Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/k2DgDOXBKbsylx3xlxDOuonTm3o.roa
File: k2DgDOXBKbsylx3xlxDOuonTm3o.roa (raw, json)
Hash identifier: ChR27mCGsVEicDf0eOYgwAFPjawUi+WZkGiTjDKnXqU=
Subject key identifier: 93:60:E0:0C:E5:C1:29:BB:32:97:1D:F1:97:10:CE:BA:89:D3:9B:7A
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A57823D
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/k2DgDOXBKbsylx3xlxDOuonTm3o.roa
Signing time: Fri 15 Apr 2022 06:29:00 +0000
ROA not before: Fri 15 Apr 2022 06:29:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141993
IP address blocks: 89.117.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173507133 (0xa57823d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Apr 15 06:29:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9360e00ce5c129bb32971df19710ceba89d39b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:04:04:22:76:80:88:33:1a:e9:96:48:68:c2:
b7:b8:b8:1f:3e:69:6b:14:1a:da:71:00:97:30:e4:
08:fb:43:e0:15:62:18:e4:c8:e6:aa:c2:5f:de:c6:
f2:02:32:a2:21:b2:47:0c:2a:70:f6:7f:a7:ec:59:
2b:72:4d:98:ef:39:cf:09:72:9f:56:2d:d3:be:39:
e5:3e:ef:01:51:14:86:dd:18:92:ce:b6:55:d4:c8:
25:56:d8:ea:5a:4e:96:4b:a9:1d:d4:01:33:11:2d:
39:72:c4:a1:3c:a0:5d:67:40:62:d9:d7:06:d9:20:
05:a1:13:7e:ee:11:c6:e2:e0:98:db:d6:93:23:60:
49:02:47:fd:8a:aa:51:64:f9:df:6b:34:79:f7:0f:
47:86:e2:a2:42:e3:56:d5:8a:df:13:03:fd:0a:73:
0d:fb:7d:99:79:de:de:72:25:64:e4:c0:a1:54:14:
60:5f:5e:28:7d:6b:04:0b:ac:6a:02:ea:b0:62:87:
bd:55:99:33:0b:e3:ff:7b:c9:e0:b9:f7:aa:ff:63:
ae:0c:df:52:7f:4a:bd:33:5b:17:ab:12:31:d1:34:
db:2e:50:09:af:74:7e:3e:49:70:20:d7:c3:9b:2d:
05:a6:26:9f:ed:82:e0:4b:49:18:80:64:95:45:2c:
f2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:60:E0:0C:E5:C1:29:BB:32:97:1D:F1:97:10:CE:BA:89:D3:9B:7A
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/k2DgDOXBKbsylx3xlxDOuonTm3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.111.0/24
Signature Algorithm: sha256WithRSAEncryption
09:f1:bc:9c:a8:c4:83:6e:1d:f8:4e:1c:e1:2e:0d:b7:24:a3:
64:64:13:f8:0c:c2:9c:26:d5:ae:fa:61:ee:71:02:37:66:04:
1d:b9:25:cb:30:e6:d8:49:73:e2:b1:33:02:8d:02:72:df:2e:
d0:aa:e7:11:f0:31:be:a6:f1:84:27:99:57:94:21:77:cc:47:
71:72:a3:3f:9c:2c:c4:ad:ce:0f:8b:7c:7b:32:3b:df:8d:f0:
33:a9:04:33:7a:cf:89:a8:01:14:70:c1:00:f3:86:bc:6d:b9:
b7:02:57:85:68:48:4e:71:6f:24:10:3e:b1:31:9b:ea:3b:08:
79:57:f1:32:49:6b:ce:8d:0e:a0:40:b4:32:fa:f4:f5:dd:92:
1d:0f:6d:82:5c:87:4b:06:a8:95:b4:18:dc:0b:2a:58:3f:6c:
7f:cf:0a:7a:d1:6a:a9:38:96:ea:45:c9:53:f2:76:ce:69:1d:
cd:f5:81:1e:b7:f3:97:b0:fb:70:16:37:2b:4c:07:32:39:05:
64:f4:c2:cc:51:e7:e1:e2:0f:e4:04:7e:e8:1e:6b:f0:a3:00:
28:5a:fe:d8:b4:c6:41:cf:87:fa:29:b2:28:6e:d4:f6:7b:9b:
c2:15:63:c2:49:63:00:86:56:ae:34:f9:dc:c1:93:84:dc:50:
35:9d:76:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-ams.rpki-client.org