Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/23a923-9489-4126-b059-f33d9ecef363/1/fCjC1HRzEJjkv29aGNzqBseif08.roa
File: fCjC1HRzEJjkv29aGNzqBseif08.roa (raw, json)
Hash identifier: wFnFPDIuULK1dHjzY+BPQNGpRlIHraXj4AazB5IUrxU=
Subject key identifier: 7C:28:C2:D4:74:73:10:98:E4:BF:6F:5A:18:DC:EA:06:C7:A2:7F:4F
Certificate issuer: /CN=fa644ca7fed1b76ba6434ef3c349f8f628712f87
Certificate serial: E04404
Authority key identifier: FA:64:4C:A7:FE:D1:B7:6B:A6:43:4E:F3:C3:49:F8:F6:28:71:2F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mRMp_7Rt2umQ07zw0n49ihxL4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/23a923-9489-4126-b059-f33d9ecef363/1/fCjC1HRzEJjkv29aGNzqBseif08.roa
Signing time: Sat 01 Jan 2022 11:02:50 +0000
ROA not before: Sat 01 Jan 2022 11:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48107
IP address blocks: 80.71.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14697476 (0xe04404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa644ca7fed1b76ba6434ef3c349f8f628712f87
Validity
Not Before: Jan 1 11:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c28c2d474731098e4bf6f5a18dcea06c7a27f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:c9:09:1d:27:0c:56:23:2c:72:ef:ca:bb:
11:b9:64:f9:d8:af:c9:2e:4d:00:cc:97:8e:29:92:
25:65:86:50:13:49:a5:04:81:85:78:f3:f7:91:80:
20:56:c9:d5:2b:36:0c:74:3e:7b:cd:af:aa:7d:4f:
50:58:3d:60:00:ba:22:22:fd:86:18:7a:31:3e:9c:
68:65:10:df:6a:93:54:79:d8:01:1a:32:3b:63:78:
5d:5a:03:7a:00:1e:22:48:79:96:ad:a0:45:32:27:
89:37:1b:ca:23:18:50:9e:1f:01:a7:a3:78:e3:34:
1e:57:ce:1b:c0:c4:6c:93:35:24:3f:b2:53:46:bd:
79:34:9e:80:bd:25:81:58:9c:ca:01:c8:74:62:73:
13:83:c7:43:3c:7a:5c:c9:d6:be:ac:a1:91:8c:ae:
da:46:dd:e5:5e:36:3c:82:f0:2d:09:db:36:eb:1e:
76:50:f3:3a:02:a7:ec:7d:e5:4a:c4:ad:60:db:a9:
40:df:b0:e8:fb:c1:e1:7b:33:97:0f:0c:26:cd:72:
b9:a5:c7:40:4e:4e:b2:20:64:6d:80:6f:d6:d6:5e:
30:7e:56:5a:a9:a7:14:7e:b0:02:28:35:61:6d:a4:
1a:14:5a:5b:5b:7e:c9:bd:a5:21:c9:50:24:72:c1:
57:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:28:C2:D4:74:73:10:98:E4:BF:6F:5A:18:DC:EA:06:C7:A2:7F:4F
X509v3 Authority Key Identifier:
keyid:FA:64:4C:A7:FE:D1:B7:6B:A6:43:4E:F3:C3:49:F8:F6:28:71:2F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mRMp_7Rt2umQ07zw0n49ihxL4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/23a923-9489-4126-b059-f33d9ecef363/1/fCjC1HRzEJjkv29aGNzqBseif08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/23a923-9489-4126-b059-f33d9ecef363/1/1-mRMp_7Rt2umQ07zw0n49ihxL4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.147.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2a:f5:52:9f:34:04:7c:62:50:9c:35:1c:7a:b5:28:1b:bb:
