Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/nKT9XI9b3pmk4RAQ5P1QkTkDjSc.roa
File: nKT9XI9b3pmk4RAQ5P1QkTkDjSc.roa (raw, json)
Hash identifier: +AZJMhUZyx8p2jpkNV5QTpY9K9bm6gTtVAcpzHciKjQ=
Subject key identifier: 9C:A4:FD:5C:8F:5B:DE:99:A4:E1:10:10:E4:FD:50:91:39:03:8D:27
Certificate issuer: /CN=5c412f72ea7410581906488ba77db7b82267e4aa
Certificate serial: 018B1B80EB6E2C6A9B94B8AEA6975598E004
Authority key identifier: 5C:41:2F:72:EA:74:10:58:19:06:48:8B:A7:7D:B7:B8:22:67:E4:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEEvcup0EFgZBkiLp323uCJn5Ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/nKT9XI9b3pmk4RAQ5P1QkTkDjSc.roa
Signing time: Tue 10 Oct 2023 21:31:55 +0000
ROA not before: Tue 10 Oct 2023 21:31:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 89.106.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1b:80:eb:6e:2c:6a:9b:94:b8:ae:a6:97:55:98:e0:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c412f72ea7410581906488ba77db7b82267e4aa
Validity
Not Before: Oct 10 21:31:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ca4fd5c8f5bde99a4e11010e4fd509139038d27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:36:a4:cb:ec:c9:14:43:40:92:35:7f:02:b5:
fc:c2:e4:bd:8a:0a:33:5c:ce:48:c0:74:3f:a1:5e:
40:fc:b5:b8:b3:65:3b:6a:c3:e0:ff:3e:57:95:13:
89:4a:62:76:df:d3:6c:c3:28:99:02:b7:d8:48:1f:
e6:c8:32:2c:45:66:39:c8:a2:23:4a:f2:b1:95:f3:
6e:48:91:d7:4f:11:ec:17:76:66:ed:36:28:75:68:
16:71:e9:0f:a3:76:7f:60:0c:b7:26:aa:6d:f6:50:
03:81:f2:73:ac:25:e8:d8:dc:cd:ce:93:7c:1b:77:
b5:33:8b:86:a7:e0:5d:25:0d:0d:15:af:44:45:3b:
1c:9a:6c:a6:7d:c1:a8:5f:75:3e:ce:72:bd:58:00:
b7:f3:9d:36:9e:da:78:a7:05:9d:2e:fa:67:18:58:
34:06:fe:81:9a:ae:3e:01:0e:01:b2:49:6c:0f:12:
df:98:f3:41:75:68:73:f6:a9:fc:bc:c3:59:ad:a4:
86:0f:cf:23:e3:e5:bf:5e:7c:18:ad:27:42:da:fe:
de:d9:32:98:e8:67:b8:a1:e7:71:37:1d:9b:f8:78:
3b:09:64:d7:5c:d6:e2:38:10:ff:43:25:98:ec:13:
86:d6:45:99:92:68:85:b7:37:68:89:88:6e:f3:f4:
35:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A4:FD:5C:8F:5B:DE:99:A4:E1:10:10:E4:FD:50:91:39:03:8D:27
X509v3 Authority Key Identifier:
keyid:5C:41:2F:72:EA:74:10:58:19:06:48:8B:A7:7D:B7:B8:22:67:E4:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEEvcup0EFgZBkiLp323uCJn5Ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/nKT9XI9b3pmk4RAQ5P1QkTkDjSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7a3b1c-8001-46b8-a335-d3a096a5eb2f/1/XEEvcup0EFgZBkiLp323uCJn5Ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.202.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d3:46:f0:1c:fd:7c:2e:03:10:04:d0:0b:cd:82:db:78:d9:
a7:4f:b9:2d:b4:6e:7d:b0:ea:f7:ab:aa:71:0d:d9:e2:13:b7:
ae:55:3f:87:01:42:bd:2e:c1:3d:24:2b:8b:74:10:75:01:7d:
48:ec:39:59:91:d8:0f:2d:54:fb:b6:57:a0:36:0d:76:9a:74:
83:df:f9:f5:89:45:e2:a9:17:4c:1e:c2:16:b2:33:bf:95:71:
69:28:cb:42:3a:e1:77:53:c0:8b:dc:15:8c:29:15:80:d8:9e:
3a:e5:a5:45:10:44:b1:56:99:82:0c:44:d0:6a:34:5c:4a:d1:
50:6c:f3:48:36:f5:4c:6b:92:99:5d:23:0f:24:9c:90:5a:eb:
b7:1a:d2:dd:9e:dd:43:0f:61:e4:73:9c:54:2e:8a:48:eb:8b:
a6:ee:18:e2:48:05:ac:35:f0:4a:5a:ae:70:0b:fb:17:9a:7e:
13:78:87:f6:e6:e8:7c:18:6f:08:38:bd:2f:f3:16:2d:e7:19:
64:9c:43:0e:c3:fa:e3:d1:46:ea:bc:22:4a:76:d6:1f:55:b7:
d5:fd:3d:01:d6:81:59:e7:33:ec:59:af:b3:fc:c4:45:a6:dc:
bd:e5:ef:da:f1:d9:4e:2b:75:0d:8f:66:cc:8d:df:d3:f8:f2:
9f:a5:1b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org