Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/9q7r8UQ7FXNxXwweSagEF0qtkO4.roa
File: 9q7r8UQ7FXNxXwweSagEF0qtkO4.roa (raw, json)
Hash identifier: ZTy3K5HQYm4i70yLiT3IzcsFRBoALCeYdcMNnEIysHw=
Subject key identifier: F6:AE:EB:F1:44:3B:15:73:71:5F:0C:1E:49:A8:04:17:4A:AD:90:EE
Certificate issuer: /CN=c9769bfa59865d0c9593262881807db13f4bb87a
Certificate serial: 01856DDD320C9FB5A9126CD11B554CC836BD
Authority key identifier: C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/9q7r8UQ7FXNxXwweSagEF0qtkO4.roa
Signing time: Sun 01 Jan 2023 15:04:50 +0000
ROA not before: Sun 01 Jan 2023 15:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 80.71.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:32:0c:9f:b5:a9:12:6c:d1:1b:55:4c:c8:36:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9769bfa59865d0c9593262881807db13f4bb87a
Validity
Not Before: Jan 1 15:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6aeebf1443b1573715f0c1e49a804174aad90ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:28:00:b1:3b:a4:cc:07:a3:ea:6a:d0:68:7a:
9c:5a:a3:47:96:d2:43:69:86:2b:b2:da:33:92:89:
1f:e2:2a:8a:7e:0c:d5:8f:61:c2:5f:04:c5:ff:7a:
48:15:b6:59:a8:92:0e:59:95:b4:35:7c:b6:e1:ae:
50:be:a6:64:e3:bb:d5:da:d7:6e:66:f4:09:f9:93:
19:2d:7a:0b:62:7b:09:e6:cc:b6:90:e2:d2:d0:6c:
4f:fe:e5:3a:7b:89:11:f4:63:e4:8d:42:bf:21:50:
ab:2a:e8:fe:c2:19:98:9b:36:2c:a1:83:52:03:1f:
f7:e8:18:68:cb:70:0a:07:27:f9:34:70:8a:b3:2c:
b7:58:13:c6:31:bd:b2:f0:83:94:7f:75:fa:4a:03:
82:07:80:45:db:26:d3:c2:65:b2:df:0b:ea:3a:dd:
ba:ac:3f:1a:eb:39:2e:1c:d3:09:77:a9:f8:65:b2:
77:55:d7:ab:a2:22:f4:9a:e2:d6:31:f6:60:65:d3:
5e:e7:81:36:f8:46:d6:fd:a0:45:d1:54:98:82:8f:
ac:4a:9b:5f:bf:5e:0b:ed:da:04:49:df:a8:b8:d7:
59:a1:3d:5b:d4:7e:db:ce:ea:0f:2c:7a:97:c7:0e:
c9:98:35:f8:75:c3:c8:c6:b9:9e:4f:83:91:4e:e3:
35:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AE:EB:F1:44:3B:15:73:71:5F:0C:1E:49:A8:04:17:4A:AD:90:EE
X509v3 Authority Key Identifier:
keyid:C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/9q7r8UQ7FXNxXwweSagEF0qtkO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/yXab-lmGXQyVkyYogYB9sT9LuHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.144.0/24
Signature Algorithm: sha256WithRSAEncryption
39:d1:95:fe:2e:63:d3:89:cd:11:c4:4d:3c:b7:22:47:96:fb:
8f:ef:da:64:ed:ef:64:35:29:1d:62:5f:5a:be:0b:cf:7f:8b:
12:53:97:1c:07:61:9f:7a:76:54:ff:fd:db:e8:e9:35:81:3d:
47:3f:3b:e1:5d:09:ed:be:8c:0a:70:e0:99:ef:96:00:05:12:
bb:5b:a6:e2:72:6b:f2:97:d3:d8:30:89:e9:22:b8:0f:5f:b2:
bb:80:b7:85:ca:c4:2f:8e:d4:eb:13:20:07:8f:51:42:28:1c:
19:c3:39:9a:01:63:41:91:07:77:6d:c7:d6:4b:d2:43:39:79:
bb:4a:14:b4:ba:b2:36:0d:d4:2d:78:d0:11:aa:ae:6f:cf:9f:
d5:36:e8:0d:28:1c:05:ec:0c:7a:46:05:78:ff:e4:53:fd:8e:
0b:aa:bb:c9:ed:e5:88:39:5b:4b:06:2c:60:b9:63:fa:d0:11:
b4:4c:4a:bd:2b:15:4e:7b:e8:36:a4:0b:ff:a7:fb:b3:f7:68:
6d:dd:4d:b6:2d:cd:8c:51:32:36:f4:fd:ca:e9:80:98:fb:08:
16:d1:73:42:26:6d:7c:68:12:df:0f:da:fd:63:b8:4e:69:a2:
d0:91:3c:64:d9:6b:b3:c9:93:03:90:e9:c6:e2:88:c9:ff:0d:
86:7b:59:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org