d2:ae:50:d9:17:3c:d6:2a:21:76:6d:21:c8:99:c4:59:e4:3d:
2e:56:b3:32:00:2c:b8:e1:70:dd:4a:e9:cb:f9:a6:0f:04:4e:
4d:b5:69:08:45:7a:fb:54:24:cb:3a:63:69:56:fa:04:57:6d:
e6:cc:d5:1b:1d:08:f6:31:6b:77:36:9d:21:68:09:49:1a:cd:
dc:4b:1c:94:a3:95:37:8a:7b:58:47:74:17:12:ba:7f:db:e7:
b3:e5:8d:e2:dd:8d:33:b5:11:4b:26:46:ec:cc:1c:9d:37:0f:
01:cf:df:ae:ae:20:90:ba:f1:8e:14:6b:d6:f9:7a:da:a7:9d:
d5:43:09:34:c2:bb:a0:0e:d1:75:9f:74:1a:06:b5:6b:16:42:
c0:64:d1:e6:d5:2e:56:ea:79:cb:9a:00:1c:15:61:64:de:37:
62:33:50:dd:3f:18:1c:e5:94:f1:0b:dc:21:f7:77:8a:b1:21:
5c:44:91:c7:39:d6:ae:c9:92:d8:5b:55:8f:8a:92:c7:f9:ca:
2b:6e:6d:ea:92:5e:1b:91:0d:cf:47:6e:49:f1:5a:da:c2:f6:
bd:1a:6b:06:1b:8b:25:34:9d:f6:ae:85:80:b8:82:89:3e:41:
9f:cc:28:38
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAOBEBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YTY0NGNhN2ZlZDFiNzZiYTY0MzRlZjNjMzQ5ZjhmNjI4NzEyZjg3MB4XDTIyMDEw
MTExMDI1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2MyOGMyZDQ3NDcz
MTA5OGU0YmY2ZjVhMThkY2VhMDZjN2EyN2Y0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHIyQkdJwxWIyxy78q7Eblk+divyS5NAMyXjimSJWWGUBNJ
pQSBhXjz95GAIFbJ1Ss2DHQ+e82vqn1PUFg9YAC6IiL9hhh6MT6caGUQ32qTVHnY
ARoyO2N4XVoDegAeIkh5lq2gRTIniTcbyiMYUJ4fAaejeOM0HlfOG8DEbJM1JD+y
U0a9eTSegL0lgVicygHIdGJzE4PHQzx6XMnWvqyhkYyu2kbd5V42PILwLQnbNuse
dlDzOgKn7H3lSsStYNupQN+w6PvB4Xszlw8MJs1yuaXHQE5OsiBkbYBv1tZeMH5W
WqmnFH6wAig1YW2kGhRaW1t+yb2lIclQJHLBV0UCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBR8KMLUdHMQmOS/b1oY3OoGx6J/TzAfBgNVHSMEGDAWgBT6ZEyn/tG3a6ZD
TvPDSfj2KHEvhzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtbVJNcF83UnQydW1RMDd6dzBuNDlpaHhMNGMuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzRkLzIzYTkyMy05NDg5LTQxMjYtYjA1OS1mMzNkOWVjZWYzNjMv
MS9mQ2pDMUhSekVKamt2MjlhR056cUJzZWlmMDgucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRk
LzIzYTkyMy05NDg5LTQxMjYtYjA1OS1mMzNkOWVjZWYzNjMvMS8xLW1STXBfN1J0
MnVtUTA3encwbjQ5aWh4TDRjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEeTMA0GCSqGSIb3DQEBCwUA
A4IBAQAIKvVSnzQEfGJQnDUcerUoG7vSrlDZFzzWKiF2bSHImcRZ5D0uVrMyACy4
4XDdSunL+aYPBE5NtWkIRXr7VCTLOmNpVvoEV23mzNUbHQj2MWt3Np0haAlJGs3c
SxyUo5U3intYR3QXErp/2+ez5Y3i3Y0ztRFLJkbszBydNw8Bz9+uriCQuvGOFGvW
+Xrap53VQwk0wrugDtF1n3QaBrVrFkLAZNHm1S5W6nnLmgAcFWFk3jdiM1DdPxgc
5ZTxC9wh93eKsSFcRJHHOdauyZLYW1WPipLH+corbm3qkl4bkQ3PR25J8Vrawva9
GmsGG4slNJ32roWAuIKJPkGfzCg4
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:20 2025 by rpki-client