Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/30b2dc-43bf-4497-8b44-2c3e3b593646/1/yVirwUZr-TCsXStJ5yBkVZiLI1s.roa
File: yVirwUZr-TCsXStJ5yBkVZiLI1s.roa (raw, json)
Hash identifier: eWlVi+nFddN3QYuktr3SIIu8IVw9t1tN/hlv9+U0SHw=
Subject key identifier: C9:58:AB:C1:46:6B:F9:30:AC:5D:2B:49:E7:20:64:55:98:8B:23:5B
Certificate issuer: /CN=b3d2595ee861126a87a7203782c5f59e02261e81
Certificate serial: CCF6
Authority key identifier: B3:D2:59:5E:E8:61:12:6A:87:A7:20:37:82:C5:F5:9E:02:26:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9JZXuhhEmqHpyA3gsX1ngImHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/30b2dc-43bf-4497-8b44-2c3e3b593646/1/yVirwUZr-TCsXStJ5yBkVZiLI1s.roa
Signing time: Tue 25 Jan 2022 11:47:24 +0000
ROA not before: Tue 25 Jan 2022 11:47:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57523
IP address blocks: 152.89.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52470 (0xccf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d2595ee861126a87a7203782c5f59e02261e81
Validity
Not Before: Jan 25 11:47:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c958abc1466bf930ac5d2b49e7206455988b235b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f9:01:f1:5a:05:1b:23:cf:d2:c5:f5:92:fd:
34:67:d0:8b:12:9f:06:90:02:cf:33:24:83:a5:20:
6e:c4:b9:2a:c9:ad:d4:b8:7e:bb:ec:db:5c:7a:d0:
f0:b5:58:18:5e:bd:5b:bf:87:0b:01:da:6c:ba:4f:
54:00:4b:e7:9c:fc:61:a7:86:f2:77:c8:57:bf:b0:
7f:ef:ec:0b:95:36:b0:70:0d:6c:0a:e1:eb:cf:b2:
cf:36:55:47:99:1b:b7:88:66:28:18:8a:da:d0:43:
67:91:75:b3:6a:12:78:15:61:ae:6b:c6:c2:9f:9f:
c8:17:0a:71:82:a5:cd:27:31:83:63:18:c9:9c:cf:
18:12:58:d1:5f:ff:f5:30:e9:18:c8:71:2c:86:56:
31:e0:28:be:f5:a2:2a:59:be:24:0c:15:3d:f8:38:
65:45:5b:8c:4d:17:8b:a7:c3:19:28:f1:1a:19:48:
58:f5:b5:fd:12:a1:a9:d1:3d:d0:9f:3b:82:f4:d0:
b4:64:93:7a:41:91:6c:58:91:1c:d8:de:b9:d8:60:
59:b2:14:12:d9:50:43:73:53:4f:35:4d:c9:d6:0b:
0a:e9:f3:ea:7f:d6:47:95:3b:5d:5b:c3:8e:95:8f:
7e:4f:0f:36:16:ed:20:8f:74:f5:47:b8:be:cc:e8:
fb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:58:AB:C1:46:6B:F9:30:AC:5D:2B:49:E7:20:64:55:98:8B:23:5B
X509v3 Authority Key Identifier:
keyid:B3:D2:59:5E:E8:61:12:6A:87:A7:20:37:82:C5:F5:9E:02:26:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9JZXuhhEmqHpyA3gsX1ngImHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/30b2dc-43bf-4497-8b44-2c3e3b593646/1/yVirwUZr-TCsXStJ5yBkVZiLI1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/30b2dc-43bf-4497-8b44-2c3e3b593646/1/s9JZXuhhEmqHpyA3gsX1ngImHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.198.0/24
Signature Algorithm: sha256WithRSAEncryption
78:87:62:04:f9:ed:7f:bb:d9:1c:be:8d:e7:e7:2f:ec:96:cc:
2f:1f:71:9f:16:9d:b6:c9:70:f5:2e:58:a7:2f:00:9b:e4:78:
7e:bd:77:fb:d2:25:b7:35:02:6c:61:1b:24:6f:60:c3:ba:09:
a2:cf:55:39:2a:7a:02:1e:c7:4b:4d:a8:e6:52:0d:df:9a:bb:
b3:f3:67:24:9f:b7:2d:4a:56:65:31:a8:47:30:3b:08:25:d1:
aa:d2:01:8a:97:57:bf:4f:18:6a:04:2f:bf:ce:4f:9c:27:ff:
28:8b:5f:de:42:df:c2:bf:a3:74:44:bb:00:45:85:8a:53:2b:
79:02:37:72:d0:7f:e0:71:1f:6d:17:d8:57:39:08:15:a4:7c:
2c:9f:f0:07:44:9e:d3:fc:65:bf:9c:d2:4e:d1:e1:e4:ce:f3:
92:be:77:10:81:89:6b:2c:81:e1:f4:e2:5d:eb:f6:4d:e3:13:
db:cd:95:d2:37:30:71:65:0d:9a:8b:35:9e:d9:cf:89:50:51:
74:11:dd:8d:24:99:66:3b:54:5d:2b:67:9c:dc:ee:e0:e2:1a:
1b:a6:ee:9f:b8:8a:62:a3:04:04:5b:3f:85:89:cf:be:3d:c9:
95:98:7d:47:99:17:e3:4a:1a:0f:cf:75:4a:69:f0:41:09:f9:
a8:95:fa:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:43 2024 by rpki-client on console-fra.rpki-client.org