Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/a4bda2-e507-407a-a2bb-75c937bf1da0/1/kcHRrJxmHB1GMll2I7EEl8JyQLQ.roa
File: kcHRrJxmHB1GMll2I7EEl8JyQLQ.roa (raw, json)
Hash identifier: Z3/DPHqWZGFKwRdk5DL/Lmt6PyL9flk9osRq/LYGEoY=
Subject key identifier: 91:C1:D1:AC:9C:66:1C:1D:46:32:59:76:23:B1:04:97:C2:72:40:B4
Certificate issuer: /CN=d18127744b4c665c2ef9dea4df867b543ac65669
Certificate serial: 0893FBDE
Authority key identifier: D1:81:27:74:4B:4C:66:5C:2E:F9:DE:A4:DF:86:7B:54:3A:C6:56:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YEndEtMZlwu-d6k34Z7VDrGVmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/a4bda2-e507-407a-a2bb-75c937bf1da0/1/kcHRrJxmHB1GMll2I7EEl8JyQLQ.roa
Signing time: Sat 01 Jan 2022 15:06:50 +0000
ROA not before: Sat 01 Jan 2022 15:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204448
IP address blocks: 80.95.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143915998 (0x893fbde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18127744b4c665c2ef9dea4df867b543ac65669
Validity
Not Before: Jan 1 15:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91c1d1ac9c661c1d4632597623b10497c27240b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:03:91:ea:2d:92:38:0e:0f:3a:29:d1:15:53:
ef:33:35:f4:01:dd:6f:7e:6a:7e:73:39:6d:a7:9a:
04:64:6e:21:23:4b:d9:eb:2e:61:d7:15:bb:bc:83:
e1:96:9e:22:f9:93:03:98:6a:03:20:41:5e:aa:cd:
dc:51:0b:6a:78:59:b0:56:bc:da:68:72:69:c4:94:
3b:ae:65:44:97:ad:7d:6b:87:36:16:42:d0:40:3a:
6c:86:eb:e6:1a:43:03:d3:cf:44:86:94:e7:83:12:
36:c8:7b:ba:74:10:e9:83:e3:ac:74:5a:fa:61:12:
b3:1b:e1:f3:82:36:c5:5f:9a:a1:84:5f:fa:4b:3b:
7b:e5:08:35:7f:6b:d9:bd:53:53:df:f1:ae:a5:72:
d8:cd:78:21:4c:df:71:3a:53:b6:44:90:e3:9b:4d:
49:4c:d8:35:ea:74:c7:4f:f9:80:3e:b4:0b:9d:14:
49:61:3c:64:df:dd:92:e8:09:f7:0f:8d:f4:3a:62:
00:ce:9d:ef:3f:18:38:40:99:4c:c1:95:92:ca:60:
06:8e:b2:32:12:cd:ea:cc:49:af:c6:4a:06:f9:60:
d8:b1:b1:fe:6b:14:fe:b2:49:e9:c6:9f:09:6a:7c:
dc:45:24:3d:46:c4:7d:3f:e0:09:f9:4e:fe:bc:8c:
01:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C1:D1:AC:9C:66:1C:1D:46:32:59:76:23:B1:04:97:C2:72:40:B4
X509v3 Authority Key Identifier:
keyid:D1:81:27:74:4B:4C:66:5C:2E:F9:DE:A4:DF:86:7B:54:3A:C6:56:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YEndEtMZlwu-d6k34Z7VDrGVmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/a4bda2-e507-407a-a2bb-75c937bf1da0/1/kcHRrJxmHB1GMll2I7EEl8JyQLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/a4bda2-e507-407a-a2bb-75c937bf1da0/1/0YEndEtMZlwu-d6k34Z7VDrGVmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.23.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f6:2b:9e:98:45:b5:a0:6f:69:51:47:e5:c0:28:4b:cf:b1:
