Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cbd23-4436-4214-b582-4467463cb02b/1/KZ-sRRKApQBFTW0un670L165yB0.roa
File: KZ-sRRKApQBFTW0un670L165yB0.roa (raw, json)
Hash identifier: CZGHD+9CNND3tFi05NfmUJ8FHTfDrWXVbnrDc3rmq5Q=
Subject key identifier: 29:9F:AC:45:12:80:A5:00:45:4D:6D:2E:9F:AE:F4:2F:5E:B9:C8:1D
Certificate issuer: /CN=797f2a398ca1c80d6ef824f84766de0b9853e769
Certificate serial: E38EB1
Authority key identifier: 79:7F:2A:39:8C:A1:C8:0D:6E:F8:24:F8:47:66:DE:0B:98:53:E7:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eX8qOYyhyA1u-CT4R2beC5hT52k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cbd23-4436-4214-b582-4467463cb02b/1/KZ-sRRKApQBFTW0un670L165yB0.roa
Signing time: Sat 01 Jan 2022 11:05:05 +0000
ROA not before: Sat 01 Jan 2022 11:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 80.71.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14913201 (0xe38eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797f2a398ca1c80d6ef824f84766de0b9853e769
Validity
Not Before: Jan 1 11:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=299fac451280a500454d6d2e9faef42f5eb9c81d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:af:51:f0:89:bb:99:98:95:c6:54:53:25:bf:
3d:a7:36:37:09:9c:ec:92:16:7e:2f:ac:17:e5:99:
e6:e1:80:45:5e:f3:ba:65:5f:af:3f:75:a2:ce:f0:
47:ec:4a:15:e6:bf:0c:84:d3:7b:cd:9e:b8:23:15:
97:8e:47:64:76:e5:a7:5d:cf:50:de:45:e7:a0:e2:
56:74:0d:86:51:6a:c1:97:10:83:a8:a5:82:38:f8:
ad:5b:e8:47:b9:57:25:fc:d4:fa:2c:1d:4d:1a:a8:
ad:15:83:0d:0e:6f:97:af:f6:1d:34:76:6c:0b:66:
15:3e:ba:6b:7d:cc:92:4a:19:6e:64:23:b2:00:0f:
65:10:77:9e:0d:18:9e:82:a9:ef:92:de:50:0e:5f:
7b:ed:54:60:99:c2:7d:7d:92:86:fd:42:78:89:44:
30:17:96:b9:bc:9a:97:2c:72:cf:3e:0a:77:01:18:
18:0c:df:be:2c:08:da:d9:76:4c:ec:d8:bf:52:65:
43:99:9c:55:5e:56:45:b9:6f:85:8f:07:11:ce:0d:
73:15:54:ea:5f:8b:68:3e:d9:30:06:0f:14:3e:6e:
b0:85:be:8d:9a:0f:4e:f0:78:67:70:81:30:2d:15:
ac:a6:31:c4:1c:da:24:7c:58:c9:7a:ff:99:42:4d:
73:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9F:AC:45:12:80:A5:00:45:4D:6D:2E:9F:AE:F4:2F:5E:B9:C8:1D
X509v3 Authority Key Identifier:
keyid:79:7F:2A:39:8C:A1:C8:0D:6E:F8:24:F8:47:66:DE:0B:98:53:E7:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eX8qOYyhyA1u-CT4R2beC5hT52k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cbd23-4436-4214-b582-4467463cb02b/1/KZ-sRRKApQBFTW0un670L165yB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cbd23-4436-4214-b582-4467463cb02b/1/eX8qOYyhyA1u-CT4R2beC5hT52k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.152.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d7:c1:4d:12:e6:d4:cd:7d:2c:93:13:29:30:a4:dc:aa:47:
1e:ad:d0:82:2f:c6:1b:5e:d9:89:22:51:6d:9c:87:97:ec:8b:
9d:52:5f:bb:a2:33:b0:a0:02:aa:cb:d2:68:92:f5:eb:c5:15:
31:b3:bb:03:1d:0c:96:4c:f3:d2:f5:e5:47:b3:0d:3f:37:0a:
ad:9d:9a:bb:e3:9e:e4:9f:7f:20:73:8b:fe:09:65:ee:fe:a9:
8c:f4:c0:8a:45:14:0f:ed:78:66:6e:3e:81:fd:78:46:92:0b:
28:5f:98:e6:23:f2:64:e9:ad:b4:a5:5e:7a:5d:2e:d6:32:34:
f8:b6:bc:72:dd:62:62:8b:a3:7e:6a:82:d8:a1:08:33:fb:44:
aa:40:d6:b1:45:35:61:da:7b:59:0c:99:5c:d5:a9:4d:8c:de:
ee:67:b4:78:6e:7f:41:e8:83:56:28:3e:ba:e3:48:b9:9a:53:
c8:ee:73:98:b1:f9:33:f5:8e:f7:d4:ec:85:16:8e:6a:f9:b4:
4d:89:48:b4:aa:7d:90:f2:96:9b:21:1e:00:f4:be:2a:9e:bc:
df:ba:8f:23:bc:fd:27:52:64:0b:b7:14:a8:60:bd:c5:08:cc:
9f:8c:c1:4f:bb:ac:6d:76:63:98:86:4c:cf:fc:73:f9:7b:87:
40:5a:b2:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:29 2024 by rpki-client on console-fra.rpki-client.org