Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ebea60-d231-480b-84fd-a763df3aee6d/1/viGe34pPyLO06lRNA6iImix5wls.roa
File: viGe34pPyLO06lRNA6iImix5wls.roa (raw, json)
Hash identifier: SAUjW4LEODbLffDu0s1UPbzT3DgjBXtKgcC8PK87cJ4=
Subject key identifier: BE:21:9E:DF:8A:4F:C8:B3:B4:EA:54:4D:03:A8:88:9A:2C:79:C2:5B
Certificate issuer: /CN=ef7f31bd6d985e45299c31d052ca4a8ebef5578b
Certificate serial: 01856E667E3EA99C1FB0B78F3CD151F4E750
Authority key identifier: EF:7F:31:BD:6D:98:5E:45:29:9C:31:D0:52:CA:4A:8E:BE:F5:57:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/738xvW2YXkUpnDHQUspKjr71V4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ebea60-d231-480b-84fd-a763df3aee6d/1/viGe34pPyLO06lRNA6iImix5wls.roa
Signing time: Sun 01 Jan 2023 17:34:48 +0000
ROA not before: Sun 01 Jan 2023 17:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208549
IP address blocks: 80.64.221.0/24 maxlen: 24
80.64.220.0/24 maxlen: 24
80.64.222.0/23 maxlen: 23
80.64.223.0/24 maxlen: 24
80.64.222.0/24 maxlen: 24
2a0d:1cc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:7e:3e:a9:9c:1f:b0:b7:8f:3c:d1:51:f4:e7:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7f31bd6d985e45299c31d052ca4a8ebef5578b
Validity
Not Before: Jan 1 17:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be219edf8a4fc8b3b4ea544d03a8889a2c79c25b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2f:46:b1:5c:7e:89:90:64:1b:49:a8:30:2f:
a7:aa:b4:71:ad:9b:cb:44:05:89:82:17:0e:b9:58:
66:83:03:d5:7d:0c:ba:dd:77:35:83:f6:d3:93:75:
60:74:6b:99:6b:f7:f9:a9:b4:7e:85:33:81:57:31:
a4:8d:32:a1:9c:bf:ab:9d:1c:76:e3:09:f3:61:28:
87:a5:9d:1c:9e:71:9c:c3:20:57:b3:ba:10:45:9d:
87:02:ec:ef:e9:3f:f9:c5:db:93:14:6f:e0:09:1a:
98:d3:e3:17:65:ac:8b:88:cb:de:bd:72:25:7e:c9:
47:f3:fe:7a:02:8a:88:6f:e8:b4:fd:0a:66:05:29:
4e:48:e6:4f:1e:0b:24:4c:16:19:1a:5b:f6:f6:1f:
b4:7e:e7:99:6c:05:f7:c9:2c:7f:c6:53:d4:24:c4:
08:75:d7:3a:04:0b:57:eb:3c:16:17:c5:e3:b3:32:
05:7c:40:ad:36:c7:a3:3e:96:9e:61:f3:65:21:43:
8f:fd:09:77:68:14:9f:74:b2:08:3e:aa:4c:f7:ba:
6c:3a:fa:ad:2d:1b:92:7f:24:4c:a7:57:2a:43:a0:
12:eb:fd:28:b4:26:f3:90:41:2f:64:04:fb:c0:b1:
cd:24:7f:65:09:97:79:42:c1:ae:5b:1d:6d:b6:27:
d5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:21:9E:DF:8A:4F:C8:B3:B4:EA:54:4D:03:A8:88:9A:2C:79:C2:5B
X509v3 Authority Key Identifier:
keyid:EF:7F:31:BD:6D:98:5E:45:29:9C:31:D0:52:CA:4A:8E:BE:F5:57:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/738xvW2YXkUpnDHQUspKjr71V4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ebea60-d231-480b-84fd-a763df3aee6d/1/viGe34pPyLO06lRNA6iImix5wls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ebea60-d231-480b-84fd-a763df3aee6d/1/738xvW2YXkUpnDHQUspKjr71V4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.220.0/22
IPv6:
2a0d:1cc0::/48
Signature Algorithm: sha256WithRSAEncryption
91:2c:0a:89:f1:2e:fe:6f:c7:fd:e5:13:93:11:f4:37:e5:cd:
f5:45:b7:df:36:b5:74:dc:90:21:9d:43:75:10:30:b8:a2:1f:
e9:44:3c:bc:8a:6b:d0:db:7b:fe:71:99:8e:77:d5:fe:f9:26:
f4:f3:51:61:8a:e6:23:24:f2:c9:47:3c:31:c0:51:c7:40:e6:
2d:e3:00:ba:82:69:e2:61:7f:fc:e4:53:63:a0:84:86:37:c2:
5c:d8:23:11:81:d0:c7:13:0f:12:23:c9:bf:1e:6a:c7:ad:91:
99:d6:24:e3:de:75:2a:9f:60:39:4b:2a:4a:a5:8d:57:4f:bd:
b6:97:1e:f9:5a:6e:5e:23:dc:fd:0c:d9:51:e7:aa:30:6e:93:
1f:c7:9d:2e:98:a5:79:11:2d:9e:98:d2:b6:8a:ae:4b:e2:05:
56:62:99:59:07:d0:e8:d9:d8:7d:1a:69:96:e6:be:65:17:44:
0c:90:d0:6f:3e:96:08:a6:68:50:ac:56:91:76:72:a0:ee:93:
25:48:cd:e0:43:2c:fb:14:08:21:f1:22:75:55:30:a9:2d:1c:
df:38:7a:e1:a0:ce:b5:6b:d8:7d:32:14:96:2c:45:93:09:7a:
5f:6b:83:7e:1d:fe:df:2e:92:b2:04:a1:01:d8:c0:37:83:31:
30:18:55:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:57 2025 by rpki-client