Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/iba0gTonDZoqptQMVot4S6BVVUU.roa
File: iba0gTonDZoqptQMVot4S6BVVUU.roa (raw, json)
Hash identifier: E5llllXAC+5zEZ7gZ/i0jX5q7Fj+mQ4nQuijNhX0zG0=
Subject key identifier: 89:B6:B4:81:3A:27:0D:9A:2A:A6:D4:0C:56:8B:78:4B:A0:55:55:45
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0998EA13
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/iba0gTonDZoqptQMVot4S6BVVUU.roa
Signing time: Wed 16 Feb 2022 21:14:22 +0000
ROA not before: Wed 16 Feb 2022 21:14:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 89.116.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161016339 (0x998ea13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Feb 16 21:14:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89b6b4813a270d9a2aa6d40c568b784ba0555545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:ce:e6:62:38:ca:11:fa:c9:e9:55:52:31:
4b:65:38:3b:90:e2:32:f4:8a:23:df:3d:3f:20:e2:
dd:8e:65:59:20:92:16:e5:5b:79:dc:a3:bb:fe:21:
04:f1:a5:58:fa:75:5e:2f:15:45:fb:74:2a:67:4d:
8a:ab:53:8c:84:a6:9f:2f:d6:24:db:51:e2:c9:63:
af:e1:cd:59:0e:64:f4:23:b9:03:15:88:c8:7a:2f:
1b:2c:7d:88:2c:c6:34:d6:d2:92:fa:8f:17:c5:c3:
83:ee:6d:82:8b:a2:5a:5b:2c:b4:07:f2:08:2d:25:
53:d0:4c:9c:7e:13:34:ea:73:66:f7:48:5f:d3:8a:
47:17:d5:57:e4:ac:6a:1d:74:aa:0e:b6:81:ff:af:
e3:b2:26:15:62:c5:c2:0d:c2:66:8a:01:c3:6a:04:
70:ed:50:eb:4a:21:42:e7:bd:7e:99:f8:52:ae:06:
a1:90:ab:17:28:5c:3a:d6:65:17:38:82:eb:ea:a7:
dd:f1:56:e0:c4:8f:d6:27:37:36:91:bf:5a:84:12:
a6:9c:ce:17:6b:dd:2d:e6:e4:84:ef:84:77:1b:8c:
07:82:91:db:b1:de:28:0b:e4:19:b7:b0:c9:b9:dd:
72:79:a6:8d:e0:eb:66:43:f5:dd:98:9b:bb:c7:f0:
df:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B6:B4:81:3A:27:0D:9A:2A:A6:D4:0C:56:8B:78:4B:A0:55:55:45
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/iba0gTonDZoqptQMVot4S6BVVUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.64.0/22
Signature Algorithm: sha256WithRSAEncryption
94:87:4c:ff:9f:40:f0:5e:aa:91:9c:93:fc:f1:ec:8a:53:38:
ba:51:17:66:13:45:00:86:77:02:de:8b:4e:71:ce:66:77:b6:
ea:18:e8:55:80:fd:c6:01:83:9d:6c:8c:da:7c:3d:6d:8e:89:
dc:00:db:6f:a8:00:8b:a6:54:f5:29:02:9b:b1:6a:0e:a2:57:
fd:13:0a:32:76:b2:12:dd:3e:3d:8f:28:88:73:b5:d4:e4:a3:
cd:d4:73:42:7c:e3:0b:32:2d:48:b4:c7:5c:be:1a:c2:73:a2:
db:15:2f:d0:f0:ce:78:08:77:3e:72:a5:97:42:7d:27:31:ab:
80:a6:72:c3:49:4d:2e:e4:3e:7b:34:02:28:99:a0:08:87:bf:
fe:da:71:02:72:19:74:49:c0:93:8c:d1:7f:2d:47:67:98:e0:
b9:6f:cc:4b:fe:1e:8f:f2:4d:03:87:db:92:2c:5b:27:1b:1b:
60:6b:54:db:4b:23:06:1e:5d:94:e1:77:06:3b:78:09:2b:e3:
20:8a:b4:88:6a:08:08:a3:e3:92:55:14:5d:df:ad:2f:8c:0b:
2b:86:9e:a3:9b:dd:9b:ca:52:ba:01:ca:a1:e8:fb:d7:80:91:
62:77:7e:70:e0:0b:f9:29:a2:3c:1b:22:e0:7e:41:f7:57:e7:
bb:76:8f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:06 2024 by rpki-client on console-ams.rpki-client.org