Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/04qEm933wPw-8TqCkEnpeI7vi6I.roa
File: 04qEm933wPw-8TqCkEnpeI7vi6I.roa (raw, json)
Hash identifier: HP/x/lRII5ToNPot6L2pBOIXOE1qqBgQr7oXkIdqUwA=
Subject key identifier: D3:8A:84:9B:DD:F7:C0:FC:3E:F1:3A:82:90:49:E9:78:8E:EF:8B:A2
Certificate issuer: /CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Certificate serial: 0182A6B857E1F77F559A554D0BEA1C4638BD
Authority key identifier: D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/04qEm933wPw-8TqCkEnpeI7vi6I.roa
Signing time: Tue 16 Aug 2022 12:54:35 +0000
ROA not before: Tue 16 Aug 2022 12:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 80.208.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:b8:57:e1:f7:7f:55:9a:55:4d:0b:ea:1c:46:38:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d481a627017d1a06cedd0b48e4fc6fcff586dd94
Validity
Not Before: Aug 16 12:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d38a849bddf7c0fc3ef13a829049e9788eef8ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:fe:d9:4b:3e:f7:7a:8c:17:61:6a:c5:4b:
56:ac:fc:7a:28:4d:48:84:ca:43:69:f6:48:e0:84:
eb:8a:e7:e0:41:8e:89:34:69:6e:24:51:e1:34:85:
4c:52:c5:35:44:85:f6:14:9d:dd:9b:f9:f2:57:a3:
11:58:f4:2f:35:21:04:13:78:7b:49:b7:16:05:d1:
2e:83:0b:de:a3:a3:4a:5a:6e:1c:89:2f:d5:43:70:
50:4c:e6:c1:c5:8e:48:49:f1:ae:b7:cc:d4:c1:d2:
4b:73:46:f0:f7:f6:a4:df:fd:5f:90:2a:88:be:0c:
9a:14:c5:19:fd:dd:e8:59:e2:83:2d:eb:16:f5:28:
63:0c:ed:62:80:55:d6:8b:dd:f3:f5:ef:f0:b5:16:
c9:2a:f6:af:ef:f6:c0:df:2b:a0:ec:bc:45:3a:91:
1f:b8:ae:fa:d7:1a:3f:2d:b4:18:32:ee:96:1e:8d:
4b:3b:35:ca:30:ee:d7:6e:9b:91:5e:50:a6:d0:7c:
46:f9:2b:1e:f0:04:f0:6b:15:2d:2c:6c:ea:ba:32:
6f:0a:1e:9f:08:7a:8a:35:91:1e:f4:f7:b2:63:55:
c6:0c:fd:33:d8:c6:25:c9:3b:ab:33:c6:ac:32:a4:
42:f8:02:a6:f8:41:e6:d0:81:10:11:f3:e6:fb:4b:
c4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8A:84:9B:DD:F7:C0:FC:3E:F1:3A:82:90:49:E9:78:8E:EF:8B:A2
X509v3 Authority Key Identifier:
keyid:D4:81:A6:27:01:7D:1A:06:CE:DD:0B:48:E4:FC:6F:CF:F5:86:DD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/04qEm933wPw-8TqCkEnpeI7vi6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ff63d8-feca-43cd-904d-72b32d951953/1/1IGmJwF9GgbO3QtI5Pxvz_WG3ZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.208.221.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a8:1a:25:2f:46:c7:93:09:bb:e8:33:0b:50:6c:ce:92:be:
25:30:21:b2:bb:48:37:5d:10:bb:ce:a2:06:35:d6:e2:dd:e2:
00:2e:ef:f7:ec:33:1e:f7:69:9f:b8:55:fb:09:c0:fd:9a:1e:
3b:38:f5:9c:71:32:59:71:e6:60:1b:71:57:a6:08:ae:e6:5d:
5a:48:69:fd:10:69:41:95:28:2a:30:01:93:55:59:0e:5e:6a:
16:87:c0:02:9d:61:0f:45:6d:eb:d8:45:7a:d3:95:c0:f8:6c:
e7:32:e2:1c:2c:5f:0f:fc:0a:f8:22:ec:05:cb:8d:60:b8:81:
f9:37:87:6d:a9:87:72:87:96:f7:45:ff:2e:19:9e:d0:23:58:
c0:fc:c8:c9:76:65:d8:49:57:1b:2d:55:09:d3:96:fc:7e:a0:
e3:10:35:ea:2d:0b:a0:56:e5:32:6f:5a:b6:3f:6c:c3:89:06:
c8:3f:8a:21:bc:c2:32:cf:f2:ad:7f:99:1b:ff:25:2f:ac:aa:
53:14:e4:22:ef:03:09:52:47:d0:d8:20:43:fe:3a:b8:0d:92:
db:58:95:5c:d7:cf:af:50:7c:6c:09:53:6f:c1:e2:78:2c:1a:
34:eb:13:38:51:93:55:ce:e3:61:bb:5b:be:62:ac:1c:83:31:
1d:9b:6a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:49 2025 by rpki-client