Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/ITBDHg-QRS0EDgqUlJBGXCU61_E.roa
File: ITBDHg-QRS0EDgqUlJBGXCU61_E.roa (raw, json)
Hash identifier: 3P3xTZvKOWsDgqWS+NLcdsD66uTJOVU+kfRP10IKlpg=
Subject key identifier: 21:30:43:1E:0F:90:45:2D:04:0E:0A:94:94:90:46:5C:25:3A:D7:F1
Certificate issuer: /CN=8cbe6bd758b24bebae2e4a51a5544cfad7ed314a
Certificate serial: 01856D01BB1F26B592B4F239BD2C55840033
Authority key identifier: 8C:BE:6B:D7:58:B2:4B:EB:AE:2E:4A:51:A5:54:4C:FA:D7:ED:31:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jL5r11iyS-uuLkpRpVRM-tftMUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/ITBDHg-QRS0EDgqUlJBGXCU61_E.roa
Signing time: Sun 01 Jan 2023 11:05:08 +0000
ROA not before: Sun 01 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48408
IP address blocks: 109.233.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:bb:1f:26:b5:92:b4:f2:39:bd:2c:55:84:00:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cbe6bd758b24bebae2e4a51a5544cfad7ed314a
Validity
Not Before: Jan 1 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2130431e0f90452d040e0a949490465c253ad7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:b9:4d:95:4f:2b:cd:32:c8:88:ef:d6:35:
70:9e:2d:5b:5f:80:d2:d6:a2:bf:42:c1:8a:c9:7e:
75:c6:8e:cd:9b:b9:70:10:22:8c:27:08:82:29:ac:
fa:2b:39:cc:5b:38:a6:bc:d2:38:37:17:b5:02:52:
69:70:24:8b:fb:1e:f6:6e:ae:6e:9f:a7:18:ac:77:
a6:f1:a0:1e:41:6e:a3:dc:40:20:28:37:3d:63:3c:
3a:d5:20:87:a2:d7:6b:71:f3:fb:b0:90:61:eb:cc:
b1:16:be:ea:fb:0b:e4:e4:9f:ee:93:7b:b3:c8:30:
45:70:cd:d2:02:ec:65:08:8c:3b:6c:84:87:c2:2a:
5c:1d:76:c8:f7:03:9f:35:29:b7:85:79:4e:a9:1d:
09:9f:b1:a1:3e:02:aa:ef:0f:b9:ef:b6:3c:77:66:
75:ff:a8:d6:0b:f8:95:95:62:62:71:e7:aa:b3:39:
ae:83:cf:3a:64:39:7a:a7:74:e1:ad:6c:64:4a:fc:
25:7d:29:97:f1:dc:5f:fe:e9:e7:36:64:f1:9e:70:
ce:fa:bf:53:46:5a:96:cd:24:12:25:1d:68:02:8e:
5c:06:6a:cd:73:5f:02:d8:a7:d2:9e:ea:ee:1e:6b:
15:53:93:82:5a:f0:f4:34:fa:55:19:8e:98:bc:d4:
f1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:30:43:1E:0F:90:45:2D:04:0E:0A:94:94:90:46:5C:25:3A:D7:F1
X509v3 Authority Key Identifier:
keyid:8C:BE:6B:D7:58:B2:4B:EB:AE:2E:4A:51:A5:54:4C:FA:D7:ED:31:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jL5r11iyS-uuLkpRpVRM-tftMUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/ITBDHg-QRS0EDgqUlJBGXCU61_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/jL5r11iyS-uuLkpRpVRM-tftMUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.104.0/22
Signature Algorithm: sha256WithRSAEncryption
47:5f:65:b9:63:9e:6a:83:a7:94:ad:b7:4a:db:c6:9e:80:ca:
66:0e:ec:6f:a9:b7:46:2e:4c:05:c0:f5:41:aa:21:8f:3d:1d:
51:ee:12:a0:95:18:de:7c:b0:18:91:e7:d6:a1:f6:08:5c:56:
35:88:c5:65:c5:2c:dd:2e:28:1f:77:86:46:29:04:e7:04:07:
17:4f:2c:dd:1d:c6:64:9f:2c:dc:5d:5f:dd:ec:ad:3a:e2:c7:
f1:15:79:8b:3d:47:c0:c6:69:7e:ea:f8:93:29:99:02:f2:f9:
60:ec:24:da:95:d9:cc:46:b7:01:bd:df:79:43:0f:ad:c9:cf:
6d:4e:d2:05:50:59:78:9d:3c:42:58:27:71:8b:99:e7:a1:6b:
6a:3c:1b:4c:90:20:d8:3e:ce:b2:ce:e3:dd:54:43:3f:76:8d:
be:57:de:c7:66:44:44:f7:d5:97:30:0e:6c:17:7c:0b:b3:d2:
38:e7:4a:68:4b:80:76:3e:53:6c:6e:33:70:a4:20:9f:32:31:
1a:c1:23:fd:bf:53:e3:70:d5:2e:02:33:c8:4d:5b:98:e6:6f:
1f:18:a8:92:d3:17:46:7e:4f:87:53:2a:14:6c:49:64:92:58:
0e:b2:64:c3:93:f7:53:0c:7e:17:34:b5:17:2e:93:fb:03:72:
63:74:f0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net