Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/d45da9-7718-49b9-bc83-02b87221f1ef/1/afyAjDrp05CCuKzy5vEQNOia6sQ.roa
File: afyAjDrp05CCuKzy5vEQNOia6sQ.roa (raw, json)
Hash identifier: lQPI6yUTjWgbJbyAFTOmeDlI+zr8eodK2jgKJDmuu58=
Subject key identifier: 69:FC:80:8C:3A:E9:D3:90:82:B8:AC:F2:E6:F1:10:34:E8:9A:EA:C4
Certificate issuer: /CN=e188d5c34c4c1e1768fd8afc8d0659c710e1111b
Certificate serial: 018CC6B7871260AB1EBE3AC3F6F2C6C26399
Authority key identifier: E1:88:D5:C3:4C:4C:1E:17:68:FD:8A:FC:8D:06:59:C7:10:E1:11:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4YjVw0xMHhdo_Yr8jQZZxxDhERs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/d45da9-7718-49b9-bc83-02b87221f1ef/1/afyAjDrp05CCuKzy5vEQNOia6sQ.roa
Signing time: Mon 01 Jan 2024 20:29:25 +0000
ROA not before: Mon 01 Jan 2024 20:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 80.68.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:87:12:60:ab:1e:be:3a:c3:f6:f2:c6:c2:63:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e188d5c34c4c1e1768fd8afc8d0659c710e1111b
Validity
Not Before: Jan 1 20:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69fc808c3ae9d39082b8acf2e6f11034e89aeac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:a7:56:ed:87:60:e7:cb:df:08:22:76:97:
84:6a:9b:f3:f7:0c:01:6a:8e:93:f4:d6:8a:58:f1:
2d:8f:dd:a9:44:f9:af:a4:c4:98:bf:12:39:22:bc:
df:9f:16:55:c5:7d:a7:09:22:1f:d6:23:92:78:ee:
2c:d8:47:73:af:38:3a:44:d2:cd:1e:6e:f8:e4:95:
6d:3a:8d:33:d8:d3:55:aa:e3:f7:a7:46:a5:d4:b1:
94:6c:68:40:3d:a1:71:9e:31:b4:a9:fb:85:27:e3:
50:39:d4:81:f0:c8:e2:1d:d9:89:8c:39:8c:58:ab:
1f:5a:ba:1f:98:66:3d:f4:6e:57:c2:13:9b:a6:a8:
02:ef:91:91:7d:43:38:e6:93:d8:4d:34:cc:de:ed:
e5:9a:16:3d:d2:2e:7a:f5:05:38:f7:0a:88:4e:f4:
2d:cc:16:14:53:2b:67:46:e0:1c:8b:f1:04:f9:61:
ef:53:d1:e2:47:2e:6c:af:e5:15:47:fc:8b:4c:b1:
96:ec:6d:c4:78:ca:2e:ec:c6:1f:fe:10:22:2e:10:
cb:1e:b2:22:d6:06:ed:3a:59:cb:90:83:76:fb:c0:
13:db:13:a4:17:44:46:6c:7b:4d:c6:20:73:3d:9a:
27:c8:87:70:89:f3:1e:f7:31:6a:fb:bc:f4:43:ed:
35:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FC:80:8C:3A:E9:D3:90:82:B8:AC:F2:E6:F1:10:34:E8:9A:EA:C4
X509v3 Authority Key Identifier:
keyid:E1:88:D5:C3:4C:4C:1E:17:68:FD:8A:FC:8D:06:59:C7:10:E1:11:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4YjVw0xMHhdo_Yr8jQZZxxDhERs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/d45da9-7718-49b9-bc83-02b87221f1ef/1/afyAjDrp05CCuKzy5vEQNOia6sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/d45da9-7718-49b9-bc83-02b87221f1ef/1/4YjVw0xMHhdo_Yr8jQZZxxDhERs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.156.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9f:53:74:65:1e:e0:8f:97:cd:93:64:7f:ec:7d:74:bf:a5:
