Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/BfqCzY9K16_0bm9-SjtYDze4o1g.roa
File: BfqCzY9K16_0bm9-SjtYDze4o1g.roa (raw, json)
Hash identifier: uX/WKYhJSzQnfImzL6FHfdmw0DWHJMIXPKPkrUMxKuc=
Subject key identifier: 05:FA:82:CD:8F:4A:D7:AF:F4:6E:6F:7E:4A:3B:58:0F:37:B8:A3:58
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01878132C7B539DE2CD23865E9F29FE19756
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/BfqCzY9K16_0bm9-SjtYDze4o1g.roa
Signing time: Fri 14 Apr 2023 19:16:41 +0000
ROA not before: Fri 14 Apr 2023 19:16:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.23.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:32:c7:b5:39:de:2c:d2:38:65:e9:f2:9f:e1:97:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Apr 14 19:16:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05fa82cd8f4ad7aff46e6f7e4a3b580f37b8a358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:07:8e:22:8d:53:90:85:a9:5f:ec:d2:65:5c:
3a:e5:e5:38:b6:7e:51:10:a7:75:c9:29:a4:3e:c6:
78:86:ea:ed:ee:aa:25:fb:04:95:3c:19:9f:00:7e:
10:33:9d:6d:81:35:93:6f:61:aa:3c:2c:b6:38:f3:
48:77:7b:57:bb:bb:07:e1:5f:a1:42:44:a2:5d:79:
31:d9:a6:cd:de:3a:2a:3f:69:7e:d8:a4:cc:fd:ad:
7e:a6:4c:a0:de:ae:8e:2c:45:47:89:34:18:29:9d:
f7:ff:6e:f6:91:6e:b6:b5:5a:04:3d:30:56:58:16:
27:7b:09:29:24:99:8d:0d:02:6c:05:59:fd:c7:2c:
f2:75:f5:2b:48:6f:52:23:83:de:8a:08:0c:b9:92:
ce:ff:31:47:72:7a:b7:03:24:2d:d6:51:e4:66:9f:
77:0c:a0:a4:54:7a:41:40:3b:ee:da:7b:bc:23:a5:
e2:50:58:7b:d3:96:d6:9a:ab:27:48:7c:fb:33:92:
81:4c:9f:e1:0b:a7:b1:8a:34:dc:6f:43:5e:48:77:
3e:3a:ba:78:41:3a:55:ee:41:69:b3:c8:55:07:e7:
fa:07:6a:76:89:55:34:3e:a7:40:8e:cc:99:20:2b:
34:87:ca:bb:a0:db:be:05:a7:c2:1b:cd:e2:18:58:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FA:82:CD:8F:4A:D7:AF:F4:6E:6F:7E:4A:3B:58:0F:37:B8:A3:58
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/BfqCzY9K16_0bm9-SjtYDze4o1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.90.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f6:cf:81:cf:e3:5d:d4:e7:18:ce:50:3e:1d:91:99:75:f1:
26:f4:09:15:bb:fc:cd:61:35:11:fe:83:14:8a:da:f0:1c:13:
56:f0:c9:06:f6:2e:72:b0:27:37:d4:d5:9a:8d:1f:3b:03:af:
72:6a:c7:a8:e0:68:9f:36:56:c0:70:e0:5e:36:02:a2:43:75:
d8:f4:26:5a:ef:3b:90:7e:b0:20:59:b1:8d:9a:fd:a5:00:d2:
28:13:d3:72:eb:05:8d:73:63:d8:fe:c4:83:93:93:84:ba:d5:
07:e6:6a:b2:fd:ac:ed:f3:d2:36:13:a2:b1:34:01:6d:2a:0e:
55:16:19:7c:ef:3e:48:d4:07:57:d1:7e:58:58:b6:4a:74:08:
56:95:28:aa:00:06:6f:b2:4f:f8:38:69:1d:2a:dd:ec:c2:04:
fc:a9:22:6b:8f:5f:02:95:84:e5:4c:fc:fd:55:63:62:9b:18:
6c:d9:8a:bb:80:f3:ae:4c:a7:a6:a3:30:a0:e9:46:17:fa:ac:
36:56:12:a4:80:57:8d:a7:3e:2a:80:16:cb:0c:12:a7:68:94:
1b:0f:8f:9b:12:e1:9e:e0:5e:83:41:fe:96:3e:ba:24:5e:c5:
63:02:11:4a:fc:65:35:c1:29:f8:8c:52:ef:2e:cd:82:9f:41:
3f:57:92:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:45:13 2025 by rpki-client