Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/twib-8ZL1Qg6bHjDlxFhWuaIrP4.roa
File: twib-8ZL1Qg6bHjDlxFhWuaIrP4.roa (raw, json)
Hash identifier: V5798AqJ5eRXaFsKc5TKg5tidSuLQuS0bIhpLIm+bO4=
Subject key identifier: B7:08:9B:FB:C6:4B:D5:08:3A:6C:78:C3:97:11:61:5A:E6:88:AC:FE
Certificate issuer: /CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Certificate serial: 02F4C3B0
Authority key identifier: 42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/twib-8ZL1Qg6bHjDlxFhWuaIrP4.roa
Signing time: Sat 01 Jan 2022 04:57:49 +0000
ROA not before: Sat 01 Jan 2022 04:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 89.47.8.0/23 maxlen: 23
89.47.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49595312 (0x2f4c3b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f48f7fae012916a775d5e3b6fa231098343ea0
Validity
Not Before: Jan 1 04:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7089bfbc64bd5083a6c78c39711615ae688acfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:de:78:2f:78:9b:ca:ef:30:54:65:fa:2c:fb:
a8:48:6e:3a:97:b8:7a:f4:ea:e4:47:d3:19:cc:4e:
04:37:5a:60:0a:97:5b:00:f4:fa:39:10:f1:8f:2b:
e8:97:11:6d:3a:5d:d5:b8:99:90:bc:ed:b0:b2:ad:
a1:af:02:37:8c:38:99:47:dd:c5:44:21:f8:d5:7c:
a9:23:59:97:d0:37:12:c3:7a:7c:3a:23:81:d5:f3:
5d:2d:5f:b6:6e:e2:4e:55:8c:ce:c4:46:d0:3d:dc:
68:6b:c3:d8:31:fd:6c:a7:d0:3f:b3:fb:63:e9:f9:
90:cc:e2:bb:53:4c:62:95:7a:81:c0:b1:a3:79:fb:
66:7a:62:dd:e3:95:33:92:a1:75:be:84:19:c8:34:
3a:3c:7f:6d:e3:f6:2f:d0:62:cf:9a:d0:c6:bf:2b:
51:50:c5:9b:4d:9a:42:14:a0:6e:eb:68:92:36:0b:
b2:89:04:b5:e2:19:62:e0:bf:a2:a5:2d:64:1a:4e:
b9:04:65:29:20:4a:49:7f:3c:ee:b0:23:96:15:57:
77:cf:95:ca:bf:52:a5:28:18:3f:df:a6:c3:30:d4:
8e:6a:44:60:76:0f:de:33:96:f2:8d:17:ac:94:a5:
6f:6c:76:f8:a8:f5:29:ef:b7:c9:c2:c5:e9:7e:bb:
fb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:08:9B:FB:C6:4B:D5:08:3A:6C:78:C3:97:11:61:5A:E6:88:AC:FE
X509v3 Authority Key Identifier:
keyid:42:F4:8F:7F:AE:01:29:16:A7:75:D5:E3:B6:FA:23:10:98:34:3E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvSPf64BKRanddXjtvojEJg0PqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/twib-8ZL1Qg6bHjDlxFhWuaIrP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/494455-1d2e-4e2b-8f0e-9a0cfce878a4/1/QvSPf64BKRanddXjtvojEJg0PqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.8.0/23
89.47.11.0/24
Signature Algorithm: sha256WithRSAEncryption
38:8a:3b:92:4e:23:f4:53:f1:02:9a:5b:04:d9:23:7e:c7:2a:
04:38:66:84:72:61:4e:e1:15:6c:ae:30:ed:ba:4a:1e:22:ec:
e5:7c:1a:9e:1b:94:07:59:c3:01:a5:89:5e:2b:59:74:f7:c4:
ea:97:50:21:06:27:16:c9:1b:ab:8b:bf:68:00:67:c2:e3:b6:
81:e3:df:3c:a7:73:31:ee:8b:0c:ac:a0:28:86:40:8f:92:bb:
3b:c0:35:8b:ed:3e:a3:2e:3d:2f:a8:af:41:f2:ee:74:25:96:
f8:c9:14:11:41:d1:4b:1f:05:34:10:03:63:ac:23:15:f8:36:
96:df:59:68:b0:03:91:1a:71:b8:28:80:55:9b:8c:0f:91:d1:
47:db:89:c0:19:05:71:29:42:db:b3:30:a5:37:f2:50:9a:48:
f0:01:6c:72:2c:d0:fc:23:19:25:7b:8c:24:27:ec:52:c3:bc:
3b:91:e6:79:f0:e4:7f:76:4a:d3:f2:15:3b:21:8f:b5:43:e3:
0a:ab:c6:16:f0:8d:ff:4c:fc:c9:3d:13:86:23:7b:e6:0f:f0:
07:cc:80:8d:ae:5a:8c:cc:49:3e:a3:c8:f4:b2:5b:32:50:a9:
09:3d:6c:37:b4:01:a9:b2:a9:86:a9:1f:1f:ea:48:66:bc:ab:
8d:18:b9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:10 2024 by rpki-client on console-fra.rpki-client.org