Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/QDy1CtTT2_gtkp6yuk8J5ai8Wr0.roa
File: QDy1CtTT2_gtkp6yuk8J5ai8Wr0.roa (raw, json)
Hash identifier: nqfrnjBIiSSDp69dE3+xCbTxgIRDPodKx7RzAR2tCDQ=
Subject key identifier: 40:3C:B5:0A:D4:D3:DB:F8:2D:92:9E:B2:BA:4F:09:E5:A8:BC:5A:BD
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 091C2944
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/QDy1CtTT2_gtkp6yuk8J5ai8Wr0.roa
Signing time: Thu 27 Jan 2022 06:19:12 +0000
ROA not before: Thu 27 Jan 2022 06:19:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 89.117.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152840516 (0x91c2944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jan 27 06:19:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=403cb50ad4d3dbf82d929eb2ba4f09e5a8bc5abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:43:d7:98:ff:1c:e0:8e:09:b0:9e:ef:93:0e:
36:e3:56:eb:14:b6:83:a1:bc:ab:f3:25:38:eb:c5:
20:23:2a:40:a1:f6:03:70:9d:fd:27:f0:a4:63:35:
23:48:f2:b1:eb:73:ef:54:f0:6c:20:7d:fc:cc:58:
43:2d:4c:48:30:a3:18:f8:81:00:96:a1:e8:12:6d:
fd:4b:26:39:25:ee:96:dd:6a:42:c6:c4:c5:b1:f0:
f8:c8:d1:6a:a7:e0:72:e5:b1:a1:af:8b:b5:da:1d:
fc:70:25:49:19:41:84:2b:bc:d1:e9:00:99:c4:44:
2c:70:10:60:66:21:0d:08:83:08:00:74:e8:71:c5:
34:f4:d2:c1:5f:05:af:90:e2:70:88:1d:fd:8a:21:
39:36:42:f7:d5:82:56:31:56:79:e1:0d:23:ab:f4:
9b:03:5e:07:e9:5b:27:36:49:77:2b:81:2a:d7:70:
36:e7:81:2f:0f:2a:f7:31:a2:e8:92:f0:b4:c4:30:
f4:a5:12:68:54:37:8a:21:93:37:11:4c:51:ad:6c:
e4:b1:b8:ba:34:7a:3f:c5:cc:3c:bd:8f:3a:f9:e5:
66:af:80:6c:07:61:e7:6c:9c:df:cc:3a:5a:56:bc:
e8:1e:3a:80:e5:a9:17:c3:2c:f9:d9:7f:43:ea:18:
f9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3C:B5:0A:D4:D3:DB:F8:2D:92:9E:B2:BA:4F:09:E5:A8:BC:5A:BD
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/QDy1CtTT2_gtkp6yuk8J5ai8Wr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.130.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:02:98:f4:4c:cf:53:77:99:c2:d6:1c:a7:51:52:56:d1:05:
d6:29:92:0d:42:7b:5b:b8:3a:28:df:9e:d8:f4:2a:25:1d:8b:
70:3d:20:c0:af:19:ee:b2:64:3a:ee:ad:3c:ca:8f:90:3f:6f:
70:d1:ff:43:b8:ba:dd:e3:bc:8a:e1:9f:d2:9e:be:78:fe:14:
9c:14:43:f9:dc:3d:c9:00:f2:95:44:25:99:63:78:ae:84:6d:
2d:9f:12:41:c4:5e:5b:f8:a1:14:01:43:ec:d1:a5:33:2f:88:
42:c4:b4:bd:e1:80:bc:f2:18:98:92:f4:2e:4f:5d:ff:f3:7e:
4d:47:28:20:3f:5c:ea:bc:cf:50:92:ff:5d:67:ee:b0:b8:85:
21:7a:e2:d9:fe:f6:d6:e9:29:1c:92:ad:87:d4:2a:60:fe:56:
3f:11:83:99:a8:8b:3f:47:97:ff:2f:b1:6e:7e:2b:59:74:00:
2d:4d:7c:5d:69:4f:4d:5a:5b:b0:9d:4e:13:dd:29:c4:49:bc:
21:13:18:6e:75:91:b1:4a:95:53:16:d8:09:bf:28:41:b9:61:
c4:82:1f:c7:f7:32:d3:58:80:c6:0c:b9:35:b6:ed:4c:ec:9b:
52:89:21:00:11:8e:26:75:ce:94:d6:ff:79:c5:12:a5:02:13:
59:08:4e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org