Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qsVvvgsty0IBAYiqrvtYoJbzzPY.roa
File: qsVvvgsty0IBAYiqrvtYoJbzzPY.roa (raw, json)
Hash identifier: 7rYE6go9ReOBwFTlSIe6JsOnpRoMhlUYfNUMTRB1GDU=
Subject key identifier: AA:C5:6F:BE:0B:2D:CB:42:01:01:88:AA:AE:FB:58:A0:96:F3:CC:F6
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0A0CBE55
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qsVvvgsty0IBAYiqrvtYoJbzzPY.roa
Signing time: Sun 27 Mar 2022 20:06:43 +0000
ROA not before: Sun 27 Mar 2022 20:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 89.116.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168607317 (0xa0cbe55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Mar 27 20:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aac56fbe0b2dcb42010188aaaefb58a096f3ccf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b2:79:d8:fb:c3:9f:64:56:74:2f:d7:72:09:
66:f1:e3:7d:b9:84:94:9d:c8:40:69:c2:51:35:08:
f9:19:ad:b7:a9:62:7d:d4:2c:3b:8f:91:fc:81:82:
e0:48:9d:f7:98:ce:f4:13:3a:28:ba:91:aa:a6:0c:
4b:e3:f9:2d:9a:e3:e0:fd:66:e3:03:7d:9c:5d:4e:
31:6e:10:5a:0e:5b:47:4a:d5:13:4c:e7:9f:c2:d9:
a9:fd:98:e5:fa:62:94:24:d9:3d:2b:79:8b:44:18:
d4:50:89:ad:63:0a:7b:a1:0c:6a:6b:5d:ff:37:50:
1a:c9:24:eb:6a:28:79:32:ca:cf:86:0b:71:62:d0:
e0:d8:3e:72:4f:3c:1b:3c:75:cc:23:47:70:4c:a0:
d8:8f:7c:db:dd:bc:0c:e5:4a:ba:ba:ed:b1:d3:37:
54:ab:f9:6e:18:17:4f:0a:83:d4:40:7b:ca:e7:97:
fe:96:f3:44:50:38:3e:8a:5c:0e:45:00:58:20:12:
c5:f5:ff:db:92:2a:9b:e5:f0:39:6c:ff:0b:01:c9:
71:d8:0c:4c:ee:b5:32:3a:69:45:1e:c4:64:df:c3:
b6:1b:c4:a1:17:20:86:de:cc:87:56:8a:2e:9b:08:
ca:47:1e:6d:ce:a5:16:41:64:eb:73:d4:b2:e7:d8:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C5:6F:BE:0B:2D:CB:42:01:01:88:AA:AE:FB:58:A0:96:F3:CC:F6
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qsVvvgsty0IBAYiqrvtYoJbzzPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.123.0/24
Signature Algorithm: sha256WithRSAEncryption
02:d6:4d:6d:88:ce:33:1a:1f:d2:a8:33:ca:70:39:00:f8:58:
e9:3c:7d:55:78:d9:4e:6a:83:39:c4:e0:47:65:93:13:04:e2:
7e:25:71:83:1b:4f:84:83:86:ae:26:55:00:bc:26:ff:7d:f5:
7a:4e:c7:00:d8:e5:3d:44:59:33:62:fc:71:a8:f5:4c:1d:1f:
e1:d3:e9:96:fe:f6:7d:ef:79:05:75:67:72:a2:19:1c:8b:56:
52:a7:16:8c:1f:72:75:56:b7:06:e2:31:cb:a9:62:91:b6:13:
91:7b:ce:9e:81:47:26:2a:cc:f2:56:8b:88:15:ea:14:5f:7f:
f5:00:d8:38:0c:7b:ff:62:21:af:ab:99:23:41:d6:fd:ac:7b:
c8:56:c7:a1:1a:4f:c0:a5:bc:5a:db:59:e2:95:05:57:eb:b2:
e6:22:30:a5:0b:6b:02:41:4b:0d:eb:da:45:a0:e5:d1:cf:b9:
59:50:53:1f:ba:18:2a:09:ff:92:61:53:c3:f0:a0:a2:dd:d1:
31:0a:f4:59:20:ad:1f:21:ad:4d:6e:b4:01:bc:d9:3e:26:11:
8e:bf:32:50:f4:e5:56:5c:4c:8d:3b:f5:b4:1c:24:f3:2f:fe:
26:79:f4:50:8d:06:0d:db:9d:30:19:85:7b:d2:49:fa:cd:76:
c4:da:f3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:18 2025 by rpki-client