Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/3xd94HT9le_K2F3ZeyDrvbeny3w.roa
File: 3xd94HT9le_K2F3ZeyDrvbeny3w.roa (raw, json)
Hash identifier: mKPI2dvyhgEst/3BwaMnf4IQG1qDfvPfH6ED+6MkQ58=
Subject key identifier: DF:17:7D:E0:74:FD:95:EF:CA:D8:5D:D9:7B:20:EB:BD:B7:A7:CB:7C
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 094D9E75
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/3xd94HT9le_K2F3ZeyDrvbeny3w.roa
Signing time: Thu 03 Feb 2022 06:01:36 +0000
ROA not before: Thu 03 Feb 2022 06:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 89.116.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156081781 (0x94d9e75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 3 06:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df177de074fd95efcad85dd97b20ebbdb7a7cb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:2a:dc:12:df:c8:8d:31:45:a5:a0:8d:03:
d4:78:5d:8c:3e:ae:86:b2:80:73:21:37:38:d7:80:
ae:4a:64:86:a6:ff:bf:d2:9a:b9:54:a1:f1:89:f1:
03:53:b5:4f:2a:7a:b7:d0:da:b0:04:40:79:20:58:
0e:e6:ea:87:4d:ae:c4:00:a7:d0:c5:11:a3:78:d4:
63:a5:51:bc:79:32:10:b5:cd:10:bc:84:75:5b:c5:
08:a1:69:96:d1:c6:d6:c5:d9:42:bb:68:00:f0:54:
27:3a:a5:c7:72:b1:f3:30:4f:40:44:df:3b:c4:7a:
3d:ca:97:90:85:ae:0a:35:b5:34:72:da:6b:d1:a2:
78:07:e6:6b:eb:2e:30:2d:11:42:27:71:10:06:f3:
8d:5b:e3:a6:07:ff:c1:b9:b9:2f:11:c0:af:4c:8e:
d6:59:db:33:e8:60:3a:85:8e:04:28:51:1c:51:16:
14:ab:ec:30:70:84:03:d6:98:70:21:cf:bd:ca:20:
18:76:8c:42:66:3f:06:f8:04:76:b4:be:cd:ae:f5:
b1:dd:94:2b:4b:44:4b:bb:d4:7b:5f:40:89:c9:be:
fe:e8:0a:9a:09:71:e6:fa:2e:69:85:09:13:17:1f:
b3:70:83:5c:9e:39:ff:32:ca:b1:f1:90:64:24:98:
18:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:17:7D:E0:74:FD:95:EF:CA:D8:5D:D9:7B:20:EB:BD:B7:A7:CB:7C
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/3xd94HT9le_K2F3ZeyDrvbeny3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.56.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:14:66:be:99:54:47:96:34:24:50:9f:7b:73:09:dd:04:ee:
3d:7c:3b:4b:17:96:3b:4a:04:9f:3c:73:0c:fd:36:fe:bf:55:
5c:63:d0:fa:4f:3b:62:f1:ea:06:55:d9:7a:50:c2:26:e5:bf:
23:05:91:73:85:f1:e1:16:a2:c4:20:8d:49:2a:5c:a2:d8:35:
75:80:0a:75:cf:83:5d:04:0a:45:ad:94:32:6b:9e:d3:2d:01:
44:22:c9:46:8f:bb:4d:3f:c4:6a:42:b7:ce:8e:17:d1:7f:39:
d4:64:85:c2:25:dc:e8:31:c3:df:59:d6:08:51:66:b4:75:99:
68:d8:77:69:a0:c2:f1:f2:06:ce:8e:0a:7a:d7:bf:71:39:88:
8c:ac:71:a8:9c:77:20:4b:a7:d8:89:47:e9:e2:4d:62:46:0e:
2e:ea:32:4f:f9:e2:13:63:60:67:11:b6:dd:4d:6b:8d:eb:58:
91:e0:28:40:3e:4a:cd:24:32:62:c2:93:31:39:c4:d4:98:42:
6b:0c:f9:3a:2e:56:95:17:7a:04:7d:93:4a:e6:96:7f:88:23:
4f:7f:02:6b:8a:a4:72:45:1c:5c:1a:d2:72:37:88:9d:66:5a:
be:ac:ca:e3:57:47:6e:3c:97:cd:ef:45:fb:c2:39:21:29:3a:
b9:bb:47:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org