7f:7b:0d:cf:81:14:05:b5:be:8d:49:7b:6e:f2:ff:b9:44:2c:
bd:c6:74:c6:08:ab:c4:a5:e7:96:3a:2c:e6:87:5b:ee:bb:80:
71:06:ad:62:68:71:1e:d8:13:e2:31:87:78:b5:75:c3:a3:95:
83:c9:ff:fa:52:d7:85:ae:3e:56:0f:70:6c:78:cb:cb:74:f0:
11:1f:89:a9:a8:e6:02:32:0c:e2:bf:28:97:21:ab:58:b9:80:
6e:5b:2c:22:3a:3a:2c:00:56:40:ff:80:96:c3:42:ec:ac:f1:
59:9b:a2:94:4b:ac:d2:61:ef:44:67:cb:41:d9:3a:de:bb:e6:
bb:a4:2d:d3:dd:5f:fc:f1:9a:19:f5:e8:59:b1:83:27:71:e4:
84:e8:4b:8a:1d:5a:29:5f:80:bb:ee:bf:af:59:02:15:1c:89:
be:6b:79:3a:f3:8b:38:39:5f:5e:7f:a3:fb:fc:63:63:3f:b5:
36:a1:eb:2c:94:c9:d4:8a:55:bc:d5:a8:c8:45:65:e7:16:97:
d7:6f:08:db:b1:f6:e2:6a:88:0f:f8:d2:6b:96:ab:e9:e9:75:
5a:e6:a0:b6:a3:76:8e:10:50:1b:d4:91:ca:9b:8d:be:b5:79:
2b:5a:9d:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGt4cSYKsevjrD9vLGwmOZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxODhkNWMzNGM0YzFlMTc2OGZkOGFmYzhkMDY1OWM3MTBl
MTExMWIwHhcNMjQwMTAxMjAyOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OWZjODA4YzNhZTlkMzkwODJiOGFjZjJlNmYxMTAzNGU4OWFlYWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGynVu2HYOfL3wgidpeEapvz9wwB
ao6T9NaKWPEtj92pRPmvpMSYvxI5IrzfnxZVxX2nCSIf1iOSeO4s2Edzrzg6RNLN
Hm745JVtOo0z2NNVquP3p0al1LGUbGhAPaFxnjG0qfuFJ+NQOdSB8MjiHdmJjDmM
WKsfWrofmGY99G5XwhObpqgC75GRfUM45pPYTTTM3u3lmhY90i569QU49wqITvQt
zBYUUytnRuAci/EE+WHvU9HiRy5sr+UVR/yLTLGW7G3EeMou7MYf/hAiLhDLHrIi
1gbtOlnLkIN2+8AT2xOkF0RGbHtNxiBzPZonyIdwifMe9zFq+7z0Q+01uwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGn8gIw66dOQgris8ubxEDTomurEMB8GA1UdIwQY
MBaAFOGI1cNMTB4XaP2K/I0GWccQ4REbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFlqVncweE1IaGRvX1lyOGpRWlp4eERoRVJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9kNDVkYTktNzcxOC00OWI5LWJjODMt
MDJiODcyMjFmMWVmLzEvYWZ5QWpEcnAwNUNDdUt6eTV2RVFOT2lhNnNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9kNDVkYTktNzcxOC00OWI5LWJjODMtMDJiODcyMjFmMWVm
LzEvNFlqVncweE1IaGRvX1lyOGpRWlp4eERoRVJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEScMA0G
CSqGSIb3DQEBCwUAA4IBAQAUn1N0ZR7gj5fNk2R/7H10v6V/ew3PgRQFtb6NSXtu
8v+5RCy9xnTGCKvEpeeWOizmh1vuu4BxBq1iaHEe2BPiMYd4tXXDo5WDyf/6UteF
rj5WD3BseMvLdPARH4mpqOYCMgzivyiXIatYuYBuWywiOjosAFZA/4CWw0LsrPFZ
m6KUS6zSYe9EZ8tB2Treu+a7pC3T3V/88ZoZ9ehZsYMnceSE6EuKHVopX4C77r+v
WQIVHIm+a3k684s4OV9ef6P7/GNjP7U2oesslMnUilW81ajIRWXnFpfXbwjbsfbi
aogP+NJrlqvp6XVa5qC2o3aOEFAb1JHKm42+tXkrWp3v
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:37 2025 by rpki-client