Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/sznTMrSqvpV9CMMsBjzdhxU0Zus.roa
File: sznTMrSqvpV9CMMsBjzdhxU0Zus.roa (raw, json)
Hash identifier: PpVNxDe9Yjgt2znUaR+DNp8W26M4mh4X62LqP2QVCGU=
Subject key identifier: B3:39:D3:32:B4:AA:BE:95:7D:08:C3:2C:06:3C:DD:87:15:34:66:EB
Certificate issuer: /CN=5ab4349405298585f1efcb658537618f25d4335e
Certificate serial: 01882086BA190C5EE8EEDAD8A2D11AF9224F
Authority key identifier: 5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/sznTMrSqvpV9CMMsBjzdhxU0Zus.roa
Signing time: Mon 15 May 2023 17:48:00 +0000
ROA not before: Mon 15 May 2023 17:48:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 89.107.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:ba:19:0c:5e:e8:ee:da:d8:a2:d1:1a:f9:22:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab4349405298585f1efcb658537618f25d4335e
Validity
Not Before: May 15 17:48:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b339d332b4aabe957d08c32c063cdd87153466eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:db:1e:ec:22:51:5e:1b:fc:2f:9d:94:80:c3:
ae:53:f1:82:87:db:e9:6f:59:b7:bb:37:03:31:7b:
cf:b2:dc:14:47:9f:0e:47:23:9f:a3:6e:87:72:04:
94:f1:d2:1d:29:bc:4a:9c:30:87:ee:8e:c8:cc:4b:
b9:e0:01:0c:5b:c4:d1:cb:bf:f6:3e:b0:d8:86:4e:
78:0e:88:f3:e1:c4:7a:1f:95:72:52:4a:21:05:21:
99:91:7c:1d:d1:90:cd:8d:80:51:f2:14:a2:da:25:
dd:fb:6d:9f:53:06:85:0d:4a:a6:d7:df:e9:7b:16:
b0:df:a1:0a:b0:cf:39:bd:44:23:d3:0f:a6:82:cd:
67:c4:6e:4c:37:31:c1:ef:b2:59:78:4f:12:83:9d:
83:af:c8:e6:0f:39:27:ca:7a:a8:69:ee:83:e0:27:
12:4c:72:e6:bc:38:f8:c2:7b:8d:97:d6:5c:db:5d:
72:96:4d:6f:ac:24:51:dc:a9:a0:e4:cb:2c:d5:3a:
2e:37:18:b7:48:49:ba:28:c3:be:3e:ea:f2:2a:9f:
59:3f:4e:ca:b4:b2:77:75:b4:d4:56:44:4c:8b:c6:
e8:b2:f4:47:bb:82:0b:d0:60:72:a0:e2:88:c5:84:
d4:b4:f9:5e:e6:27:7b:ad:ef:be:b7:28:ee:7b:64:
11:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:39:D3:32:B4:AA:BE:95:7D:08:C3:2C:06:3C:DD:87:15:34:66:EB
X509v3 Authority Key Identifier:
keyid:5A:B4:34:94:05:29:85:85:F1:EF:CB:65:85:37:61:8F:25:D4:33:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrQ0lAUphYXx78tlhTdhjyXUM14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/sznTMrSqvpV9CMMsBjzdhxU0Zus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6127a6-206e-4606-9960-b394088444d8/1/WrQ0lAUphYXx78tlhTdhjyXUM14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:07:93:4a:a3:02:db:2b:76:ec:c1:2b:93:17:e6:e9:c3:c4:
13:0f:09:f3:3b:1e:7b:db:95:ac:4d:9a:16:01:0e:37:b3:16:
64:41:47:2c:68:97:6e:ac:bb:77:f7:3d:7f:c2:56:41:f8:0f:
c7:2a:09:47:4b:3d:0b:5c:6e:d5:dd:26:2d:39:a7:98:ed:2e:
ad:b8:af:5a:92:1e:6f:d4:3d:41:d5:c6:ea:1d:38:4d:af:ef:
93:8d:e9:28:d2:f8:6d:b5:0c:2e:6c:ff:ea:b3:66:e4:0b:7a:
27:50:3a:7c:ee:32:6c:59:0a:32:6b:2a:df:e1:c1:13:2b:a3:
04:74:5e:cb:5f:55:cb:74:1d:9d:69:e5:ef:8c:34:a3:c8:50:
4c:21:20:36:d8:f7:17:02:97:e2:f9:c3:f3:6a:34:f9:cb:77:
5b:4d:e4:be:5d:27:29:90:83:91:45:24:0c:26:51:de:87:78:
72:55:c3:0c:ca:f8:15:90:28:3b:c7:58:28:4e:d9:26:15:9a:
d9:7f:13:1c:16:94:55:63:32:a8:b4:cd:e1:e9:51:37:51:00:
b1:bd:d8:e0:5c:35:e5:ac:ef:7a:99:75:57:6a:c7:23:4d:78:
de:c6:d2:81:95:56:6a:b3:ff:1f:a9:41:b6:28:9c:58:27:ae:
70:81:ac:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:58 2024 by rpki-client on console-fra.rpki-client.org