Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kBp97GVUSrt-ht_wknPIh9ZT8PU.roa
File: kBp97GVUSrt-ht_wknPIh9ZT8PU.roa (raw, json)
Hash identifier: Fmpx0DemiXj7/65yTpN+ksfVJBoHPksbHuZjS36dYW8=
Subject key identifier: 90:1A:7D:EC:65:54:4A:BB:7E:86:DF:F0:92:73:C8:87:D6:53:F0:F5
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27D2D3CE559DE20E7E1A87B37E1297
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kBp97GVUSrt-ht_wknPIh9ZT8PU.roa
Signing time: Fri 28 Oct 2022 10:33:57 +0000
ROA not before: Fri 28 Oct 2022 10:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139660
IP address blocks: 89.116.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:d2:d3:ce:55:9d:e2:0e:7e:1a:87:b3:7e:12:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=901a7dec65544abb7e86dff09273c887d653f0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:52:9a:ea:65:d6:ab:07:06:91:4f:9b:06:5c:
f1:4d:ab:ad:60:a0:d5:7b:08:88:0b:99:c3:e5:67:
d3:0d:df:f8:93:f4:b5:88:44:af:d5:5c:e0:70:06:
86:77:b5:cf:3c:93:de:5e:6b:c3:6f:65:90:3b:9f:
71:03:70:84:eb:fc:7b:d2:9e:ba:07:ae:53:e5:aa:
12:2d:2f:ee:a7:5d:94:33:98:4c:82:e8:b3:da:e5:
ed:16:31:15:6f:81:b5:a3:2b:4a:ff:ea:f2:43:ce:
45:f0:90:31:cb:35:92:4c:e1:eb:1f:68:59:6c:fc:
30:36:b1:1a:16:d7:82:0b:1b:f1:74:81:00:95:70:
b5:c1:7c:d1:75:04:c2:aa:1b:75:7b:ca:a2:46:12:
18:dd:ec:03:20:6a:7d:d3:d8:52:3a:73:49:86:97:
cb:af:47:81:54:78:92:a9:d6:7b:c7:d1:ba:8a:f8:
0e:0f:a3:30:dd:9f:4d:a8:df:ef:fc:72:1f:6a:64:
25:02:ff:a7:0e:80:b1:15:39:c2:b5:bc:2a:66:e8:
0e:2c:a1:ca:3e:67:30:59:c4:c9:fe:85:2b:90:45:
63:0e:99:98:c4:11:09:64:95:e0:92:a0:e5:1c:ad:
74:76:04:cc:19:3a:4f:ce:c3:8e:86:c5:d3:7a:7c:
fc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:1A:7D:EC:65:54:4A:BB:7E:86:DF:F0:92:73:C8:87:D6:53:F0:F5
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/kBp97GVUSrt-ht_wknPIh9ZT8PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.218.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7e:8d:b3:e3:5c:df:d4:63:b7:a8:88:c9:14:7b:ff:00:83:
20:73:a8:40:ab:1e:99:5d:e1:57:bb:cf:ce:a5:60:b2:42:f0:
55:99:f0:2f:cf:b4:66:a2:ab:30:0b:19:de:3b:0c:10:59:49:
9c:d9:1c:7a:81:f1:f8:28:35:60:76:47:e1:05:cc:dc:24:9d:
6e:3a:49:8d:3b:5a:41:9b:6e:52:69:8d:97:8a:89:7b:29:00:
fb:9d:5e:c9:c4:d2:e2:85:a1:4e:c1:5c:57:d2:9b:1e:28:c6:
24:b7:cc:ce:7e:5f:0d:7e:ee:9c:00:73:8f:dc:fc:7d:20:c6:
52:e0:a9:0e:ee:0b:57:f5:f8:b2:b8:1c:f0:89:aa:b6:49:b0:
8c:55:0e:5c:2f:59:d3:7f:c9:b4:c3:61:a1:3a:f9:f0:2b:10:
c3:40:71:3c:85:93:35:f8:2a:b4:ea:4b:35:82:f5:c6:f6:19:
b6:9e:be:86:0d:af:7c:bd:36:fa:c2:99:2f:a6:0b:f1:b5:09:
af:50:6d:3e:7f:3e:8f:68:c9:8e:d6:29:35:d3:5a:f5:50:ac:
22:6c:f8:04:5c:89:bc:32:81:d6:e4:5d:9e:dc:4d:a3:5c:3e:
3e:a5:66:e3:46:b4:d3:9e:b9:cb:fd:22:9a:98:21:b7:9d:6b:
bf:23:09:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:18 2024 by rpki-client on console-ams.rpki-client.org