Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/dHvjMbVHWXOfDlJQlltaOJpI-0k.roa
File: dHvjMbVHWXOfDlJQlltaOJpI-0k.roa (raw, json)
Hash identifier: 89mauRXXlTm3C2UOdYViT3TJiRrJeY2NpDhKER/63aI=
Subject key identifier: 74:7B:E3:31:B5:47:59:73:9F:0E:52:50:96:5B:5A:38:9A:48:FB:49
Certificate issuer: /CN=bb09489b611085b902f15b78e597ba914337acf5
Certificate serial: 01856F38FFC222D8B78C2524D12695EB23C6
Authority key identifier: BB:09:48:9B:61:10:85:B9:02:F1:5B:78:E5:97:BA:91:43:37:AC:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/dHvjMbVHWXOfDlJQlltaOJpI-0k.roa
Signing time: Sun 01 Jan 2023 21:24:44 +0000
ROA not before: Sun 01 Jan 2023 21:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44286
IP address blocks: 89.207.144.0/21 maxlen: 24
2a02:2410::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:38:ff:c2:22:d8:b7:8c:25:24:d1:26:95:eb:23:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb09489b611085b902f15b78e597ba914337acf5
Validity
Not Before: Jan 1 21:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=747be331b54759739f0e5250965b5a389a48fb49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:11:0f:6c:1c:45:44:d3:2b:3a:79:e1:fe:81:
9e:ed:66:c1:7a:37:a6:81:2f:f2:55:bf:d0:07:58:
90:1c:72:2b:2b:c6:8c:85:1f:01:71:8d:81:de:8c:
7e:ba:a2:11:a8:f4:98:41:31:df:3a:02:87:fe:61:
e3:b1:a5:fb:14:63:58:f8:0f:13:c6:99:20:44:c1:
7e:96:6a:86:7b:88:70:75:00:c9:1b:40:fb:b1:3b:
2c:59:be:4c:eb:f9:ce:e9:6f:b3:bc:83:80:76:e8:
6d:b1:6c:fa:95:22:f3:ba:a6:c7:38:d9:99:31:5f:
e3:d5:0a:5f:84:48:de:f7:50:66:bf:7a:d7:c3:7f:
77:74:37:db:71:9a:66:4a:c7:62:6f:56:83:df:9e:
48:59:2f:90:b6:ad:54:41:b9:5d:50:91:8a:2d:ea:
20:61:14:87:d1:8f:be:cf:98:e7:80:d9:dc:82:42:
ee:53:13:c1:de:76:89:0d:5a:29:77:cc:04:0e:26:
bb:be:38:30:c0:20:ca:1a:25:8f:1e:9e:09:e2:f6:
85:70:d6:d5:52:87:09:b2:65:dd:48:24:39:20:03:
ad:37:c5:3b:89:e9:b3:a0:2d:3a:50:f5:49:76:04:
e3:bd:30:45:ff:72:1a:8d:cf:b3:ac:b2:54:b6:b6:
5a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7B:E3:31:B5:47:59:73:9F:0E:52:50:96:5B:5A:38:9A:48:FB:49
X509v3 Authority Key Identifier:
keyid:BB:09:48:9B:61:10:85:B9:02:F1:5B:78:E5:97:BA:91:43:37:AC:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/dHvjMbVHWXOfDlJQlltaOJpI-0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1fe4dd-91b0-42b8-b5d6-1637c7681720/1/uwlIm2EQhbkC8Vt45Ze6kUM3rPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.144.0/21
IPv6:
2a02:2410::/32
Signature Algorithm: sha256WithRSAEncryption
51:a4:98:67:2f:c3:17:f1:d9:9e:7b:ee:6e:82:44:9c:3d:90:
e6:7c:6f:e9:2c:98:9d:6c:c9:ae:a4:9b:17:42:21:e3:6d:f6:
81:e1:22:90:c0:23:5e:e5:0a:7f:6e:ec:03:7b:ff:d0:94:cc:
aa:5c:7a:4d:a7:99:d8:3c:20:23:fa:a5:31:13:5f:93:d1:ad:
d6:64:04:39:dd:1a:69:06:87:0a:12:cf:d7:6a:66:9a:47:c9:
b1:a6:c6:f3:a1:7e:2a:94:41:0b:47:cd:79:26:f3:9b:27:f7:
df:0c:5f:6f:a4:0f:78:34:23:f4:cc:4d:4d:a8:05:2f:ba:8a:
85:68:79:c8:dd:8e:3f:3b:a6:e7:a9:35:2a:3c:16:3a:d9:63:
8f:b6:cc:fa:67:21:3f:45:b1:3c:a0:f1:8a:ea:5b:b8:ad:3a:
4f:80:68:9b:82:b5:bd:f3:c3:07:33:11:c5:f5:69:de:e3:69:
6a:e5:92:aa:be:50:f6:c4:e3:55:1d:3b:d4:8d:04:9d:0f:dd:
88:76:51:d3:67:9d:a8:df:a7:ee:fd:4b:09:14:f4:da:52:9e:
56:9a:7e:3a:55:4b:e6:43:c4:31:98:69:53:bb:88:42:fc:2b:
8d:63:5b:e3:c9:95:3d:b0:4a:a1:ad:f3:e3:da:02:1f:72:6b:
fc:70:a3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net