Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U35D7RKuekqEGdRLgKOIyBlcdM8.roa
File: U35D7RKuekqEGdRLgKOIyBlcdM8.roa (raw, json)
Hash identifier: 4jgFCX86mneJoSSoSH4kduKZsuAGA8h4y5cPm/qr5f8=
Subject key identifier: 53:7E:43:ED:12:AE:7A:4A:84:19:D4:4B:80:A3:88:C8:19:5C:74:CF
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A36F2AA
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U35D7RKuekqEGdRLgKOIyBlcdM8.roa
Signing time: Thu 07 Apr 2022 19:36:34 +0000
ROA not before: Thu 07 Apr 2022 19:36:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 89.117.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171373226 (0xa36f2aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 7 19:36:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=537e43ed12ae7a4a8419d44b80a388c8195c74cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:9b:a4:ba:83:25:44:b7:9a:7f:e9:7b:21:
f6:10:fb:23:16:23:b4:01:86:54:06:02:7a:76:a5:
a6:97:b3:e0:0d:eb:be:71:62:8a:2d:e4:11:c7:5c:
46:f5:97:af:f8:36:88:37:d0:54:1e:fa:bf:fc:97:
04:47:5a:67:49:0c:82:71:33:5b:66:33:2a:69:0f:
b3:9c:41:7e:36:4b:98:e8:bc:e6:53:7e:03:1b:4f:
82:45:7a:df:04:bc:d2:4a:17:a6:a0:32:4e:33:bc:
6e:ec:74:ae:ea:44:22:22:81:5f:e5:56:86:51:61:
44:3f:1a:06:8d:5f:5d:a1:f9:08:51:2b:2f:b8:77:
97:e0:4a:95:d8:50:1d:d8:1e:ed:2f:a1:96:9c:26:
c8:3b:97:1a:1b:b0:4a:08:55:19:0a:53:2b:6e:35:
18:99:18:64:08:2c:ad:2d:60:1a:5a:fd:f0:04:e8:
fb:4f:58:11:08:ea:1d:49:c6:44:70:9a:2e:f6:d2:
02:a3:04:8e:d1:11:23:c5:f2:c9:61:62:28:9c:53:
1f:f6:87:0a:71:c9:e6:93:6c:f1:ae:78:a5:c1:7f:
a4:ac:e6:61:4f:97:69:82:95:62:eb:32:59:9d:40:
ba:d9:f1:34:4e:d8:8a:99:de:20:14:a2:9c:30:3c:
09:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7E:43:ED:12:AE:7A:4A:84:19:D4:4B:80:A3:88:C8:19:5C:74:CF
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/U35D7RKuekqEGdRLgKOIyBlcdM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.254.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:1e:f3:65:19:a7:62:fb:3a:35:33:5e:76:57:da:7c:c9:4b:
63:86:d7:f9:12:f5:67:d8:ce:d2:51:7f:52:6b:39:d3:27:1b:
b6:91:f9:61:91:10:a0:cb:b4:35:dc:a2:58:0f:9d:83:65:2a:
8c:e5:36:ac:36:9f:67:20:c7:f6:04:db:8a:d9:24:09:22:54:
33:47:b4:27:98:6d:c8:c2:a5:e3:a5:cf:35:53:10:ab:c3:7b:
ba:ee:42:11:77:e7:c3:da:e9:03:19:91:31:29:2b:66:3a:be:
11:ca:cc:e5:7a:79:47:5e:a3:78:b0:b1:7e:e4:f4:59:74:30:
c5:2d:87:b0:cb:cd:90:d6:11:0e:d0:49:6b:1e:ca:48:eb:ca:
6f:ea:eb:6e:b0:da:85:76:1d:fc:b0:6a:e4:28:10:8b:32:7e:
6c:c3:3f:f4:9d:7e:fd:9a:41:6a:5b:03:a3:d8:b5:de:6d:d9:
5a:f8:4b:05:fd:bc:14:c8:92:e8:78:a4:95:d6:de:bc:9d:19:
03:d0:ea:e3:dc:8e:5f:fb:a3:96:9d:31:b5:87:50:09:99:2d:
51:2b:9e:36:52:7e:f6:42:33:e7:02:55:a5:0c:79:84:07:1c:
4b:81:12:86:b7:be:2c:51:39:ca:5c:25:22:fc:c5:1a:e8:94:
c6:63:5a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org