Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/HGMtoF9TEKjZafRpGM-V74QYx_w.roa
File: HGMtoF9TEKjZafRpGM-V74QYx_w.roa (raw, json)
Hash identifier: +YBEFitVFBZ9Gcl6lJO4ckMQRJA90o2sWBsSHvHAOj4=
Subject key identifier: 1C:63:2D:A0:5F:53:10:A8:D9:69:F4:69:18:CF:95:EF:84:18:C7:FC
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01856D11DE143EAF475FBA58026F06CC9E50
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/HGMtoF9TEKjZafRpGM-V74QYx_w.roa
Signing time: Sun 01 Jan 2023 11:22:45 +0000
ROA not before: Sun 01 Jan 2023 11:22:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 89.23.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:11:de:14:3e:af:47:5f:ba:58:02:6f:06:cc:9e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 11:22:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c632da05f5310a8d969f46918cf95ef8418c7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:90:dd:2e:2c:4e:5f:44:f9:13:13:71:4f:06:
f9:92:82:51:d2:83:44:04:34:00:bc:78:43:27:78:
02:76:d1:36:da:df:3b:ca:27:49:dd:a1:75:05:70:
8a:35:b7:04:0e:43:bc:7a:90:68:b9:d6:37:8f:93:
60:7c:fb:7b:aa:fc:f5:59:31:98:31:12:35:26:06:
ee:93:0d:b4:4a:75:45:4c:c7:a9:1b:cb:87:d4:ee:
23:fb:f2:6c:46:b2:05:23:93:5d:db:61:d8:ed:f6:
18:a0:e0:ac:0b:da:cd:ad:50:13:d5:c8:db:62:ca:
7a:c9:ea:2e:aa:d2:39:ec:f2:81:bc:3d:09:ff:a1:
f8:0d:bd:c4:34:2e:20:c3:3d:28:3c:4e:6b:79:bf:
e5:d8:2b:30:9d:7a:7a:46:c3:1e:25:6e:85:3e:fa:
a0:e7:1a:3d:ce:b1:81:39:c9:12:8a:10:83:32:0c:
1b:6a:8f:07:e4:33:f1:1b:e0:8f:c3:b2:f1:21:4f:
3f:12:88:38:de:84:d6:b0:e3:00:2d:cd:4c:7e:70:
73:15:7f:69:ef:57:dd:88:85:ee:7b:7e:92:88:e4:
ea:47:9b:65:62:b1:33:30:e5:05:9c:0b:af:41:e0:
a3:18:03:da:b1:a8:64:6e:7d:8c:14:de:a4:40:e6:
df:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:63:2D:A0:5F:53:10:A8:D9:69:F4:69:18:CF:95:EF:84:18:C7:FC
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/HGMtoF9TEKjZafRpGM-V74QYx_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.76.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9a:98:17:59:37:f2:a4:ef:bf:7d:77:af:c7:38:21:e1:b2:
26:6d:a8:30:56:a8:a3:5c:04:d6:f4:2c:9d:ce:42:3f:f8:9d:
e4:19:78:37:30:5a:ab:0c:ce:64:c9:9f:39:a1:54:c4:b1:7f:
7b:49:9f:db:2a:f5:70:e9:7a:d6:e4:0c:63:42:07:ef:c3:6c:
53:9b:70:1c:ef:33:69:10:49:bc:9c:10:89:30:59:a0:ab:6a:
4a:0c:64:a1:a8:9f:7e:ee:6b:9e:17:13:21:56:e9:c8:0f:c3:
50:74:8d:3b:80:05:79:9a:74:78:8a:e1:07:c1:16:fb:c4:13:
fa:43:d3:37:1b:78:e5:6d:a6:5b:02:48:9b:ad:49:ba:7a:7f:
e9:d7:16:e5:0c:e7:4a:5d:73:1d:4a:ea:6d:14:71:ff:91:24:
a3:33:c9:03:d9:ec:44:97:94:9e:c3:85:de:be:d0:d6:22:1d:
f7:2d:b8:e5:1a:8f:9f:45:9c:85:34:3d:28:cd:29:b1:a6:39:
54:43:c3:c4:37:ea:40:b3:d0:5b:aa:ed:b0:f3:ad:5f:79:c9:
53:30:3b:bb:6c:82:d6:23:3c:28:64:a8:8e:3b:f3:32:c3:47:
85:4a:e9:9b:ec:a4:82:6c:06:f6:52:7b:94:f8:11:ab:ef:5d:
dd:b3:67:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtEd4UPq9HX7pYAm8GzJ5QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NGY4ZGFhZGYxZDc3NWQ1OWQxNTAyYjU3MzkwMWI4NzU1
MTNiNTYwHhcNMjMwMTAxMTEyMjQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzYzMmRhMDVmNTMxMGE4ZDk2OWY0NjkxOGNmOTVlZjg0MThjN2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpDdLixOX0T5ExNxTwb5koJR0oNE
BDQAvHhDJ3gCdtE22t87yidJ3aF1BXCKNbcEDkO8epBoudY3j5NgfPt7qvz1WTGY
MRI1Jgbukw20SnVFTMepG8uH1O4j+/JsRrIFI5Nd22HY7fYYoOCsC9rNrVAT1cjb
Ysp6yeouqtI57PKBvD0J/6H4Db3ENC4gwz0oPE5reb/l2CswnXp6RsMeJW6FPvqg
5xo9zrGBOckSihCDMgwbao8H5DPxG+CPw7LxIU8/Eog43oTWsOMALc1MfnBzFX9p
71fdiIXue36SiOTqR5tlYrEzMOUFnAuvQeCjGAPasahkbn2MFN6kQObfxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBxjLaBfUxCo2Wn0aRjPle+EGMf8MB8GA1UdIwQY
MBaAFHZPjarfHXddWdFQK1c5Abh1UTtWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGstTnF0OGRkMTFaMFZBclZ6a0J1SFZSTzFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC83YjkyYmYtMDExYi00NGE3LTgzODIt
YmZiMmI4ODE1ZTQ5LzEvSEdNdG9GOVRFS2paYWZScEdNLVY3NFFZeF93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC83YjkyYmYtMDExYi00NGE3LTgzODItYmZiMmI4ODE1ZTQ5
LzEvZGstTnF0OGRkMTFaMFZBclZ6a0J1SFZSTzFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRdMMA0G
CSqGSIb3DQEBCwUAA4IBAQCnmpgXWTfypO+/fXevxzgh4bImbagwVqijXATW9Cyd
zkI/+J3kGXg3MFqrDM5kyZ85oVTEsX97SZ/bKvVw6XrW5AxjQgfvw2xTm3Ac7zNp
EEm8nBCJMFmgq2pKDGShqJ9+7mueFxMhVunID8NQdI07gAV5mnR4iuEHwRb7xBP6
Q9M3G3jlbaZbAkibrUm6en/p1xblDOdKXXMdSuptFHH/kSSjM8kD2exEl5Sew4Xe
vtDWIh33LbjlGo+fRZyFND0ozSmxpjlUQ8PEN+pAs9Bbqu2w861feclTMDu7bILW
IzwoZKiOO/Myw0eFSumb7KSCbAb2UnuU+BGr713ds2fC
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:54 2023 by rpki-client on console-ams.rpki-client.org