Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/b96776-a7d6-4de3-a4e0-23769c32ccad/1/b_qi7i-dGc1bXIvNdeT10KXhPrQ.roa
File: b_qi7i-dGc1bXIvNdeT10KXhPrQ.roa (raw, json)
Hash identifier: AMCn1v9rmWgec2lOFs5HYsp8zO3rxSWgkCrMOoEoFJo=
Subject key identifier: 6F:FA:A2:EE:2F:9D:19:CD:5B:5C:8B:CD:75:E4:F5:D0:A5:E1:3E:B4
Certificate issuer: /CN=276c1af119e3147af4d1b4e99924d9c6e4a09553
Certificate serial: 01882086B9C6C347502F64F64047AB8AE0F3
Authority key identifier: 27:6C:1A:F1:19:E3:14:7A:F4:D1:B4:E9:99:24:D9:C6:E4:A0:95:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J2wa8RnjFHr00bTpmSTZxuSglVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/b96776-a7d6-4de3-a4e0-23769c32ccad/1/b_qi7i-dGc1bXIvNdeT10KXhPrQ.roa
Signing time: Mon 15 May 2023 17:48:00 +0000
ROA not before: Mon 15 May 2023 17:48:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 80.71.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b9:c6:c3:47:50:2f:64:f6:40:47:ab:8a:e0:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=276c1af119e3147af4d1b4e99924d9c6e4a09553
Validity
Not Before: May 15 17:48:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ffaa2ee2f9d19cd5b5c8bcd75e4f5d0a5e13eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:75:83:3c:3b:c9:ef:15:0a:3d:4a:2a:38:cb:
78:96:0c:2d:02:e6:fa:ef:0a:f6:d3:2f:cd:e6:64:
c5:a4:17:a6:b3:31:ce:dd:0c:e7:a1:82:ec:fd:60:
b2:04:fd:81:2d:6d:83:4b:27:e2:ca:18:73:87:52:
d6:0d:80:48:2f:49:0f:30:2a:ab:da:12:dd:c9:cc:
b4:22:29:0a:13:b9:16:9e:5e:89:77:ac:40:2f:51:
b2:89:0c:da:de:5d:73:d8:e9:0c:14:79:7e:0e:6b:
15:35:22:34:cf:b3:b0:17:66:6d:94:1c:3c:a5:5c:
4f:25:f0:5c:a2:a8:b0:62:56:c8:f1:f1:5c:fb:cf:
bf:46:51:2f:5a:9e:9a:2a:4e:0f:58:43:b4:55:8f:
51:90:12:e7:8d:7b:76:7d:2f:42:7c:91:d8:48:2f:
fd:18:8d:74:25:fe:5c:3b:c8:61:32:b5:e0:90:29:
c8:25:f8:8b:2a:45:65:25:45:a8:c4:0f:f9:8b:89:
89:6a:69:44:d1:62:27:4e:a5:04:d7:33:3a:68:8e:
2c:0f:3e:c1:c7:43:4a:53:38:3a:d9:70:26:e9:f5:
84:f1:7e:77:e5:89:3c:79:9f:5f:58:fc:87:9b:54:
71:97:dc:cb:db:99:d8:3b:87:a0:8a:bb:c2:b5:c2:
a8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FA:A2:EE:2F:9D:19:CD:5B:5C:8B:CD:75:E4:F5:D0:A5:E1:3E:B4
X509v3 Authority Key Identifier:
keyid:27:6C:1A:F1:19:E3:14:7A:F4:D1:B4:E9:99:24:D9:C6:E4:A0:95:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J2wa8RnjFHr00bTpmSTZxuSglVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b96776-a7d6-4de3-a4e0-23769c32ccad/1/b_qi7i-dGc1bXIvNdeT10KXhPrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b96776-a7d6-4de3-a4e0-23769c32ccad/1/J2wa8RnjFHr00bTpmSTZxuSglVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.151.0/24
