Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1r_H1CL8RV5tak7vb-eOybgg9bk.roa
File: 1r_H1CL8RV5tak7vb-eOybgg9bk.roa (raw, json)
Hash identifier: +inbm6RB4LeV3BRwxrDrA+Mx65+/aVRWkP1Jj8X7mQc=
Subject key identifier: D6:BF:C7:D4:22:FC:45:5E:6D:6A:4E:EF:6F:E7:8E:C9:B8:20:F5:B9
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01856D11D4059F49F30E7E95254E19F834CE
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1r_H1CL8RV5tak7vb-eOybgg9bk.roa
Signing time: Sun 01 Jan 2023 11:22:42 +0000
ROA not before: Sun 01 Jan 2023 11:22:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 89.23.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:11:d4:05:9f:49:f3:0e:7e:95:25:4e:19:f8:34:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 11:22:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6bfc7d422fc455e6d6a4eef6fe78ec9b820f5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e0:c9:7b:63:fd:3a:9e:8b:77:ad:33:16:8e:
60:59:f6:89:78:cc:f1:b7:65:7b:ba:d8:6b:f8:16:
c3:ac:a7:4c:34:7e:ae:ad:0a:13:a0:4b:93:9c:53:
33:6a:cd:f2:30:17:b5:a8:08:ba:d8:6b:e9:b2:58:
f7:14:3b:94:a8:60:34:5b:b4:02:aa:d7:40:51:ca:
9f:7a:cc:32:fd:6b:8d:8a:f3:c2:39:d6:de:03:45:
9c:57:da:5b:07:d6:1d:e5:9c:f6:d7:cb:dd:53:ac:
1a:19:35:25:23:c6:ab:e1:87:25:cd:dc:e8:48:04:
12:a4:79:6a:64:82:a3:96:f1:b8:26:72:73:c3:61:
96:9b:f3:4e:e9:61:af:e5:9f:93:ad:b4:ce:4f:f9:
f6:6e:52:bb:a3:39:5b:ff:3e:c0:30:46:0a:64:22:
cf:7a:0e:0a:15:0d:73:a8:7c:a9:19:86:a5:d3:20:
15:e2:b7:63:0b:99:ba:3f:64:10:27:65:71:a9:35:
8b:61:bc:96:75:f1:d6:1e:e2:f9:58:93:54:ea:a9:
0b:97:d6:de:cb:5a:f6:68:28:3b:65:3e:7c:39:f9:
8c:df:78:13:71:e9:25:44:8c:82:06:22:97:39:7a:
87:ae:d7:ae:ee:23:91:fa:95:97:7e:1a:c5:00:a8:
31:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BF:C7:D4:22:FC:45:5E:6D:6A:4E:EF:6F:E7:8E:C9:B8:20:F5:B9
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/1r_H1CL8RV5tak7vb-eOybgg9bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.82.0/24
Signature Algorithm: sha256WithRSAEncryption
40:62:41:6a:74:dc:01:95:3f:8a:ef:da:3d:89:e9:88:7d:ab:
13:93:a9:99:25:59:d3:7d:f7:79:5d:07:cf:ff:bb:1f:f5:cc:
e4:48:4d:b9:d9:f2:4a:41:04:e9:cf:6f:bc:0d:1e:0d:c0:87:
5c:8c:34:82:cb:82:18:90:e9:ed:5a:1e:30:e3:c1:bb:23:5c:
e9:23:c3:2b:b2:2b:11:dc:24:2e:a4:0a:67:e0:39:d3:62:12:
fb:2a:86:eb:fd:67:b8:60:44:5c:bd:6c:f1:ab:50:f6:81:c0:
38:00:ec:f0:ac:7d:2d:d3:a4:04:65:81:bb:64:6c:f4:5b:8b:
a5:6f:fe:21:0d:4d:26:0d:ae:10:c6:37:b3:3e:06:64:1f:aa:
5c:d7:e7:1b:2d:a0:19:9d:7d:9e:1b:6b:97:b6:19:5f:45:ee:
b8:26:d2:ac:e3:59:05:1e:1b:b4:e2:6f:c5:de:62:6b:e4:cd:
41:d8:ee:e8:1f:51:e3:ba:68:07:ee:e1:48:38:c2:35:47:ec:
10:f5:e9:7f:6e:7a:fc:f3:e7:16:34:23:18:53:70:75:8f:8e:
ad:15:f1:05:b1:c0:79:7c:7e:25:6b:bf:6e:68:09:03:1f:5c:
10:a2:d8:46:56:d3:76:1e:b0:3d:b8:44:54:dc:95:08:16:76:
b6:5e:fe:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net