Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mnC4nfK5nG0G_cnkvCTxD5WcNFI.roa
File: mnC4nfK5nG0G_cnkvCTxD5WcNFI.roa (raw, json)
Hash identifier: 5XBcy+umxlGGHN+VLw1EwispZedxeOH6KbzjiaUVAAU=
Subject key identifier: 9A:70:B8:9D:F2:B9:9C:6D:06:FD:C9:E4:BC:24:F1:0F:95:9C:34:52
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 084FF91C
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mnC4nfK5nG0G_cnkvCTxD5WcNFI.roa
Signing time: Sat 01 Jan 2022 00:51:24 +0000
ROA not before: Sat 01 Jan 2022 00:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46573
IP address blocks: 89.116.198.0/24 maxlen: 24
86.38.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139458844 (0x84ff91c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jan 1 00:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a70b89df2b99c6d06fdc9e4bc24f10f959c3452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:c0:c4:8f:06:b9:84:18:6c:22:68:bc:9c:
86:ee:d9:2b:e6:1c:ec:96:9a:02:64:a6:3d:ab:ab:
17:bc:5d:48:6a:a6:28:58:cc:1d:e0:e5:a2:8e:30:
98:af:c5:22:02:72:27:62:d5:91:cf:11:7e:f3:31:
23:2e:00:7c:8a:2e:23:cb:60:24:69:ac:40:3a:f3:
2d:9c:b5:39:93:81:73:3f:5f:70:09:8c:83:12:9e:
83:bb:2b:9d:1d:94:e4:b4:67:09:85:a4:e1:99:fd:
ad:09:8e:c8:39:31:cd:99:3d:35:0d:f0:50:82:8a:
a3:85:12:2d:5a:04:e2:6d:a6:7e:60:16:fd:6d:b4:
53:76:30:10:a7:d3:05:5f:62:e6:c6:5d:c6:47:c7:
80:7f:59:f8:3b:e8:9f:1d:ae:89:1c:78:f6:df:a2:
1f:23:af:33:b1:ba:85:6b:53:77:e0:29:47:61:9e:
88:a2:42:4c:f3:e9:f5:92:a3:4b:77:71:7e:83:74:
c8:07:a1:2a:6e:1f:d6:ce:a9:bf:52:3a:c1:da:32:
9f:47:b3:94:0c:4b:ef:91:9b:2c:b9:3a:56:a0:7a:
10:e2:3c:79:86:84:fc:ac:7c:be:a9:ce:50:57:e9:
9c:ca:a7:80:bf:c2:22:34:06:ae:53:5e:ee:2c:87:
e3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:70:B8:9D:F2:B9:9C:6D:06:FD:C9:E4:BC:24:F1:0F:95:9C:34:52
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/mnC4nfK5nG0G_cnkvCTxD5WcNFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.24.0/24
89.116.198.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:91:45:58:f6:fb:33:8c:aa:bb:b3:e6:fc:b9:38:73:64:20:
d6:e7:9d:56:a6:fa:51:63:c4:2e:9a:d7:a2:bb:1d:77:ba:fb:
bc:35:60:10:27:9b:58:6b:bf:79:35:4b:72:f7:53:52:c3:e9:
23:26:39:66:e1:68:ef:c6:06:33:86:08:ed:7c:63:eb:95:2c:
dd:46:66:91:86:e0:17:b4:c9:06:d2:a4:3e:06:12:56:1f:7e:
b7:a8:f1:4d:14:05:c9:c9:4d:c0:7d:bb:96:c2:2c:a5:9d:9f:
8f:1d:a6:73:ed:f3:1c:0e:3f:ff:44:8c:c7:fc:20:db:c5:b7:
a6:9b:2a:68:4a:0c:aa:d6:bf:72:48:63:b3:12:4c:06:09:62:
3e:c0:d0:13:74:b9:be:b0:42:3b:9c:c5:0c:8d:b7:ed:82:ae:
f8:53:83:f9:2b:2f:93:4a:ce:ec:ca:d0:84:31:94:ae:38:9c:
9a:ae:da:67:31:46:f7:51:f8:95:2a:71:cd:4f:3e:0d:32:39:
02:87:d3:eb:8d:01:29:ad:03:53:af:83:38:cc:73:b1:0d:9c:
de:fb:a7:04:84:2e:69:e3:fc:ac:93:5e:96:cc:fa:7d:20:2e:
b6:56:7c:2f:5c:d6:2e:da:20:61:8b:14:53:b8:cf:00:09:4f:
d6:00:27:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org