Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/onMbl4g4taLIWierpOSJT-9JaBw.roa
File: onMbl4g4taLIWierpOSJT-9JaBw.roa (raw, json)
Hash identifier: KzpYotOBDg1QZIo3bfhkWW53gekQuaN2FWtiTjnqdPs=
Subject key identifier: A2:73:1B:97:88:38:B5:A2:C8:5A:27:AB:A4:E4:89:4F:EF:49:68:1C
Certificate issuer: /CN=c9769bfa59865d0c9593262881807db13f4bb87a
Certificate serial: 01856DDD33EA6AF032CD12FA4EB55A97681B
Authority key identifier: C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/onMbl4g4taLIWierpOSJT-9JaBw.roa
Signing time: Sun 01 Jan 2023 15:04:51 +0000
ROA not before: Sun 01 Jan 2023 15:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 80.71.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:33:ea:6a:f0:32:cd:12:fa:4e:b5:5a:97:68:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9769bfa59865d0c9593262881807db13f4bb87a
Validity
Not Before: Jan 1 15:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2731b978838b5a2c85a27aba4e4894fef49681c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:25:97:75:65:39:71:5f:ff:77:d2:d3:d8:8c:
9d:e4:e2:f6:1b:9e:44:a0:e8:b8:ae:db:64:54:e3:
8c:8a:f4:a7:bc:11:09:d1:02:fb:b7:a7:98:de:22:
f1:6f:54:ca:dd:37:b4:12:cd:16:24:f7:43:6c:87:
eb:4b:c3:85:52:a4:e5:5e:93:46:0e:29:c6:bd:fc:
bb:92:d6:ab:a4:9c:00:ce:d4:da:91:ee:7d:8a:af:
57:10:dc:d0:78:45:94:61:92:88:93:c8:66:ef:05:
58:9a:8b:4f:b2:71:c4:bc:39:ba:d4:50:cd:9d:d7:
95:d1:7f:8c:5c:fc:19:4a:f9:c0:76:16:e3:67:53:
76:e4:c4:83:1b:63:a5:5f:18:59:2b:8d:f4:7c:d3:
53:48:60:f5:31:87:93:43:af:a2:82:99:c6:f6:3c:
9b:44:77:6c:9a:a0:74:c3:ff:85:ff:2f:54:84:66:
03:3f:05:f5:42:2f:4a:8e:2f:eb:cb:b8:c1:89:17:
95:b1:3f:14:e2:1c:3d:bb:89:2f:fe:c0:4f:05:16:
6f:8b:95:90:3b:c8:49:88:e2:a6:b8:0b:13:dd:51:
60:45:68:91:db:39:bb:83:bc:b6:23:e0:37:da:de:
a2:62:6f:2f:53:d0:44:e0:40:fa:c4:96:b2:02:9d:
04:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:73:1B:97:88:38:B5:A2:C8:5A:27:AB:A4:E4:89:4F:EF:49:68:1C
X509v3 Authority Key Identifier:
keyid:C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/onMbl4g4taLIWierpOSJT-9JaBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/yXab-lmGXQyVkyYogYB9sT9LuHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.144.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:1e:dd:c8:89:57:9d:22:d9:f4:e0:00:e3:1d:6e:a3:d1:bf:
bb:72:f4:b1:cf:56:53:9b:e9:ed:08:70:b7:ad:74:23:b1:25:
ea:7b:76:ff:d8:68:3f:9b:4f:49:d3:6b:03:c2:1c:2a:25:97:
bd:4d:03:5b:58:68:6c:75:fe:9a:1e:aa:11:86:95:4e:13:74:
be:d7:36:16:81:02:62:b9:d8:80:da:24:0a:96:25:74:33:8b:
3d:32:60:0b:cf:0d:f6:b5:aa:03:51:4b:d5:f5:7b:1b:d2:57:
1c:d2:2c:ce:37:8f:3a:2e:d1:04:d8:83:bb:f3:2e:b6:3f:94:
02:09:b2:a2:6b:cd:50:8c:0c:23:d9:d4:bc:d9:7c:b1:52:42:
1e:aa:14:66:b5:1e:46:6f:97:54:1a:80:3a:10:9b:43:84:1e:
2d:c6:66:22:ce:2f:80:0f:23:7b:15:40:ee:fd:20:1a:58:b5:
15:5d:63:bd:3f:b3:c3:6d:a9:1c:f7:01:6c:01:62:9c:58:ff:
ee:64:a9:c5:88:03:30:2e:52:8e:5e:74:2f:01:dd:12:bc:53:
0d:f4:bd:35:70:47:bc:da:13:fb:4b:c6:ce:22:86:35:ef:0d:
a5:05:0c:70:58:a5:f7:fe:a2:36:3e:f5:f5:d2:cd:31:6e:85:
35:75:bd:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org