Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1WCRFtnAGG6gm1wZ6BfoPop3yC0.roa
File: 1WCRFtnAGG6gm1wZ6BfoPop3yC0.roa (raw, json)
Hash identifier: P8ChksCJMIYx4dqTLH/UkfBu2zHKbAkEsToRXXTnbns=
Subject key identifier: D5:60:91:16:D9:C0:18:6E:A0:9B:5C:19:E8:17:E8:3E:8A:77:C8:2D
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01822FF1AA4E2FDD4C929517CBE77B272300
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1WCRFtnAGG6gm1wZ6BfoPop3yC0.roa
Signing time: Sun 24 Jul 2022 11:22:23 +0000
ROA not before: Sun 24 Jul 2022 11:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149285
IP address blocks: 89.23.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2f:f1:aa:4e:2f:dd:4c:92:95:17:cb:e7:7b:27:23:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jul 24 11:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5609116d9c0186ea09b5c19e817e83e8a77c82d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:82:fa:14:9f:4c:d0:c3:3e:c9:26:8f:2d:
30:da:f3:62:7e:a2:6d:7e:1b:e0:52:9c:ed:f5:2e:
f0:6b:f5:c6:12:61:17:3a:45:19:bd:47:aa:a1:e3:
6e:cc:c9:d4:11:66:26:1a:73:30:3e:cd:00:03:77:
06:b7:a0:0d:b7:19:c6:0b:d7:4e:d8:08:3f:0a:0c:
7f:a2:ad:ad:4c:0a:9b:7e:5b:4f:f5:7a:e2:42:b1:
a8:1c:41:30:d7:ce:b0:02:e1:72:13:30:03:47:2c:
69:a9:e5:e1:50:60:15:49:91:f3:99:bc:42:80:e4:
2f:c5:74:9c:cf:cb:b1:a1:bd:8a:74:9a:eb:42:33:
da:ff:0d:9e:d6:61:56:fd:6f:3e:f1:2d:40:6e:95:
8a:05:f3:d5:4b:b9:7d:51:61:c4:2a:13:d9:5a:61:
31:93:58:7d:e2:29:bd:16:81:31:4b:2e:31:7e:6c:
8e:f2:66:8c:ff:ff:18:b1:2f:20:65:42:70:37:b7:
7f:15:a7:38:f7:41:69:4e:db:bc:e8:fe:52:6c:b5:
1e:9a:87:af:f0:5e:df:0b:c0:98:fa:8b:4d:99:56:
b9:e9:cb:40:67:10:c9:fd:60:ff:09:c5:06:bd:e2:
11:4c:33:35:d5:51:70:89:34:8a:84:11:d9:8b:54:
f8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:60:91:16:D9:C0:18:6E:A0:9B:5C:19:E8:17:E8:3E:8A:77:C8:2D
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1WCRFtnAGG6gm1wZ6BfoPop3yC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:cc:17:6b:a3:65:29:bd:cf:32:52:a7:03:92:3e:a9:8e:6e:
6a:fe:f7:a2:07:79:1f:f7:6d:3a:ea:e4:f9:e3:e9:4f:f9:42:
3d:5d:30:ef:c1:06:b7:8b:d6:a0:da:25:7f:80:f4:4e:be:56:
f9:02:f3:aa:a2:a7:42:d0:2c:de:20:41:02:c0:16:ba:bb:8c:
13:74:d0:26:8c:ce:7c:a8:ea:c7:c8:50:a2:a2:b8:bf:21:4e:
b3:fa:c5:a9:93:90:14:86:0f:57:43:a4:8d:98:21:9c:1a:f5:
23:a2:3c:a2:68:8a:da:15:15:80:81:ea:13:e8:e3:09:56:55:
35:39:2a:15:db:38:27:c4:1d:a0:c6:60:69:8c:18:10:80:8b:
38:d0:34:96:55:28:0d:a5:5c:fc:15:3e:ca:d9:f2:d2:e8:85:
2c:bf:59:01:b3:d4:55:16:e6:69:f4:47:8e:ae:bf:09:56:8c:
89:28:ed:da:a7:92:c4:5e:0c:b0:86:01:92:ca:c1:fe:09:0a:
21:a2:74:99:ad:67:b6:cc:a5:69:87:e4:30:f6:1a:4f:10:fe:
72:90:39:fd:c4:6d:3c:1a:b7:21:d0:fd:aa:1f:c8:21:2d:ac:
d3:a0:f9:08:54:6c:68:65:ea:68:b5:e7:3e:47:0c:78:94:c9:
35:cd:63:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net