Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/N23iloml-yUj-L0TS5BDMKfjFKM.roa
File: N23iloml-yUj-L0TS5BDMKfjFKM.roa (raw, json)
Hash identifier: aqWfBWKbNpoPgnRvhOXHvkY/DSBU/K7O64XJckqtTCQ=
Subject key identifier: 37:6D:E2:96:89:A5:FB:25:23:F8:BD:13:4B:90:43:30:A7:E3:14:A3
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0AD47463
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/N23iloml-yUj-L0TS5BDMKfjFKM.roa
Signing time: Fri 13 May 2022 05:31:02 +0000
ROA not before: Fri 13 May 2022 05:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 89.116.60.0/22 maxlen: 22
89.117.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181695587 (0xad47463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 13 05:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=376de29689a5fb2523f8bd134b904330a7e314a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2b:44:36:90:4f:1f:8d:31:63:d8:85:26:6c:
92:72:a6:25:67:c1:f6:37:77:44:ac:9e:39:6c:d2:
e9:66:44:7c:43:fc:8f:b1:2a:57:3c:b6:27:b5:be:
62:8c:fd:8e:70:28:6c:a7:59:f4:f5:fe:6d:a9:4c:
19:3e:5d:50:4d:ce:69:e9:3c:f1:4d:90:8d:b9:21:
e1:a7:11:20:a8:43:a5:bc:33:3d:83:bf:38:99:d4:
9e:11:bc:c4:e2:e5:0b:12:73:2b:e6:9f:2c:a6:cb:
00:d1:b6:34:8b:35:5a:f5:27:e5:7b:09:cd:1e:7a:
d8:81:9c:8e:53:1f:7e:2f:71:87:14:dc:8c:e7:7d:
a7:82:b5:3f:66:a1:3b:f7:8c:a6:3c:07:3b:01:29:
70:68:36:ab:d8:4a:cb:e5:a0:b1:db:dd:95:b0:c5:
22:22:02:21:64:92:d8:a9:f9:42:ac:b3:5c:5c:25:
68:1f:ae:72:18:bc:c8:0d:92:be:23:65:7a:fa:c1:
4f:dc:14:0e:66:e1:81:a5:83:5c:e7:6c:c6:24:ec:
fc:ff:e7:1d:5b:86:1d:0d:fd:d6:b7:e1:c8:d9:13:
f7:8e:5f:fb:2f:d2:3f:1e:81:c2:4e:d9:cc:5c:16:
47:3a:02:af:b9:99:bf:60:5c:d2:14:f0:58:51:81:
3c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6D:E2:96:89:A5:FB:25:23:F8:BD:13:4B:90:43:30:A7:E3:14:A3
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/N23iloml-yUj-L0TS5BDMKfjFKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.60.0/22
89.117.152.0/22
Signature Algorithm: sha256WithRSAEncryption
56:f9:3f:79:76:dc:71:af:f2:e5:0e:97:e4:c6:8b:57:1a:71:
de:92:a7:2a:4a:0b:fe:cc:16:99:0b:3a:ba:e7:5f:67:89:57:
bc:6d:11:f0:07:38:62:8b:5e:76:3f:32:cd:06:2a:58:a9:4d:
ab:4d:cc:e9:42:bc:e6:5f:a2:4f:80:e6:67:e9:c1:dd:ad:c8:
86:4e:df:d9:f8:6a:6f:83:a8:8f:6c:c2:48:32:53:50:a6:4e:
fc:e9:33:ae:1b:87:90:d0:a2:70:4a:2a:e0:b4:de:61:c1:51:
50:da:e1:69:e9:67:87:c6:9b:c4:08:11:7b:8a:46:3e:96:9a:
17:39:d9:d1:da:69:17:90:0a:17:a7:37:e5:7b:7f:39:37:ba:
1f:ea:0f:04:8f:53:64:e0:0e:f2:49:c1:62:16:69:b6:49:98:
7f:43:e7:77:ad:1d:73:ac:a1:b4:5b:b8:3b:df:1b:f4:73:d6:
c7:21:c0:4f:c2:91:88:ba:64:78:14:f0:7b:66:b4:f5:98:82:
f0:bb:07:99:90:97:8c:b6:e8:8e:6b:5c:25:a8:75:98:0d:ef:
0d:1a:dc:a7:da:d0:64:7e:6f:6a:e8:f8:e4:0b:5e:23:81:a7:
fc:32:0b:58:1c:6e:64:9d:a6:db:49:fc:8a:51:79:ca:a5:7f:
9c:d3:61:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org