Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJBxCCYnTaKKH7IMvFjgCDOw9zs.roa
File: dJBxCCYnTaKKH7IMvFjgCDOw9zs.roa (raw, json)
Hash identifier: Fe40lS1Qb457/b93k1fbiL5Bxyi9czIWv7Wn5ELx2tA=
Subject key identifier: 74:90:71:08:26:27:4D:A2:8A:1F:B2:0C:BC:58:E0:08:33:B0:F7:3B
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC795607B0DC9EC1B42DB4025F0CB2616
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJBxCCYnTaKKH7IMvFjgCDOw9zs.roa
Signing time: Tue 02 Jan 2024 00:31:44 +0000
ROA not before: Tue 02 Jan 2024 00:31:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60694
IP address blocks: 89.40.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:60:7b:0d:c9:ec:1b:42:db:40:25:f0:cb:26:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7490710826274da28a1fb20cbc58e00833b0f73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0a:96:28:a5:53:88:51:a2:46:a3:fb:5b:9c:
db:d2:12:29:8c:b3:0a:2a:af:a1:13:d0:cf:f1:a7:
bb:5a:72:7b:0e:74:a3:3a:bd:e5:ca:9e:85:3c:5b:
2c:4a:85:0b:65:e6:87:7d:c5:23:62:25:63:08:c0:
f2:64:0e:4c:d3:85:c0:e4:b4:42:cb:68:91:43:f6:
66:8d:df:d7:20:33:8b:3a:9c:05:c1:37:b0:90:6a:
da:fd:87:bf:85:80:71:3e:db:14:ea:94:89:10:82:
65:4b:89:48:aa:6e:34:bf:78:3b:95:d5:31:d9:5a:
9d:cd:9b:45:a3:d5:a4:7e:6f:45:0d:49:25:a7:58:
c6:14:8c:38:e6:2d:36:ed:d8:cc:40:a1:92:06:07:
17:6f:8c:84:b5:9b:7f:0a:91:d9:7a:b9:d5:6f:93:
ca:4e:12:1a:7f:74:04:9d:2b:a5:06:03:32:2b:ae:
1d:3e:fa:6d:8b:cd:16:16:5e:ca:0a:02:fa:ab:29:
28:87:ae:29:0a:f6:c3:ff:eb:a7:ab:b7:9e:b7:49:
8e:dd:35:25:00:1c:2b:8b:56:a8:e2:f0:c1:88:73:
ef:6a:bb:6c:4f:57:53:ef:86:22:0a:97:e9:ef:65:
8d:2c:5f:ca:6e:16:54:55:d4:42:e9:57:6a:26:1c:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:90:71:08:26:27:4D:A2:8A:1F:B2:0C:BC:58:E0:08:33:B0:F7:3B
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/dJBxCCYnTaKKH7IMvFjgCDOw9zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:d8:d3:77:af:5d:32:d9:19:b6:cb:0d:2e:d9:ab:6c:a5:16:
0b:bf:bf:0d:52:aa:ab:d8:af:a1:64:91:5e:74:ca:3c:97:ba:
a3:ea:00:21:84:84:ce:cf:76:3d:79:57:08:80:0e:30:19:e5:
f9:db:a6:d9:a0:7d:c0:0d:33:03:3a:08:56:c2:2c:e4:19:d3:
0d:95:27:9f:a3:94:9e:45:2e:b5:61:b7:50:65:64:ae:cc:91:
31:4f:b5:72:96:36:b1:4e:b6:f3:bb:88:82:5e:b5:0e:40:5b:
63:c8:f5:0d:4a:3e:a3:f3:be:2f:34:11:81:3d:88:15:1d:98:
49:2e:a8:e6:d1:4c:53:b5:ce:2f:ab:db:98:a5:e4:3c:f2:ba:
fb:0c:cb:79:51:42:8d:bb:01:90:e2:f7:9c:ba:5d:5c:55:0d:
7d:82:e9:01:f6:f2:f0:df:15:b7:e4:9a:6b:e2:c3:52:33:12:
c2:82:6c:e6:90:71:9d:b7:c9:21:fd:b6:18:f8:71:e4:b0:2d:
ec:1e:1b:9c:de:1c:f2:5a:22:1e:82:bb:9d:1f:d4:62:3b:9f:
f1:6e:ca:72:83:5a:e2:8c:67:1a:8e:67:f7:23:7a:04:16:da:
2e:01:67:c9:01:54:19:1a:59:d4:b9:f0:1c:af:23:c3:73:2a:
8e:2d:ca:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:06 2024 by rpki-client on console.sobornost.net