Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/BIgYAECqtmWWLZfDmKq4q2zIVKI.roa
File: BIgYAECqtmWWLZfDmKq4q2zIVKI.roa (raw, json)
Hash identifier: S73I5SKc/viVTu46f6Gbh7gtU4IYFPDpdzdkYzZn9jo=
Subject key identifier: 04:88:18:00:40:AA:B6:65:96:2D:97:C3:98:AA:B8:AB:6C:C8:54:A2
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32DEA3CE
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/BIgYAECqtmWWLZfDmKq4q2zIVKI.roa
Signing time: Sat 01 Jan 2022 13:58:43 +0000
ROA not before: Sat 01 Jan 2022 13:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33916
IP address blocks: 78.109.208.0/20 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853451726 (0x32dea3ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0488180040aab665962d97c398aab8ab6cc854a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ec:34:93:05:3f:de:e1:67:c1:67:10:87:76:
8b:48:1f:ab:ee:3b:d1:a8:52:af:4f:87:fc:6f:67:
1b:58:87:8a:70:86:ad:77:a4:55:ab:fc:f2:d1:ab:
83:0e:0a:f4:4d:16:d9:a8:aa:35:b3:e1:7a:aa:f8:
88:b9:e2:0d:00:a8:da:9b:b6:45:1f:18:20:16:86:
34:b7:d7:56:89:1b:14:76:ad:d1:70:25:59:6e:83:
cb:ce:b7:9e:b6:59:64:b4:6d:97:a7:8f:d2:f7:ee:
f9:27:4b:3c:dd:30:7a:a4:ed:23:3c:fd:e0:5c:f8:
c3:2a:29:29:65:7f:56:d9:5e:89:20:9e:dd:90:dd:
f3:21:50:3c:e2:ad:0a:84:2b:cc:7b:df:4a:aa:61:
33:bf:bd:7a:4f:43:f3:50:d9:07:0e:6e:a4:00:b7:
96:97:a7:5c:ab:61:aa:a8:8c:45:bf:ca:c4:bc:1b:
e6:21:63:44:bf:fd:ff:d6:84:0e:e9:98:8a:1d:a9:
cd:ca:67:9e:9b:03:ae:81:0b:67:df:9c:ac:6b:4e:
21:90:b6:72:d4:15:a0:dc:61:a1:8f:59:dc:5b:6f:
19:6f:37:23:cd:1b:fa:12:01:4c:be:b5:a2:39:37:
69:32:53:a3:5b:ba:4d:27:aa:6c:a0:d7:8a:09:0c:
8c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:88:18:00:40:AA:B6:65:96:2D:97:C3:98:AA:B8:AB:6C:C8:54:A2
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/BIgYAECqtmWWLZfDmKq4q2zIVKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.208.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:83:a0:66:85:4f:fe:25:99:51:b9:ff:62:43:01:14:e8:28:
89:d7:ff:16:a7:ad:be:3a:ec:01:0c:ef:5b:03:3f:c9:c0:25:
3f:ec:6c:e8:93:87:02:0b:6f:a5:37:4f:55:cf:02:25:36:2d:
09:d0:e0:9b:96:31:ab:2e:b9:99:1c:67:68:70:52:1f:2f:78:
d8:80:38:26:f0:52:52:03:63:b8:56:e3:94:05:8d:7e:8c:05:
50:e2:53:c9:03:b2:3c:27:fa:7e:b4:1b:39:95:77:0c:d3:8c:
94:53:fb:2c:2e:8c:ec:b3:f4:d7:41:2a:10:54:96:0e:68:2e:
b5:47:87:d5:e7:ca:70:2e:05:ac:bc:4d:91:8a:a2:26:d1:25:
0c:5d:94:3c:82:ce:75:33:cf:c2:4a:07:27:8d:03:0a:74:b7:
c7:a1:60:15:5a:4d:85:63:fc:13:a8:9a:f8:87:5d:de:18:e9:
05:1e:a3:35:fd:a7:90:00:d6:c9:1d:46:2c:e9:f7:4a:67:3c:
da:2f:74:42:d5:b1:e1:95:c3:5f:10:a3:a0:31:82:ee:21:b1:
2f:be:b1:e7:12:a0:6e:c8:71:58:a8:02:fb:cd:14:c9:fa:17:
94:1d:e0:f2:3c:2c:4d:97:e4:6f:a5:c6:df:dd:a0:31:30:f5:
33:a8:f9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org