91:b5:a6:ed:93:77:3b:20:8f:fe:4e:6b:f6:39:5a:7c:e3:6e:
b4:fd:64:e8:13:18:80:aa:e3:69:cb:d7:88:a9:19:95:99:15:
bf:7f:a2:2b:07:2a:45:4c:9d:a8:03:84:cb:f3:b3:16:a8:2b:
60:0e:16:62:97:e4:b7:e8:d8:20:30:ac:e6:6c:4f:67:34:70:
13:4c:95:b4:1d:3d:9b:77:2d:a7:cd:00:ab:7c:56:61:93:80:
2d:f3:0c:27:df:14:ef:ca:e5:57:c5:26:14:4f:7b:d0:f7:25:
1e:64:69:32:5d:8b:29:1f:a6:dc:0c:c9:2b:44:65:bc:e9:9d:
0e:7b:ec:c7:c0:e9:9c:dd:c0:65:2b:0a:09:90:db:74:3c:3e:
64:52:09:a5:24:8b:03:b6:78:f5:fc:c8:b9:d1:31:6b:14:c9:
8c:83:15:e1:d8:0e:88:e4:8d:9e:44:d2:d4:47:51:b5:4f:d5:
95:cd:1a:e0:27:72:dd:b5:ab:e7:cf:e4:82:87:e0:c7:a6:a7:
e1:c7:37:0b:7b:7b:45:88:19:3f:08:4f:a4:21:cf:c5:c8:99:
bb:7a:96:9f:38:ad:e1:3e:f8:b2:77:44:72:94:f4:ab:f7:87:
a0:68:0e:fb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECJP73jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MTgxMjc3NDRiNGM2NjVjMmVmOWRlYTRkZjg2N2I1NDNhYzY1NjY5MB4XDTIyMDEw
MTE1MDY1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTFjMWQxYWM5YzY2
MWMxZDQ2MzI1OTc2MjNiMTA0OTdjMjcyNDBiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOIDkeotkjgODzop0RVT7zM19AHdb35qfnM5baeaBGRuISNL
2esuYdcVu7yD4ZaeIvmTA5hqAyBBXqrN3FELanhZsFa82mhyacSUO65lRJetfWuH
NhZC0EA6bIbr5hpDA9PPRIaU54MSNsh7unQQ6YPjrHRa+mESsxvh84I2xV+aoYRf
+ks7e+UINX9r2b1TU9/xrqVy2M14IUzfcTpTtkSQ45tNSUzYNep0x0/5gD60C50U
SWE8ZN/dkugJ9w+N9DpiAM6d7z8YOECZTMGVkspgBo6yMhLN6sxJr8ZKBvlg2LGx
/msU/rJJ6cafCWp83EUkPUbEfT/gCflO/ryMAUMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSRwdGsnGYcHUYyWXYjsQSXwnJAtDAfBgNVHSMEGDAWgBTRgSd0S0xmXC75
3qTfhntUOsZWaTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBZRW5kRXRNWmx3dS1kNmszNFo3VkRyR1Ztay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvYTRiZGEyLWU1MDctNDA3YS1hMmJiLTc1YzkzN2JmMWRhMC8x
L2tjSFJySnhtSEIxR01sbDJJN0VFbDhKeVFMUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
YTRiZGEyLWU1MDctNDA3YS1hMmJiLTc1YzkzN2JmMWRhMC8xLzBZRW5kRXRNWmx3
dS1kNmszNFo3VkRyR1Ztay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFBfFzANBgkqhkiG9w0BAQsFAAOC
AQEAF/YrnphFtaBvaVFH5cAoS8+xkbWm7ZN3OyCP/k5r9jlafONutP1k6BMYgKrj
acvXiKkZlZkVv3+iKwcqRUydqAOEy/OzFqgrYA4WYpfkt+jYIDCs5mxPZzRwE0yV
tB09m3ctp80Aq3xWYZOALfMMJ98U78rlV8UmFE970PclHmRpMl2LKR+m3AzJK0Rl
vOmdDnvsx8DpnN3AZSsKCZDbdDw+ZFIJpSSLA7Z49fzIudExaxTJjIMV4dgOiOSN
nkTS1EdRtU/Vlc0a4Cdy3bWr58/kgofgx6an4cc3C3t7RYgZPwhPpCHPxciZu3qW
nzit4T74sndEcpT0q/eHoGgO+w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:12 2025 by rpki-client