Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/DqM1lCzcnl5mIE27KXsGrXwUPYY.roa
File: DqM1lCzcnl5mIE27KXsGrXwUPYY.roa (raw, json)
Hash identifier: 7YWT60cb9PeEHGpMhtzPMLRhnfv4sgAyyBfiPMD/R1A=
Subject key identifier: 0E:A3:35:94:2C:DC:9E:5E:66:20:4D:BB:29:7B:06:AD:7C:14:3D:86
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 0182FAA3F02C6168C4272CAD4D266E5C8B91
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/DqM1lCzcnl5mIE27KXsGrXwUPYY.roa
Signing time: Thu 01 Sep 2022 20:00:23 +0000
ROA not before: Thu 01 Sep 2022 20:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34779
IP address blocks: 89.23.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fa:a3:f0:2c:61:68:c4:27:2c:ad:4d:26:6e:5c:8b:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Sep 1 20:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ea335942cdc9e5e66204dbb297b06ad7c143d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2f:6e:d5:94:c0:1f:7e:37:70:5e:dd:b1:ea:
f8:22:8a:b2:85:2e:52:57:1b:b8:74:7b:c3:6b:d0:
b3:7b:2a:0c:bf:58:b2:b1:cb:42:24:82:dd:e3:03:
1a:f7:df:67:07:59:ac:ed:cf:ee:ce:1f:f5:8d:a1:
51:67:0e:0f:50:49:04:81:6c:c0:87:86:98:00:06:
0a:4c:03:88:e3:8f:93:e7:8b:1d:f7:de:38:73:36:
55:37:d0:0c:a2:23:a1:f2:b4:c3:82:d9:74:f2:56:
12:d0:fa:50:9d:d1:14:01:6d:f5:47:0e:9a:a1:7f:
97:88:bf:b9:7a:76:dc:91:c1:ac:ed:16:1f:05:af:
07:02:25:41:2e:bf:3c:4c:28:13:33:be:2c:56:08:
ff:99:84:ea:5f:9d:2f:74:9a:4a:c4:bd:f2:07:1d:
3a:36:9a:7d:9d:b9:4d:da:c0:a6:0c:04:c3:a1:37:
1f:e5:26:6c:4b:da:f9:61:89:ee:e2:1e:f5:d3:cd:
4e:e8:0c:c8:2b:ea:fd:4f:05:d1:5b:e2:02:dd:98:
92:a5:5c:8d:5b:7c:c1:ef:8b:fc:af:e0:bf:30:1b:
08:26:e5:2c:1a:50:69:2b:1c:65:b0:87:6b:bf:28:
cf:0c:77:83:d6:9b:e1:b7:19:4b:73:ed:1a:5b:0c:
a6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A3:35:94:2C:DC:9E:5E:66:20:4D:BB:29:7B:06:AD:7C:14:3D:86
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/DqM1lCzcnl5mIE27KXsGrXwUPYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.76.0/24
Signature Algorithm: sha256WithRSAEncryption
44:6a:b8:c8:87:2a:ca:14:b1:37:7f:38:9e:a2:3d:be:17:4e:
22:d4:81:45:19:2b:75:94:b0:33:52:f4:97:6c:43:3a:0b:67:
d3:68:36:38:19:f5:10:ee:41:a8:0c:60:01:e6:28:60:e8:71:
b9:1b:e2:58:61:29:dd:08:f7:a1:58:21:f0:d6:07:7e:46:54:
d1:af:41:fc:7c:3b:23:24:2d:7c:5d:79:b1:b3:9b:e7:29:b1:
73:45:39:e3:49:7f:47:af:aa:29:0c:06:50:c0:17:c6:ff:c1:
ee:3f:3b:31:63:62:3d:26:0a:8c:91:7f:c8:1b:f8:81:34:05:
38:f1:bb:d6:ce:d4:e6:c8:34:df:b6:d0:15:e6:a2:50:fc:94:
a3:ba:37:39:13:64:3b:30:d5:4f:ab:0b:43:c9:64:bd:18:44:
10:d5:39:26:57:09:d2:8f:a3:fb:0d:3b:21:6d:46:55:d3:83:
39:d0:d7:3c:64:dc:3e:5d:51:7f:59:0c:ec:7f:47:ba:db:3a:
58:84:24:ed:d6:cf:d9:82:8a:56:2b:81:e9:a2:3c:9b:e5:a2:
f5:5b:d8:09:11:65:d7:48:15:f5:32:56:9f:cd:a9:00:0d:13:
c6:f0:72:5f:44:0c:ab:58:6a:a6:d0:e0:c0:ee:7d:a5:6f:4a:
74:f0:04:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYL6o/AsYWjEJyytTSZuXIuRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NGY4ZGFhZGYxZDc3NWQ1OWQxNTAyYjU3MzkwMWI4NzU1
MTNiNTYwHhcNMjIwOTAxMjAwMDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWEzMzU5NDJjZGM5ZTVlNjYyMDRkYmIyOTdiMDZhZDdjMTQzZDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmy9u1ZTAH343cF7dser4IoqyhS5S
Vxu4dHvDa9CzeyoMv1iysctCJILd4wMa999nB1ms7c/uzh/1jaFRZw4PUEkEgWzA
h4aYAAYKTAOI44+T54sd9944czZVN9AMoiOh8rTDgtl08lYS0PpQndEUAW31Rw6a
oX+XiL+5enbckcGs7RYfBa8HAiVBLr88TCgTM74sVgj/mYTqX50vdJpKxL3yBx06
Npp9nblN2sCmDATDoTcf5SZsS9r5YYnu4h71081O6AzIK+r9TwXRW+IC3ZiSpVyN
W3zB74v8r+C/MBsIJuUsGlBpKxxlsIdrvyjPDHeD1pvhtxlLc+0aWwymOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA6jNZQs3J5eZiBNuyl7Bq18FD2GMB8GA1UdIwQY
MBaAFHZPjarfHXddWdFQK1c5Abh1UTtWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGstTnF0OGRkMTFaMFZBclZ6a0J1SFZSTzFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC83YjkyYmYtMDExYi00NGE3LTgzODIt
YmZiMmI4ODE1ZTQ5LzEvRHFNMWxDemNubDVtSUUyN0tYc0dyWHdVUFlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC83YjkyYmYtMDExYi00NGE3LTgzODItYmZiMmI4ODE1ZTQ5
LzEvZGstTnF0OGRkMTFaMFZBclZ6a0J1SFZSTzFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRdMMA0G
CSqGSIb3DQEBCwUAA4IBAQBEarjIhyrKFLE3fzieoj2+F04i1IFFGSt1lLAzUvSX
bEM6C2fTaDY4GfUQ7kGoDGAB5ihg6HG5G+JYYSndCPehWCHw1gd+RlTRr0H8fDsj
JC18XXmxs5vnKbFzRTnjSX9Hr6opDAZQwBfG/8HuPzsxY2I9JgqMkX/IG/iBNAU4
8bvWztTmyDTfttAV5qJQ/JSjujc5E2Q7MNVPqwtDyWS9GEQQ1TkmVwnSj6P7DTsh
bUZV04M50Nc8ZNw+XVF/WQzsf0e62zpYhCTt1s/ZgopWK4Hpojyb5aL1W9gJEWXX
SBX1MlafzakADRPG8HJfRAyrWGqm0ODA7n2lb0p08AS2
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net