Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/PaGZrAEFsJHAyptWthhcnOyjz44.roa
File: PaGZrAEFsJHAyptWthhcnOyjz44.roa (raw, json)
Hash identifier: 1/OEByDU4HQDhxeivufo1cQ3vSayt/TnQSn5pJgj7Jo=
Subject key identifier: 3D:A1:99:AC:01:05:B0:91:C0:CA:9B:56:B6:18:5C:9C:EC:A3:CF:8E
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A23DDB0
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/PaGZrAEFsJHAyptWthhcnOyjz44.roa
Signing time: Wed 06 Apr 2022 05:19:58 +0000
ROA not before: Wed 06 Apr 2022 05:19:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 89.116.239.0/24 maxlen: 24
89.116.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170122672 (0xa23ddb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 6 05:19:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3da199ac0105b091c0ca9b56b6185c9ceca3cf8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:51:8c:f1:6a:d7:57:fe:1b:2f:be:71:9f:e9:
46:2f:02:d9:44:cb:94:7b:05:8a:cd:36:df:22:0a:
0a:0d:73:bc:66:c5:ea:fc:ee:5d:ee:84:2c:5a:b2:
64:1b:67:34:fe:6d:4a:b5:88:e7:ae:b7:15:48:0f:
23:dd:ee:53:6f:57:02:51:03:1d:d2:ef:a7:11:89:
66:57:9f:09:47:53:ee:66:87:f3:a4:6e:ca:55:6f:
f5:ce:64:78:87:8f:35:be:55:96:10:fd:13:81:d1:
23:95:60:9d:78:6c:01:30:9f:df:4f:bc:a2:05:1f:
59:8e:a0:a9:dc:1e:1a:97:cf:01:53:1c:db:6f:81:
ef:6e:f1:43:85:98:45:3f:fc:16:e4:2e:0d:c1:ef:
ab:0a:6a:3b:5b:b6:1a:28:5f:6d:27:e8:ef:68:bd:
5f:a9:92:74:9a:04:49:9b:70:43:4d:53:f1:8a:d2:
29:d3:6e:a0:64:d2:c2:13:7a:e9:6d:70:14:55:42:
56:ae:13:df:7e:b8:8c:46:76:ab:14:52:d1:b1:f8:
a7:01:59:eb:3b:ed:0a:e1:d1:39:4a:76:e3:ac:cc:
a9:5a:74:3d:c5:a2:c8:f3:39:68:14:b2:33:e2:fa:
5a:27:8c:9b:75:54:2c:e0:f8:49:31:6b:e5:ef:cd:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A1:99:AC:01:05:B0:91:C0:CA:9B:56:B6:18:5C:9C:EC:A3:CF:8E
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/PaGZrAEFsJHAyptWthhcnOyjz44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.200.0/24
89.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
98:97:75:cd:cf:5e:ec:6d:b4:f0:a0:e9:18:17:57:80:76:0d:
fd:f2:d2:29:ca:5a:77:9f:d2:1f:c6:fa:2a:80:c4:cb:78:33:
4e:f7:76:b6:06:b1:f1:f4:f5:06:4e:9c:6c:62:a0:13:db:28:
6b:9c:84:cb:da:90:87:eb:21:2e:fa:45:e5:79:5c:e2:5c:85:
e0:65:6c:2b:2a:b2:98:83:f2:76:57:4d:8d:c4:e2:66:f0:87:
62:bb:5f:5a:3c:f3:49:0a:4c:eb:b3:31:49:97:c1:66:6f:e6:
23:9e:8b:dc:a7:2a:9e:79:55:89:7d:af:ee:0d:c2:cf:42:5d:
15:8c:1d:7c:05:87:19:93:c0:34:63:ed:3f:fc:60:1e:0c:bb:
86:1d:d0:cb:de:9b:66:9a:40:b9:3e:98:05:d3:8a:6c:ed:15:
83:a0:65:58:ae:b4:71:73:21:90:fc:d8:ea:7d:c8:07:7c:04:
ac:78:11:f4:62:58:69:a2:12:4e:f7:dc:36:5f:9b:32:77:97:
44:90:99:2c:a8:1c:5c:c9:fa:6b:d2:63:d7:89:4f:8f:fd:01:
1b:06:05:63:4e:20:d9:fa:e0:e1:0e:d0:84:97:58:cc:5d:7f:
7b:8a:17:52:c7:ac:12:9a:5a:79:ea:e2:2f:82:f4:79:76:8d:
58:8c:c6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org