Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/TRynJYO91T9A24MLaeEYnZHXWZs.roa
File: TRynJYO91T9A24MLaeEYnZHXWZs.roa (raw, json)
Hash identifier: 1KzFXck4fqqRMUUFHz01wDX/hSdadcH8tS/qzymiJb4=
Subject key identifier: 4D:1C:A7:25:83:BD:D5:3F:40:DB:83:0B:69:E1:18:9D:91:D7:59:9B
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0193B488782BA5BCE3458121F52DE2A0FE99
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/TRynJYO91T9A24MLaeEYnZHXWZs.roa
Signing time: Wed 11 Dec 2024 07:04:22 +0000
ROA not before: Wed 11 Dec 2024 07:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b4:88:78:2b:a5:bc:e3:45:81:21:f5:2d:e2:a0:fe:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Dec 11 07:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d1ca72583bdd53f40db830b69e1189d91d7599b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:15:46:d3:fb:ac:62:06:c2:01:1b:eb:a8:6d:
10:96:a6:ad:9b:fc:d0:ab:05:7d:79:07:b3:83:f6:
a0:c3:68:9e:2c:5f:35:e8:4c:f1:af:73:1d:2b:2f:
d9:8a:5a:a1:de:e0:9e:6f:e2:40:90:80:b3:a5:f2:
eb:79:0b:42:14:cd:62:da:4a:e8:a3:ed:5d:26:23:
2e:66:2c:ac:fa:f0:8c:c4:28:b2:94:9f:36:94:71:
e4:4f:e0:0e:60:31:b3:6a:b3:12:ea:46:05:86:97:
cd:55:52:64:27:c2:e8:25:f7:22:5b:f7:c3:c6:87:
3d:32:a2:2d:dc:2b:24:32:72:83:65:30:d6:b7:e6:
93:7d:25:73:1b:a0:3e:01:64:44:dd:b2:37:bc:b2:
4c:0b:87:b1:82:c8:e8:29:08:a2:72:4a:ab:b7:c6:
b6:69:ee:40:b1:b9:e9:cd:1a:1d:af:b1:c5:b1:1a:
f7:02:ce:9b:5b:7c:14:c3:ad:ef:9f:43:cc:df:fa:
89:d5:69:29:d3:b2:89:72:9b:cd:60:66:3e:50:1b:
b4:40:19:a2:36:43:3a:c8:1d:23:71:20:de:7f:3e:
56:2f:06:41:0b:cf:07:1e:a3:12:59:5f:08:94:d2:
8e:78:69:a9:97:70:a9:f4:fa:7a:e1:ed:a2:e4:d9:
7f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1C:A7:25:83:BD:D5:3F:40:DB:83:0B:69:E1:18:9D:91:D7:59:9B
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/TRynJYO91T9A24MLaeEYnZHXWZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:23:61:d3:8a:26:87:83:d5:f6:7a:49:b3:97:b0:b0:ab:ae:
00:16:bf:c9:07:48:86:57:c1:de:c9:64:b1:09:e9:ff:3b:07:
cd:d4:7a:cd:05:2b:a4:31:b0:ca:a7:e8:5b:f0:72:35:3e:b8:
e5:0c:26:c0:1f:9d:70:e6:ea:a2:99:f7:89:0c:6f:09:43:22:
ce:0b:a2:92:a2:be:9e:4f:75:dc:b8:86:4a:65:cc:57:8d:82:
65:25:02:ee:fa:5f:50:6a:2c:7f:e6:cd:44:05:07:5f:96:64:
2f:fc:6e:30:93:14:95:33:cb:9f:ce:49:fe:65:a7:de:59:c9:
7b:5e:61:68:8f:6c:ed:cd:14:03:a5:91:23:52:66:47:bf:90:
52:8b:04:a3:ec:63:cf:24:54:90:47:b9:56:bc:95:0d:02:0a:
56:3f:e1:f9:62:e5:1f:3b:b7:82:56:73:8c:ff:7c:06:0f:d3:
3c:10:30:4e:ac:33:72:7b:91:1b:c6:e2:95:a1:fc:a0:80:e4:
72:91:1f:c6:ab:c6:f8:d1:7d:35:b6:ed:9d:5f:08:3d:5e:fa:
d2:ac:85:9c:70:e4:f5:55:29:23:0d:4e:00:34:e1:ce:60:d8:
02:53:15:f5:f1:d0:38:46:68:54:3e:a9:42:93:a8:da:50:b8:
b6:5d:16:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:49 2024 by rpki-client on console.sobornost.net