Signature Algorithm: sha256WithRSAEncryption
05:06:a9:62:f5:7d:a6:6e:ce:1b:12:7b:8c:f6:39:db:49:e6:
88:d9:73:c2:4d:ec:46:23:35:1a:a1:06:c6:c0:da:ea:93:1b:
cd:42:a7:bb:49:1b:e2:b8:b3:c7:da:62:df:b4:bf:74:eb:10:
2b:50:dc:36:16:75:7e:2e:96:d1:b5:6c:e1:4d:3c:c6:0a:79:
d2:53:ea:c4:50:b5:56:4e:5b:dc:0c:31:04:70:d4:4e:d9:ba:
cc:e6:f0:97:66:5e:36:29:7d:32:4c:56:66:8f:52:dd:be:ba:
16:4e:23:12:ff:c9:a9:c9:2f:c0:39:d4:c8:1e:e7:66:42:db:
02:e7:97:25:0d:fb:3d:c9:39:c9:66:c4:ab:fe:89:14:a9:80:
64:7b:07:dd:b0:a4:aa:39:32:e4:21:e9:98:cb:a9:35:14:bc:
41:87:f1:96:9c:a3:70:0a:f6:df:b9:4c:d4:7e:e8:a8:b8:f2:
af:af:a4:e4:2b:16:66:36:09:e7:5a:a0:50:3e:dc:04:37:07:
64:40:ed:4e:1e:46:43:32:0c:db:12:b1:07:e7:bc:69:21:d2:
80:a5:69:e0:14:3b:d7:17:a0:58:2b:15:56:2a:a6:08:a8:4d:
60:5b:ad:3e:57:01:33:32:e5:64:a9:e5:c5:56:0a:50:25:10:
ef:fd:b4:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgghrnGw0dQL2T2QEeriuDzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3NmMxYWYxMTllMzE0N2FmNGQxYjRlOTk5MjRkOWM2ZTRh
MDk1NTMwHhcNMjMwNTE1MTc0ODAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmZhYTJlZTJmOWQxOWNkNWI1YzhiY2Q3NWU0ZjVkMGE1ZTEzZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3WDPDvJ7xUKPUoqOMt4lgwtAub6
7wr20y/N5mTFpBemszHO3QznoYLs/WCyBP2BLW2DSyfiyhhzh1LWDYBIL0kPMCqr
2hLdycy0IikKE7kWnl6Jd6xAL1GyiQza3l1z2OkMFHl+DmsVNSI0z7OwF2ZtlBw8
pVxPJfBcoqiwYlbI8fFc+8+/RlEvWp6aKk4PWEO0VY9RkBLnjXt2fS9CfJHYSC/9
GI10Jf5cO8hhMrXgkCnIJfiLKkVlJUWoxA/5i4mJamlE0WInTqUE1zM6aI4sDz7B
x0NKUzg62XAm6fWE8X535Yk8eZ9fWPyHm1Rxl9zL25nYO4egirvCtcKoawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG/6ou4vnRnNW1yLzXXk9dCl4T60MB8GA1UdIwQY
MBaAFCdsGvEZ4xR69NG06Zkk2cbkoJVTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjJ3YThSbmpGSHIwMGJUcG1TVFp4dVNnbFZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9iOTY3NzYtYTdkNi00ZGUzLWE0ZTAt
MjM3NjljMzJjY2FkLzEvYl9xaTdpLWRHYzFiWEl2TmRlVDEwS1hoUHJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9iOTY3NzYtYTdkNi00ZGUzLWE0ZTAtMjM3NjljMzJjY2Fk
LzEvSjJ3YThSbmpGSHIwMGJUcG1TVFp4dVNnbFZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEeXMA0G
CSqGSIb3DQEBCwUAA4IBAQAFBqli9X2mbs4bEnuM9jnbSeaI2XPCTexGIzUaoQbG
wNrqkxvNQqe7SRviuLPH2mLftL906xArUNw2FnV+LpbRtWzhTTzGCnnSU+rEULVW
TlvcDDEEcNRO2brM5vCXZl42KX0yTFZmj1LdvroWTiMS/8mpyS/AOdTIHudmQtsC
55clDfs9yTnJZsSr/okUqYBkewfdsKSqOTLkIemYy6k1FLxBh/GWnKNwCvbfuUzU
fuiouPKvr6TkKxZmNgnnWqBQPtwENwdkQO1OHkZDMgzbErEH57xpIdKApWngFDvX
F6BYKxVWKqYIqE1gW60+VwEzMuVkqeXFVgpQJRDv/bQ0
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:32 2025 by rpki-client