Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/rTDZ4cuGI7u6UfUl2f3bHW3Y3VY.roa
File: rTDZ4cuGI7u6UfUl2f3bHW3Y3VY.roa (raw, json)
Hash identifier: nbeiE3g986B/aY3ya6vQUkPNJu4ph0dvYPRN/JBIids=
Subject key identifier: AD:30:D9:E1:CB:86:23:BB:BA:51:F5:25:D9:FD:DB:1D:6D:D8:DD:56
Certificate issuer: /CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Certificate serial: 0181D8CB2FB4D830C0CD3D88215C674AF7A1
Authority key identifier: 42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/rTDZ4cuGI7u6UfUl2f3bHW3Y3VY.roa
Signing time: Thu 07 Jul 2022 13:13:23 +0000
ROA not before: Thu 07 Jul 2022 13:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 89.35.60.0/23 maxlen: 23
89.33.166.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:cb:2f:b4:d8:30:c0:cd:3d:88:21:5c:67:4a:f7:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Validity
Not Before: Jul 7 13:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad30d9e1cb8623bbba51f525d9fddb1d6dd8dd56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b6:58:2c:76:13:b9:80:aa:f8:cd:b3:dc:fd:
47:e6:0f:55:bb:55:0f:46:51:ff:13:a7:a7:ee:b8:
f7:0b:bf:56:c6:d7:1c:4c:e5:e7:07:9e:59:5e:3a:
22:7d:14:dc:15:71:b7:80:66:78:42:8f:b0:d6:43:
bd:1e:92:0b:02:c3:05:06:f8:55:46:73:fc:2a:eb:
61:df:8d:aa:d4:ad:1c:8d:38:e0:d9:c1:ec:38:b6:
22:e0:67:31:fd:3e:09:27:98:93:27:54:8c:5f:5c:
06:42:f0:c0:74:d3:bb:67:41:48:0d:a5:3c:27:20:
ec:ce:c8:47:e4:fd:22:b1:94:ce:67:4d:fa:cc:5d:
b7:15:8b:db:2d:4f:ca:ac:7e:f6:3d:b4:d9:a2:60:
ae:96:f1:8b:8f:0f:9a:96:c3:41:b4:a8:aa:9e:95:
d6:32:a8:0d:e9:36:6b:82:04:db:5f:03:b7:26:f5:
d3:84:5c:e5:e9:29:13:3e:7e:b7:4f:21:fd:f3:f6:
74:81:25:6d:44:6a:ed:f2:4d:6c:67:a5:59:9c:df:
f2:94:1f:59:63:5f:90:ed:39:af:3c:0d:dc:dd:92:
f2:df:a4:ba:5d:77:4b:16:d2:17:52:e4:97:28:c9:
e7:85:54:9e:d8:da:ca:e4:c0:17:8f:ae:27:40:37:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:30:D9:E1:CB:86:23:BB:BA:51:F5:25:D9:FD:DB:1D:6D:D8:DD:56
X509v3 Authority Key Identifier:
keyid:42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/rTDZ4cuGI7u6UfUl2f3bHW3Y3VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/QvSPf64BKRanddXjtvojEJg0PqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.166.0/23
89.35.60.0/23
Signature Algorithm: sha256WithRSAEncryption
05:82:82:c0:39:c7:9d:76:da:4e:18:12:23:5a:16:52:e3:a5:
26:0a:b6:2e:0e:99:93:52:0a:e9:2b:24:cd:b6:c1:4a:e7:b6:
de:6d:bc:70:e9:a2:46:5a:b9:c2:b0:90:c6:01:1f:1b:b8:d5:
7a:40:00:f6:73:28:fb:6a:c7:58:43:f4:77:99:69:40:7e:ba:
02:83:90:34:a6:24:29:c4:a0:ed:76:ca:bb:66:40:bf:89:ab:
c9:96:c8:87:56:76:8f:94:4b:5a:28:37:47:3d:68:fc:d3:52:
f0:4f:2f:51:70:99:c0:64:ba:c0:de:58:52:2f:69:ad:e7:f9:
7f:08:aa:ca:f0:84:c8:f3:aa:38:24:b7:b7:ca:41:b7:c8:2b:
7c:61:0a:69:3e:0d:97:99:af:97:9b:3a:b0:f7:30:72:a3:2c:
cc:76:56:81:fb:e2:7f:03:56:22:8a:68:58:43:4e:ce:cc:17:
49:f4:3c:c3:7d:37:8f:9b:2d:53:26:97:16:49:04:5f:ca:e7:
bf:bd:67:ef:31:3a:12:c6:b5:62:ee:5d:89:1f:d7:5c:88:39:
78:ed:15:27:7c:3a:41:88:e8:72:74:4d:e3:9d:c3:b6:ad:4b:
c8:65:2b:a5:4c:6e:eb:46:cd:74:85:be:24:c5:cb:43:12:69:
58:7e:07:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:22 2025 by rpki-client