Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/LBo45wyh6sk0wHtWcwAJobh8Rvc.roa
File: LBo45wyh6sk0wHtWcwAJobh8Rvc.roa (raw, json)
Hash identifier: suZuWCH0W3G170K5A8adHHjC8ykpMUhC8lUrXZIXTnk=
Subject key identifier: 2C:1A:38:E7:0C:A1:EA:C9:34:C0:7B:56:73:00:09:A1:B8:7C:46:F7
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01840AC7CEDA0593C96A058802F2200AFD67
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/LBo45wyh6sk0wHtWcwAJobh8Rvc.roa
Signing time: Mon 24 Oct 2022 16:16:17 +0000
ROA not before: Mon 24 Oct 2022 16:16:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 89.23.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0a:c7:ce:da:05:93:c9:6a:05:88:02:f2:20:0a:fd:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Oct 24 16:16:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c1a38e70ca1eac934c07b56730009a1b87c46f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:96:33:2e:a1:84:89:11:57:32:00:1c:b3:f7:
2f:c6:63:e3:46:ba:0d:31:25:16:3f:9d:23:2f:b0:
0e:9c:cd:94:7e:54:bf:84:b2:cb:e0:59:92:df:53:
e6:ca:7d:55:f0:fe:ec:31:e1:c4:0f:b7:f3:49:41:
24:3a:13:31:dd:6e:b2:5f:fe:c5:d4:1e:e6:89:25:
8a:47:da:63:2f:d3:8b:c3:e9:31:ec:78:f9:ac:aa:
96:c8:83:53:bb:95:59:9f:0f:88:60:db:93:5e:d0:
43:a2:f9:13:0c:94:09:83:3c:68:1f:15:3f:2f:b5:
a5:06:64:c0:71:74:49:54:d5:15:71:6c:ac:c4:a2:
90:74:22:70:11:e8:1b:ac:3e:52:74:7f:66:68:3e:
99:43:45:34:a0:85:70:e6:74:18:b4:f5:16:fe:39:
d6:e6:80:9f:76:d4:cc:74:ca:c6:81:f2:06:78:da:
60:c6:0c:60:0d:41:94:2e:0e:1a:7a:35:4b:a9:9e:
92:26:8a:0e:f3:70:f1:24:5a:b9:4d:4f:28:ca:40:
1a:2d:7b:d0:8f:81:bb:42:e5:85:83:b0:18:1a:05:
b9:3a:7f:71:d6:91:e0:fc:e6:46:12:e9:af:93:9b:
99:69:52:0a:f0:35:cf:7b:7c:68:35:e3:69:32:1f:
44:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1A:38:E7:0C:A1:EA:C9:34:C0:7B:56:73:00:09:A1:B8:7C:46:F7
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/LBo45wyh6sk0wHtWcwAJobh8Rvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.84.0/24
Signature Algorithm: sha256WithRSAEncryption
81:36:89:d9:43:fd:0c:e0:0e:a0:25:84:cb:17:f9:c6:84:a9:
6e:c6:cb:b1:d0:06:81:f6:12:50:a2:dc:21:f7:49:a4:58:3c:
5e:87:66:e8:ca:00:c4:da:62:b2:a1:b0:a5:cc:5a:e2:9a:45:
48:ea:fb:b8:c1:65:7c:6f:16:75:0a:82:52:24:80:4f:53:e5:
14:50:fc:7e:5a:9c:73:52:06:b2:f0:57:d6:0c:0b:2b:f8:2b:
a5:e7:bb:6c:8d:bf:60:df:b6:1c:a1:69:9c:8b:36:b0:f0:8f:
a5:62:43:57:57:0f:2b:69:70:ee:0a:00:6c:23:4b:bc:0d:72:
c0:31:a7:f0:1a:9a:fa:85:30:a5:f7:4f:ad:dd:d4:8a:32:9f:
73:0d:69:d7:91:79:c5:5b:1e:49:2d:2e:eb:7e:bb:fe:62:01:
eb:15:c5:65:86:e9:8a:1f:84:9f:24:88:c7:e8:c4:ff:60:53:
75:ae:51:b4:fd:70:14:e0:c5:d9:f8:34:8e:25:be:ab:49:ff:
72:2d:17:5c:4b:7f:67:81:75:5e:90:48:e7:d9:57:fc:da:25:
e9:a0:c0:56:8b:0e:8d:62:84:22:9d:6c:8c:1f:e4:57:4a:9c:
80:d1:5c:8e:b2:ba:5f:1a:39:ab:4b:e1:78:1d:73:a5:81:22:
62:e3:48:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:13:23 2025 by rpki-client