Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/PdNm_d8_HxX7Aa1SH0c0gy_pHkQ.roa
File: PdNm_d8_HxX7Aa1SH0c0gy_pHkQ.roa (raw, json)
Hash identifier: u8ecm0dkevWZkn2tO/06PuCUOjNt3KEdporZuruorJg=
Subject key identifier: 3D:D3:66:FD:DF:3F:1F:15:FB:01:AD:52:1F:47:34:83:2F:E9:1E:44
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01856D11DCA612A6348B669D21DE26774042
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/PdNm_d8_HxX7Aa1SH0c0gy_pHkQ.roa
Signing time: Sun 01 Jan 2023 11:22:45 +0000
ROA not before: Sun 01 Jan 2023 11:22:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 89.23.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:11:dc:a6:12:a6:34:8b:66:9d:21:de:26:77:40:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 11:22:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dd366fddf3f1f15fb01ad521f4734832fe91e44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:70:0b:a5:c5:e7:dc:d5:fb:15:2d:8d:32:37:
7b:2e:46:04:90:36:fa:31:7b:18:bf:fd:35:1c:92:
87:cd:e2:de:2e:3b:af:c5:a1:c7:76:fd:16:5a:5a:
a4:f0:16:18:53:81:06:6a:a5:74:ee:bf:1e:5f:ac:
87:5b:f6:55:63:30:c3:60:4a:e4:9b:55:9a:8c:75:
0f:48:43:05:1f:ae:96:c9:d2:d8:a4:82:14:b7:00:
7a:60:bd:86:93:bf:68:7d:34:4f:30:b0:13:18:bf:
1c:de:71:70:20:c3:2c:d2:ca:bb:7e:c6:24:64:b8:
bf:f2:c2:09:6d:a2:eb:0c:b6:af:f4:6b:d4:8e:e3:
20:77:c9:c8:2d:e3:f6:29:a7:07:a4:e2:a5:17:b7:
cd:42:08:84:23:85:9c:b0:af:7d:a8:c1:71:e9:ef:
37:37:28:6c:26:aa:3b:bf:3e:84:27:2d:d1:1b:7f:
d7:76:05:22:0b:07:c1:39:bd:4f:ff:f7:7c:42:b2:
d9:d2:da:16:ce:f1:ba:26:44:22:1e:01:3c:6d:37:
7c:e4:cb:3a:a0:ee:71:56:88:1d:37:b0:e6:40:5b:
95:29:2f:1d:f6:0d:7d:f1:9c:2a:54:ad:51:52:00:
a2:ed:36:77:ff:f9:02:d7:47:43:2d:f3:77:ee:40:
32:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D3:66:FD:DF:3F:1F:15:FB:01:AD:52:1F:47:34:83:2F:E9:1E:44
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/PdNm_d8_HxX7Aa1SH0c0gy_pHkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.86.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:4c:f9:0c:ac:dd:e7:67:f9:2d:29:1b:17:ac:f0:60:0c:6c:
46:fd:a1:f8:20:d5:57:c6:18:de:5a:53:26:9b:c3:51:d5:92:
5f:4a:a8:81:cf:30:76:6a:83:61:0e:f5:72:7e:4d:97:49:5e:
ab:15:09:d0:75:3d:31:ee:08:1a:3c:c8:ac:d2:b6:b9:52:37:
ee:38:94:7a:78:37:57:f5:a6:87:4e:8d:45:d6:c0:58:18:e1:
41:13:63:cc:14:f1:51:49:2d:44:0e:d3:02:4c:48:bf:dc:88:
9e:40:17:f4:f3:7e:0f:8b:33:f1:7a:88:3d:e0:6a:ae:58:ee:
4b:d6:82:21:9c:85:3a:12:05:c0:a7:b4:4b:4c:03:94:01:03:
12:00:13:c1:fc:57:48:5c:ad:5f:53:5d:3a:43:3d:fa:34:2a:
4c:17:22:71:4a:69:4e:d8:36:2e:7b:ee:c5:08:17:21:40:08:
c1:d5:e9:76:30:f0:e4:c6:29:60:67:64:34:e2:c6:96:7f:a0:
3b:97:5d:97:8b:37:cc:7b:71:93:43:16:bf:25:75:34:d1:24:
07:05:d3:95:42:ed:ff:82:48:c4:1a:80:46:85:80:a2:bc:0f:
8d:f3:f9:23:52:01:65:d2:1c:c2:5b:0e:fa:2b:5e:ea:43:6b:
26:c3:19:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net