Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bHaKKZbuTC3mup-b1Cx2P7fCjEY.roa
File: bHaKKZbuTC3mup-b1Cx2P7fCjEY.roa (raw, json)
Hash identifier: ILvteLntMg9FHy9fMePxlS6R18y8frlFrX9ZCSuwskc=
Subject key identifier: 6C:76:8A:29:96:EE:4C:2D:E6:BA:9F:9B:D4:2C:76:3F:B7:C2:8C:46
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0182F8190501ADAA508258B0475A5168FCDE
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bHaKKZbuTC3mup-b1Cx2P7fCjEY.roa
Signing time: Thu 01 Sep 2022 08:09:25 +0000
ROA not before: Thu 01 Sep 2022 08:09:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 89.116.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:19:05:01:ad:aa:50:82:58:b0:47:5a:51:68:fc:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Sep 1 08:09:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c768a2996ee4c2de6ba9f9bd42c763fb7c28c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:07:60:dd:cb:ce:9b:be:f8:96:fe:df:ac:
72:67:f7:1c:e1:c7:0b:63:3e:77:e5:73:77:14:66:
95:71:6b:eb:5f:2c:7e:70:74:28:78:d7:f6:57:2f:
86:3d:ae:5d:c4:0d:c7:e1:92:2d:8f:d0:73:b2:d6:
6b:e1:23:90:03:46:8b:3b:a6:e0:12:75:0b:e8:b9:
a3:fd:9c:10:b6:08:d3:46:cf:c5:7f:70:90:a9:7c:
0c:a7:1c:d9:17:6b:13:86:56:4d:53:02:b6:d6:08:
fa:84:41:ce:02:c1:63:49:c8:9d:9b:32:b4:ba:d5:
a3:72:1d:24:b8:76:f7:d4:4b:95:31:28:bf:28:bd:
78:44:92:ce:54:9c:4d:71:be:64:db:7c:c8:2e:9f:
82:5b:26:d2:b6:cb:98:de:39:55:07:8c:16:95:05:
df:0c:22:2a:5a:5f:77:a9:78:cc:e8:85:8e:10:4f:
c0:2a:16:92:08:34:18:04:c2:44:8b:94:e1:ea:1c:
12:f0:04:64:d7:c1:97:08:a6:ab:5b:db:b2:eb:b1:
b4:15:9b:e6:75:7a:5d:1e:d9:b4:36:81:b4:33:34:
31:05:5d:63:da:ac:91:5d:7c:9f:bf:bc:e1:60:b0:
ca:4a:06:44:86:df:53:74:52:44:d8:9e:0b:49:ab:
d6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:76:8A:29:96:EE:4C:2D:E6:BA:9F:9B:D4:2C:76:3F:B7:C2:8C:46
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/bHaKKZbuTC3mup-b1Cx2P7fCjEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.125.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d8:48:f7:fc:22:61:bc:67:5a:89:bd:9e:70:88:e3:95:59:
09:08:b8:d8:0d:26:e5:24:f4:44:7f:42:6a:00:d0:41:d0:86:
81:5d:02:ce:2b:63:a3:94:a8:34:b4:6c:3e:8f:29:eb:c3:8e:
fd:fb:46:f8:6b:33:01:ba:f4:f8:9a:7d:a7:16:20:2c:a3:1d:
3a:a9:70:eb:4f:28:20:b5:6a:34:3a:d0:93:6d:4b:94:a1:18:
2e:3b:36:25:90:25:48:da:81:84:18:e1:80:7f:f6:66:5b:2c:
39:99:4f:19:39:13:dc:aa:63:a4:d2:48:77:45:1f:37:9a:59:
df:a3:b3:ce:90:f5:7d:bd:33:df:c0:a3:3c:66:ef:8d:c2:e4:
cd:33:c9:30:79:aa:b4:92:79:4e:61:cd:ef:d3:05:8b:c1:58:
f5:32:82:ff:32:6a:cc:5a:8d:1a:f3:a8:13:7d:de:5e:26:0c:
94:67:7d:af:75:38:50:fd:58:fe:cf:f0:5b:3b:a3:8b:ce:0c:
21:6f:dd:10:b7:7b:68:b4:ea:26:43:90:fc:49:c3:ee:88:64:
c1:2a:b3:c8:66:1d:3b:53:fa:17:e8:97:69:48:c8:4e:3f:27:
31:81:d6:52:d5:6a:a2:4f:4b:fd:2f:ba:7a:c1:0d:c7:61:58:
53:11:25:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org