Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/810599-731a-486a-b23f-47537eb644f5/1/egQwRHU5AE-klzoLV3_Sw_tkXYo.roa
File: egQwRHU5AE-klzoLV3_Sw_tkXYo.roa (raw, json)
Hash identifier: Nr/ciMVzEFBT/2eRIx3/XPFBkeS8bONzVMg9DvriCrs=
Subject key identifier: 7A:04:30:44:75:39:00:4F:A4:97:3A:0B:57:7F:D2:C3:FB:64:5D:8A
Certificate issuer: /CN=e123860e20cdb2cfdf2cefb3753a15b822829266
Certificate serial: 019428238942DD3E0FFE10F0B90EE769D2F2
Authority key identifier: E1:23:86:0E:20:CD:B2:CF:DF:2C:EF:B3:75:3A:15:B8:22:82:92:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SOGDiDNss_fLO-zdToVuCKCkmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/810599-731a-486a-b23f-47537eb644f5/1/egQwRHU5AE-klzoLV3_Sw_tkXYo.roa
Signing time: Thu 02 Jan 2025 17:50:05 +0000
ROA not before: Thu 02 Jan 2025 17:50:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21104
IP address blocks: 80.86.224.0/20 maxlen: 20
80.86.224.0/24 maxlen: 24
80.86.225.0/24 maxlen: 24
80.86.226.0/24 maxlen: 24
80.86.227.0/24 maxlen: 24
80.86.228.0/24 maxlen: 24
80.86.230.0/23 maxlen: 24
80.86.232.0/24 maxlen: 24
80.86.233.0/24 maxlen: 24
80.86.234.0/24 maxlen: 24
80.86.235.0/24 maxlen: 24
80.86.236.0/23 maxlen: 23
80.86.236.0/24 maxlen: 24
80.86.237.0/24 maxlen: 24
80.86.239.0/24 maxlen: 24
2a03:3d00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:89:42:dd:3e:0f:fe:10:f0:b9:0e:e7:69:d2:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e123860e20cdb2cfdf2cefb3753a15b822829266
Validity
Not Before: Jan 2 17:50:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a0430447539004fa4973a0b577fd2c3fb645d8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:06:07:2c:5c:92:25:44:c5:5f:97:1f:dd:57:
a5:86:7a:24:b6:e8:09:83:6b:e5:56:28:ae:72:54:
74:cc:ad:d2:64:46:9c:f1:e1:10:9a:30:04:69:30:
60:26:a6:f1:83:4e:99:71:10:2f:30:33:18:bc:5a:
58:08:4e:b9:07:e7:9a:d2:a1:85:f1:89:36:c1:d1:
81:89:03:dc:d1:c5:ba:88:43:77:d4:ff:44:fc:d4:
15:f6:62:d5:b2:9c:5a:18:4d:97:40:53:fe:59:fc:
35:cc:68:ca:52:ad:3f:56:24:52:5e:a3:ff:37:d5:
74:a3:73:96:d1:d8:6b:07:0b:61:b2:f8:77:6f:22:
98:e9:35:c6:48:76:8b:ca:72:01:22:c7:0a:f0:7a:
53:24:07:1a:2a:d5:ba:c9:60:14:5c:ea:e2:37:f7:
f3:d1:2a:80:95:0b:af:03:00:0d:33:16:b9:68:5d:
3c:55:4a:bf:a8:98:2a:74:8e:de:27:2f:33:17:e5:
83:05:30:fa:3b:ad:6a:b3:d7:3a:dc:c2:b9:46:1b:
7e:5b:2a:84:01:2e:1e:9c:52:1c:50:cb:65:f4:49:
24:40:67:d9:cb:e1:83:d8:4f:68:38:30:06:27:9c:
1a:45:02:40:f6:32:8e:c1:34:4e:7c:b4:33:64:3c:
34:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:04:30:44:75:39:00:4F:A4:97:3A:0B:57:7F:D2:C3:FB:64:5D:8A
X509v3 Authority Key Identifier:
keyid:E1:23:86:0E:20:CD:B2:CF:DF:2C:EF:B3:75:3A:15:B8:22:82:92:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SOGDiDNss_fLO-zdToVuCKCkmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/810599-731a-486a-b23f-47537eb644f5/1/egQwRHU5AE-klzoLV3_Sw_tkXYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/810599-731a-486a-b23f-47537eb644f5/1/4SOGDiDNss_fLO-zdToVuCKCkmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.224.0/20
IPv6:
2a03:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
b9:b4:10:9f:0a:f8:62:f3:4d:b7:4e:0a:34:4d:e4:60:d5:01:
f1:ff:16:d5:6a:f3:f5:15:f8:94:00:fb:c9:80:e3:d2:d8:69:
ea:69:da:ba:ff:1a:51:d6:fb:7e:9a:15:d0:75:d6:de:90:8e:
6a:ef:86:b1:28:47:01:58:ec:64:43:5e:16:6f:a6:dc:43:d1:
37:d4:33:d4:ec:ae:86:bf:49:88:fd:fb:7e:25:ee:61:54:b8:
aa:ac:a6:6b:b9:4c:fb:9a:a9:80:01:99:cc:ca:37:76:c0:de:
07:d5:5a:dd:c9:9b:da:3b:2a:f7:71:7e:c2:e7:64:05:0c:a5:
2b:1c:97:f0:60:53:1c:b0:19:25:a1:a5:6f:fb:c5:d5:66:36:
99:c3:ba:42:ca:a0:bf:0d:55:41:ab:86:a9:cc:41:2a:44:2f:
af:8f:aa:2e:5f:aa:a4:56:54:38:94:d8:be:8f:44:2a:65:ad:
89:b9:bd:1a:39:dd:65:cf:ef:29:39:79:13:a3:a8:30:d3:e0:
7d:3e:bb:c3:70:21:96:43:03:97:bf:3c:3a:6b:3d:72:e0:9f:
1c:a5:16:9e:d1:fb:5f:97:a0:0d:33:12:64:c4:f9:ae:82:48:
1f:89:1a:de:f0:f8:47:56:1d:b2:60:c5:f0:26:8c:10:18:f7:
23:6c:76:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:09 2025 by rpki-client