Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/J8OWt2R4Tqo8QDxuUlJnLc7q02s.roa
File: J8OWt2R4Tqo8QDxuUlJnLc7q02s.roa (raw, json)
Hash identifier: ukGcgr+XRmrRNAhUWyP9VFFlS3YD5+ioZGpvzDWid2w=
Subject key identifier: 27:C3:96:B7:64:78:4E:AA:3C:40:3C:6E:52:52:67:2D:CE:EA:D3:6B
Certificate issuer: /CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Certificate serial: 018723A56C993FAD7D4139B4BE1DA296615E
Authority key identifier: C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/J8OWt2R4Tqo8QDxuUlJnLc7q02s.roa
Signing time: Mon 27 Mar 2023 15:17:36 +0000
ROA not before: Mon 27 Mar 2023 15:17:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 89.42.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:a5:6c:99:3f:ad:7d:41:39:b4:be:1d:a2:96:61:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c518644ac461ddd2cf4bc5ad5c2b4262535c38c8
Validity
Not Before: Mar 27 15:17:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27c396b764784eaa3c403c6e5252672dceead36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:00:ed:32:a7:c3:d0:6b:92:36:59:26:e2:1e:
90:4f:75:ff:80:2f:b9:7c:cf:0e:66:4b:64:22:09:
b9:0a:ac:88:84:d4:0a:4a:54:74:59:fe:cc:98:60:
01:22:d2:dc:8e:b0:0d:05:5b:d5:cb:95:a9:a5:65:
56:e8:14:e7:b1:71:41:2d:11:c7:ba:a8:94:ae:f6:
03:2e:65:b6:b5:bb:4e:77:fa:97:3f:8f:32:36:de:
b1:f4:e1:c3:46:1e:d0:37:fe:fe:e3:42:53:7d:e3:
85:ad:76:6b:d9:82:f8:ea:70:ec:32:45:b6:3f:36:
7d:98:5d:bb:b2:8f:39:8c:21:2c:12:87:5d:e4:ee:
e2:4c:46:82:0c:98:af:36:3d:1e:bc:ac:92:a9:5f:
40:7d:52:25:1f:a8:2a:6c:89:c2:f5:4d:be:47:de:
f0:1c:95:59:ca:fc:f7:7b:ee:84:a1:65:a2:b5:a9:
0c:e6:d4:c4:15:76:57:6c:15:1e:3c:5e:80:72:a0:
47:88:47:3b:d2:cd:26:9b:eb:ad:03:c7:0b:94:07:
e6:02:a4:3d:a6:2a:e2:5e:11:a2:20:5a:a8:af:5b:
08:e7:23:79:93:7d:07:ab:de:70:76:dd:b6:db:7c:
3f:e9:ed:87:16:fd:bc:f1:34:73:be:4e:85:40:3e:
ce:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C3:96:B7:64:78:4E:AA:3C:40:3C:6E:52:52:67:2D:CE:EA:D3:6B
X509v3 Authority Key Identifier:
keyid:C5:18:64:4A:C4:61:DD:D2:CF:4B:C5:AD:5C:2B:42:62:53:5C:38:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRhkSsRh3dLPS8WtXCtCYlNcOMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/J8OWt2R4Tqo8QDxuUlJnLc7q02s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1df875-2a23-4fe8-b1f0-cebded36f878/1/xRhkSsRh3dLPS8WtXCtCYlNcOMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.111.0/24
Signature Algorithm: sha256WithRSAEncryption
85:84:0c:c1:0b:ea:1e:2a:90:05:45:a2:1c:e8:47:3c:f0:9c:
ea:f6:8b:60:0d:4b:5f:fe:db:bf:b5:78:9d:37:f4:12:f8:47:
ce:6f:33:77:bd:43:b6:3a:af:68:f9:76:da:a6:4a:45:e4:8e:
7a:b0:68:3b:72:3e:e5:37:5a:7b:19:58:f7:92:46:d5:17:30:
2d:9e:68:8f:e5:1a:4b:e3:12:ac:fd:69:8e:f7:ad:28:70:52:
4b:05:26:f0:34:ce:8e:fc:8e:5e:0b:5e:39:64:4b:36:e1:c8:
3d:16:5d:4b:c9:e2:e4:dd:5f:18:cb:bc:b2:33:2b:85:64:a0:
5e:71:24:2e:0a:39:0c:a6:9a:8d:e7:e7:d0:7f:57:21:43:74:
47:1d:8e:16:dd:14:f4:97:90:2e:c6:b7:72:fe:68:3c:93:05:
a3:ba:e4:49:6e:1d:ca:75:c4:10:9b:31:b1:d2:82:13:35:73:
73:88:8e:ae:4e:33:5b:d3:d7:70:ad:72:c0:72:7c:27:ef:06:
85:97:c3:7a:aa:66:48:48:0d:a4:26:fc:11:4b:72:04:0c:d4:
05:d1:fd:7e:95:ee:23:4b:7d:70:6e:8b:da:8e:e5:f1:38:52:
5b:55:f9:15:5e:62:a4:09:9f:2f:70:52:7c:b5:df:3e:80:67:
66:33:4c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org