:42:2d:
62:ca:ed:05:0a:90:d6:c0:68:f4:0c:1f:29:96:7e:
f6:6c:47:bb:18:1f:a9:54:1b:78:1f:5c:fe:1f:14:
cc:77:36:6a:b2:2d:cb:71:31:1c:fb:27:21:fc:97:
f9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F5:4F:56:73:8F:49:B9:84:AF:A4:90:4F:18:12:3A:D2:03:3E:1B
X509v3 Authority Key Identifier:
keyid:0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/SfVPVnOPSbmEr6SQTxgSOtIDPhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/Ds2ZqhcBdjpaHtm7430swJMpybo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:11:a6:fa:7e:3a:97:f0:45:4f:53:88:63:05:07:76:89:05:
b6:89:21:66:82:fe:3a:0a:50:68:97:af:33:e7:95:86:97:78:
f7:d6:8a:f4:7f:8d:95:d8:2a:1a:bf:3c:19:06:9c:3a:a8:db:
27:b2:60:f4:5d:e8:79:16:e8:45:80:f0:f4:e4:e6:f9:32:21:
ec:05:d8:8d:3c:d5:82:bb:d0:97:0d:f4:d7:50:bb:bb:4d:09:
59:83:9f:27:7b:3a:18:ff:77:42:ff:35:f1:4c:b7:05:85:f0:
f8:e7:79:33:9d:7d:b5:6f:7f:1a:76:4d:96:82:9e:37:53:eb:
0c:13:91:29:09:4e:85:cf:2b:23:14:64:03:bc:b4:d8:64:5e:
93:a1:87:ae:b9:de:6c:f6:73:2e:b9:79:4d:1e:69:02:9f:fd:
b6:b5:7b:50:3d:4e:3b:64:7a:f7:9d:27:0f:d2:b6:18:78:8c:
2c:46:2e:ae:27:19:2f:cb:c6:df:bc:b3:5d:b8:4c:e2:13:4f:
5a:e9:11:d3:6c:e3:c4:64:f9:b4:33:a1:c4:93:fd:4f:3e:54:
2c:2d:84:74:26:3c:e4:5a:61:74:86:86:91:3d:f5:ea:f5:97:
c7:06:06:7c:d1:26:e4:aa:6f:0b:96:cd:c2:80:9b:58:97:2c:
a6:07:85:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 21 07:06:24 2023 by rpki-client on console-fra.rpki-client.org