Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/27aae2-fe99-4b18-934b-9380fed8d02f/1/UPZKVdC-nuknFtZhqfp0X2YR9Bc.roa
File: UPZKVdC-nuknFtZhqfp0X2YR9Bc.roa (raw, json)
Hash identifier: C5wpiBo7ApuWACB72RSdttDrff9IwO6smo0L9kDv/jg=
Subject key identifier: 50:F6:4A:55:D0:BE:9E:E9:27:16:D6:61:A9:FA:74:5F:66:11:F4:17
Certificate issuer: /CN=75359e8fd9057727f6633a4afe230e30f7f02e0e
Certificate serial: 0677EEA3
Authority key identifier: 75:35:9E:8F:D9:05:77:27:F6:63:3A:4A:FE:23:0E:30:F7:F0:2E:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTWej9kFdyf2YzpK_iMOMPfwLg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/27aae2-fe99-4b18-934b-9380fed8d02f/1/UPZKVdC-nuknFtZhqfp0X2YR9Bc.roa
Signing time: Sat 01 Jan 2022 00:51:35 +0000
ROA not before: Sat 01 Jan 2022 00:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39915
IP address blocks: 80.75.211.0/24 maxlen: 24
80.75.208.0/24 maxlen: 24
80.75.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108523171 (0x677eea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75359e8fd9057727f6633a4afe230e30f7f02e0e
Validity
Not Before: Jan 1 00:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50f64a55d0be9ee92716d661a9fa745f6611f417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:60:07:14:f1:40:42:af:89:da:3f:58:29:ab:
eb:78:e9:dc:4a:59:ba:c3:43:14:7d:76:4d:6b:1d:
74:e9:43:1e:b0:09:87:70:d9:4a:89:50:fa:18:60:
ee:1a:54:f0:7b:1c:0f:a0:1c:7e:52:3c:b1:cd:02:
86:f0:07:b9:2f:9c:e6:7d:1d:1a:69:69:3b:a8:b2:
35:f8:13:c6:64:79:ea:79:6a:a4:4b:a8:4b:9c:c4:
4e:c1:c6:bb:aa:39:db:f3:72:d9:c7:20:e6:58:10:
a8:51:71:02:85:7b:d9:a5:cb:2d:7d:57:82:17:07:
cb:c1:ff:22:2e:c0:a7:e2:14:44:11:89:9a:55:b6:
a4:b2:03:8f:7b:56:d8:c6:9a:0b:dc:ca:c5:75:91:
da:a9:f2:96:0a:5c:06:10:a3:0b:68:9b:c1:de:8c:
e7:6f:a0:5c:90:a7:08:a4:77:59:f7:98:7e:e0:9a:
2f:eb:e6:a7:65:a2:ee:a2:5a:ac:14:d7:c9:04:8f:
3a:22:a9:7c:0e:eb:df:d9:da:d1:29:43:5e:d7:45:
61:cf:7a:99:65:b5:cf:03:77:b9:05:86:b8:41:52:
fa:c5:6b:f8:3f:d1:b0:87:fc:6f:e2:8c:6b:a3:6f:
71:d2:a8:76:51:55:12:25:e2:fc:06:5b:f3:b1:3a:
2b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F6:4A:55:D0:BE:9E:E9:27:16:D6:61:A9:FA:74:5F:66:11:F4:17
X509v3 Authority Key Identifier:
keyid:75:35:9E:8F:D9:05:77:27:F6:63:3A:4A:FE:23:0E:30:F7:F0:2E:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTWej9kFdyf2YzpK_iMOMPfwLg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/27aae2-fe99-4b18-934b-9380fed8d02f/1/UPZKVdC-nuknFtZhqfp0X2YR9Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/27aae2-fe99-4b18-934b-9380fed8d02f/1/dTWej9kFdyf2YzpK_iMOMPfwLg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.208.0/24
80.75.211.0/24
80.75.213.0/24
Signature Algorithm: sha256WithRSAEncryption
25:53:55:4a:b3:72:73:0f:60:9d:31:f8:b0:73:d3:51:1b:be:
5d:19:7b:ff:45:98:74:27:c7:8e:7f:4f:dc:27:0c:05:b0:0d:
5e:a7:e2:fb:e0:7d:e6:95:8f:80:6a:72:7d:d7:a5:8e:4f:b5:
d8:47:c0:e9:0d:8e:67:a0:83:42:30:34:e1:07:81:c0:ed:43:
1b:99:2f:fa:a8:25:a3:6f:7a:bf:aa:10:f1:31:27:cd:62:b5:
7e:78:48:53:f5:52:8b:e5:25:74:3d:2b:5d:0e:d2:a3:87:24:
63:8a:6d:34:b8:21:6e:0d:8d:f6:34:76:b1:2b:0e:8f:a3:15:
c0:63:db:f6:c1:36:b1:fd:b2:44:d5:e8:21:0a:33:57:ef:e3:
b0:af:0b:54:07:a6:ee:f9:f4:55:02:e2:a0:23:2f:89:e8:b6:
fc:34:28:66:89:31:e7:e6:d1:d9:08:2c:94:38:ca:6d:61:1b:
7d:24:27:88:59:74:6d:35:70:25:d5:21:f8:2f:17:71:81:5c:
26:b7:1f:bc:1b:5c:df:e4:ba:7f:a6:c7:04:4a:24:17:fc:4a:
5f:17:94:ac:2e:e7:52:17:6a:c3:82:ca:76:3f:6c:38:aa:f6:
38:24:60:50:fc:fc:42:31:6c:28:86:4c:d5:ae:a6:6e:e2:bf:
99:d2:4e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:15 2023 by rpki-client on console-fra.rpki-client.org