Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1-l9pAL89WOqjqZ8tD8BlAHK7uK0.roa
File: 1-l9pAL89WOqjqZ8tD8BlAHK7uK0.roa (raw, json)
Hash identifier: z24pPcC6jXGjJi6DDX6bX0uTioa5kQEZXppNCUm2lNI=
Subject key identifier: FA:5F:69:00:BF:3D:58:EA:A3:A9:9F:2D:0F:C0:65:00:72:BB:B8:AD
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01822FE96E63E1212EC2F81EA9ECFF5B2271
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1-l9pAL89WOqjqZ8tD8BlAHK7uK0.roa
Signing time: Sun 24 Jul 2022 11:13:23 +0000
ROA not before: Sun 24 Jul 2022 11:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 89.23.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2f:e9:6e:63:e1:21:2e:c2:f8:1e:a9:ec:ff:5b:22:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jul 24 11:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa5f6900bf3d58eaa3a99f2d0fc0650072bbb8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2f:55:70:90:98:5a:79:6a:30:56:87:b2:67:
fe:ec:1d:f2:56:de:f4:ee:09:31:c0:8c:18:0c:ee:
7c:05:0d:24:55:53:a8:12:75:fe:49:bc:93:f0:0e:
d7:12:87:95:b5:56:27:65:82:4f:f4:cb:b1:15:02:
c7:db:f2:b0:85:45:fb:c2:1c:6d:63:2f:d7:73:da:
78:46:4d:0a:89:91:58:8f:e6:5f:ed:08:b6:38:b5:
fb:23:07:1a:5c:c4:14:3d:98:2c:ab:8e:b5:a6:0d:
b0:c9:86:f3:07:5c:be:9c:de:a2:de:8f:d2:d8:7e:
4a:fa:b6:6d:b3:5d:e0:5d:d1:b1:5d:05:05:c7:58:
53:95:d8:4c:62:18:45:a9:97:a9:85:78:73:be:e5:
db:8f:56:e5:25:06:77:22:45:ca:60:82:0c:3a:58:
f6:14:e8:75:5a:bf:e8:03:ca:e4:58:34:92:18:25:
b6:c2:c7:6d:38:8c:df:df:c6:dd:e5:e6:5d:89:28:
87:08:3c:f4:79:79:7a:46:97:b3:f6:11:78:bc:63:
f3:70:83:d4:a8:2d:89:fa:8a:86:8d:4c:7f:2d:32:
97:07:a8:8b:fb:16:0e:dc:ce:e4:ca:cd:ae:63:fe:
bf:7e:70:22:d6:71:30:c9:ed:28:da:a5:bb:e1:67:
0f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:5F:69:00:BF:3D:58:EA:A3:A9:9F:2D:0F:C0:65:00:72:BB:B8:AD
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1-l9pAL89WOqjqZ8tD8BlAHK7uK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.82.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a0:48:6e:b7:6b:8a:c8:56:38:9d:d4:8c:c0:76:df:48:2f:
df:86:e6:14:d8:96:04:f3:44:92:3b:f2:5e:b8:58:40:af:7b:
6b:13:d2:0b:eb:88:7e:b5:9f:f7:a5:a6:ac:54:24:a8:19:8b:
a3:09:42:38:7d:c6:52:9f:46:27:f6:9a:7c:17:f0:57:94:fb:
58:36:4c:71:0f:43:36:4b:9e:52:30:61:a0:51:8c:95:82:b6:
35:f3:ce:18:41:da:44:2e:df:e0:a9:1a:54:77:78:b5:d4:93:
cf:00:af:6d:66:f0:89:c4:fa:e2:16:6e:6b:c2:64:3d:7c:c2:
cb:78:4d:45:ab:85:92:f5:00:14:43:20:8e:d7:4c:7a:62:a6:
5b:7b:1c:33:ec:5c:23:83:1e:e1:ed:71:3e:ae:15:96:42:45:
36:53:fe:92:a8:f6:9a:78:0e:8e:5c:05:3f:bb:39:15:f9:5f:
e1:10:15:97:34:90:68:c3:a6:99:48:45:0d:7d:e4:8b:35:cf:
c9:5c:29:25:b6:4e:b7:96:7a:89:8f:48:85:53:85:0a:54:ba:
eb:f7:7f:bd:19:0b:d3:82:15:24:40:28:3e:f7:44:2c:ff:48:
8a:a8:14:8a:2a:67:67:f3:17:61:e4:b9:26:f7:92:9b:41:d8:
c0:c8:57:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net