Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q5g4fAzODYvGgahUJ7WFomaFeBA.roa
File: Q5g4fAzODYvGgahUJ7WFomaFeBA.roa (raw, json)
Hash identifier: RT0O4xgHWAket7Ga8l2jCNkwCOLdT+ONCl87Sww5Q+E=
Subject key identifier: 43:98:38:7C:0C:CE:0D:8B:C6:81:A8:54:27:B5:85:A2:66:85:78:10
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01856D11D5106046E06434A9ED2BE3B9C823
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q5g4fAzODYvGgahUJ7WFomaFeBA.roa
Signing time: Sun 01 Jan 2023 11:22:43 +0000
ROA not before: Sun 01 Jan 2023 11:22:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 89.23.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:11:d5:10:60:46:e0:64:34:a9:ed:2b:e3:b9:c8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 11:22:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4398387c0cce0d8bc681a85427b585a266857810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f6:e1:b9:db:c2:ec:ab:4f:59:c3:d0:2c:58:
21:4a:60:22:fe:f3:13:ec:aa:0b:90:87:08:70:b0:
82:56:26:62:09:e5:f7:85:74:43:1d:17:0a:fe:9c:
5e:89:1d:2b:b3:e3:b5:ff:20:b5:dd:27:97:65:74:
bc:56:80:16:bf:83:5c:23:77:f7:82:2e:ce:8a:b7:
2a:40:84:e8:d4:a4:5c:fe:68:93:3c:15:6c:e6:61:
84:9a:ee:06:7d:4e:ff:0f:23:3b:f9:ee:f1:6f:ac:
94:de:37:9c:bb:19:19:68:f4:50:e2:32:65:3e:d8:
7d:57:7d:06:89:71:d4:f2:bc:51:7f:83:5c:c3:0e:
dd:89:14:45:0b:85:a1:a2:03:c6:08:30:7b:3b:45:
96:1d:a3:45:8b:2e:cb:5f:73:c2:be:cf:c8:e9:83:
f8:48:1e:17:c3:83:10:81:bc:5d:be:3a:f6:6b:d9:
65:34:c5:44:1f:2b:77:28:2a:a6:1e:e8:56:0a:55:
c0:9e:b2:ed:b2:7f:3e:40:8b:ae:b4:6d:95:e3:af:
9a:fa:29:ea:a0:a7:8a:d0:5a:1b:17:97:f2:74:1d:
a7:be:88:be:4f:80:4d:06:05:9d:9c:c7:e3:bf:7b:
ee:eb:70:75:51:99:31:91:de:f7:38:e6:2e:f6:72:
78:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:98:38:7C:0C:CE:0D:8B:C6:81:A8:54:27:B5:85:A2:66:85:78:10
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q5g4fAzODYvGgahUJ7WFomaFeBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.80.0/24
Signature Algorithm: sha256WithRSAEncryption
06:bd:81:72:e2:bf:4e:5f:cd:fc:4e:13:5c:22:eb:a8:13:84:
f1:8d:02:10:4d:91:ca:67:77:d3:68:02:20:24:df:ba:cd:c2:
92:44:2d:03:2f:0a:9c:00:bc:80:99:a8:fc:7f:a5:81:d7:4c:
b2:15:29:93:55:cb:6d:9a:41:81:3d:95:12:f3:9d:53:5c:51:
93:0e:53:38:97:a2:39:43:04:5c:92:8b:41:c0:91:3c:3e:0e:
32:77:76:46:db:ea:8d:6b:2a:48:d4:e5:c3:5f:6d:57:5d:ad:
b1:7f:c5:7b:7c:0d:8b:95:04:fa:8f:8d:8a:94:04:96:61:6c:
f4:da:03:68:b4:56:85:f2:9c:90:01:05:31:88:f5:a3:62:b8:
63:b3:0e:2f:77:f1:e4:53:63:35:6c:9e:1d:c9:07:3e:94:74:
ff:a3:1e:c9:f3:02:a0:49:29:03:75:b3:cb:43:54:60:c1:99:
ff:4b:3e:53:02:d8:ba:40:df:19:2e:10:77:88:c1:b6:d9:ac:
26:98:f2:57:2d:f1:37:9d:ab:d9:1a:17:84:0c:77:f4:84:ed:
4d:d2:01:5c:0c:ca:98:aa:5f:a8:cf:34:15:dc:a9:51:ca:03:
48:cc:b7:d0:ea:a6:b0:69:a8:98:c0:f0:b9:71:15:1b:47:db:
fb:60:27:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net