Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/LebN_fB1s6ScKeJ5c8zfxUklaIc.roa
File: LebN_fB1s6ScKeJ5c8zfxUklaIc.roa (raw, json)
Hash identifier: ugIRy/GdUvkC8oivMaAEQB7yPRimuew/T3ig9FaE2mE=
Subject key identifier: 2D:E6:CD:FD:F0:75:B3:A4:9C:29:E2:79:73:CC:DF:C5:49:25:68:87
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 019425217FCE43BE42F05B37440159DD04FE
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/LebN_fB1s6ScKeJ5c8zfxUklaIc.roa
Signing time: Thu 02 Jan 2025 03:48:59 +0000
ROA not before: Thu 02 Jan 2025 03:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211282
IP address blocks: 80.72.18.0/23 maxlen: 32
2a00:8740:600::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:7f:ce:43:be:42:f0:5b:37:44:01:59:dd:04:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jan 2 03:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2de6cdfdf075b3a49c29e27973ccdfc549256887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:26:c1:a4:aa:96:0a:bb:ed:99:db:5d:85:3c:
8e:40:cd:d9:61:f9:3c:27:86:6a:15:55:02:ea:4b:
f2:b8:d7:0a:45:1b:a7:38:74:07:b1:cf:64:46:3d:
27:2d:77:25:82:00:a3:ab:19:c2:42:39:96:74:61:
84:bb:5f:51:9a:5f:56:36:2b:a4:35:4d:06:b4:ad:
a3:81:aa:0f:0d:17:5f:b7:6d:d2:49:cb:e6:20:7f:
88:3b:fd:1e:07:4e:67:db:ab:26:90:dc:b1:da:e5:
63:6c:8e:e0:85:8f:6c:65:68:15:6c:7b:ce:25:51:
2b:42:af:84:f7:84:c5:d0:cc:03:01:14:9a:c2:19:
cb:e3:39:0f:ea:57:8e:6c:7f:c3:27:1a:14:81:e8:
fb:eb:7b:ed:88:73:54:b8:98:85:ce:51:d0:58:9d:
45:36:2c:96:27:f0:21:88:d9:2f:bd:38:94:9b:b3:
fb:a1:d9:51:85:3d:b4:da:1b:ef:e7:b0:a0:4d:65:
72:b2:94:0c:0c:8a:78:9c:69:42:95:5f:cb:5b:1f:
ad:b2:d0:4d:1f:c2:eb:fd:1e:04:12:ce:dc:c3:00:
b3:a2:1e:f9:fc:74:19:09:2a:b9:c4:eb:43:8a:09:
8b:b2:20:33:1b:08:9b:b3:5a:e9:bf:af:4f:37:1d:
4a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E6:CD:FD:F0:75:B3:A4:9C:29:E2:79:73:CC:DF:C5:49:25:68:87
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/LebN_fB1s6ScKeJ5c8zfxUklaIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.18.0/23
IPv6:
2a00:8740:600::/40
Signature Algorithm: sha256WithRSAEncryption
9b:01:5b:ff:31:62:56:11:64:6a:df:ed:2f:31:b6:6a:f8:ae:
a6:dd:8a:70:44:0b:00:21:d6:67:48:3f:8e:e0:d7:08:fc:96:
67:94:3e:fb:58:12:ac:05:77:3f:59:92:90:08:73:1a:0a:37:
a1:ce:5a:e0:63:1a:c8:10:55:4b:cf:8d:da:33:ed:60:bf:02:
db:4d:fb:d8:3c:94:9d:b6:68:32:0b:f7:ab:d7:cf:20:7b:08:
59:f7:0c:1e:8b:b3:c6:74:b4:14:e6:26:97:ef:c7:b3:74:01:
12:44:68:1b:59:61:cd:db:92:88:36:61:bc:f4:0b:9a:76:65:
41:ff:e3:49:31:15:57:bc:3b:11:9d:c1:27:72:4a:49:30:ce:
94:99:ce:cc:0a:3e:af:6d:2e:37:a8:81:04:60:69:d1:26:9e:
3f:2e:b1:f6:23:af:14:f4:97:6f:03:b4:1d:11:ea:f4:98:50:
5c:da:3c:f3:b7:ee:ac:b3:35:57:ff:ff:79:fb:89:f9:23:6e:
35:21:77:d7:99:dc:d5:f4:d9:1a:1d:be:11:4f:1b:c8:bf:4e:
f3:25:63:4f:15:4e:b2:05:eb:9c:09:61:74:67:22:dc:9e:98:
53:0a:2d:ce:a8:4b:cc:b1:d4:8e:35:f4:5e:00:df:3c:1f:df:
9f:cb:dc:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:28:30 2025 by rpki-client