Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e32f2e-35db-4afc-9c3b-cab8ef3902a4/1/l-6Fjxe1U3IsSbzvi5N5R8p6cCY.roa
File: l-6Fjxe1U3IsSbzvi5N5R8p6cCY.roa (raw, json)
Hash identifier: MIom/3gwet/sjI1ECZuu4TESVlZAbkghw95McBPZ8AY=
Subject key identifier: 97:EE:85:8F:17:B5:53:72:2C:49:BC:EF:8B:93:79:47:CA:7A:70:26
Certificate issuer: /CN=9429b3a490ec87dfae0b88a6b6c89acdd3cbb7cf
Certificate serial: 0185703050BA4D9F12AC046FE0C3A56F60AB
Authority key identifier: 94:29:B3:A4:90:EC:87:DF:AE:0B:88:A6:B6:C8:9A:CD:D3:CB:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCmzpJDsh9-uC4imtsiazdPLt88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e32f2e-35db-4afc-9c3b-cab8ef3902a4/1/l-6Fjxe1U3IsSbzvi5N5R8p6cCY.roa
Signing time: Mon 02 Jan 2023 01:54:52 +0000
ROA not before: Mon 02 Jan 2023 01:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 80.71.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:50:ba:4d:9f:12:ac:04:6f:e0:c3:a5:6f:60:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9429b3a490ec87dfae0b88a6b6c89acdd3cbb7cf
Validity
Not Before: Jan 2 01:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97ee858f17b553722c49bcef8b937947ca7a7026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:eb:1a:76:52:97:c9:ec:98:f1:6b:51:df:ef:
d9:71:ee:c0:86:5c:85:22:b1:1e:f3:12:dd:07:1e:
80:71:c9:b9:82:ce:8b:20:03:2b:06:bf:c8:51:e2:
ec:6c:14:18:90:89:93:06:68:66:e7:bd:f8:a9:59:
f7:a3:d9:5b:dc:a5:47:ba:b8:0b:2c:01:1d:57:51:
d6:58:30:0e:4f:7a:d7:b6:92:13:57:98:70:95:bf:
04:b0:47:b9:45:50:f9:8c:66:93:c9:0b:f4:e5:93:
32:4e:a4:59:82:bf:0a:b6:0f:d4:7e:58:33:0b:6a:
ca:14:9a:95:d6:f4:ea:52:bc:cd:82:01:33:69:94:
29:a0:d1:94:9a:92:e7:1a:41:4e:85:77:48:2d:14:
86:21:c6:9d:18:83:15:5a:a9:c9:6d:bf:fc:b2:14:
07:5a:d5:be:00:73:21:6b:66:0f:16:ff:e1:02:4f:
a9:48:eb:27:59:79:d4:29:62:1e:bc:6a:65:4c:75:
32:6d:af:ab:77:20:3a:c7:77:0e:31:ad:9a:5f:58:
8d:d0:ee:63:e1:24:a3:0f:bc:5f:f8:21:35:96:39:
df:ce:38:cf:a4:93:30:53:c7:bb:d3:03:43:8f:9d:
b4:db:34:06:2b:4b:ac:f5:53:7a:d9:af:48:5b:2b:
40:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EE:85:8F:17:B5:53:72:2C:49:BC:EF:8B:93:79:47:CA:7A:70:26
X509v3 Authority Key Identifier:
keyid:94:29:B3:A4:90:EC:87:DF:AE:0B:88:A6:B6:C8:9A:CD:D3:CB:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCmzpJDsh9-uC4imtsiazdPLt88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e32f2e-35db-4afc-9c3b-cab8ef3902a4/1/l-6Fjxe1U3IsSbzvi5N5R8p6cCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e32f2e-35db-4afc-9c3b-cab8ef3902a4/1/lCmzpJDsh9-uC4imtsiazdPLt88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.149.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:d6:3b:e1:c8:61:40:38:5d:0d:93:9a:56:15:b8:44:b0:f7:
11:b2:7a:6c:12:65:88:a3:bc:bb:a9:4a:44:87:36:11:2a:09:
06:2b:9a:40:12:5a:da:0b:4b:6c:d0:ac:54:3a:be:dc:58:45:
6d:9b:55:db:70:82:64:df:66:6e:a5:24:e6:a1:fa:d1:37:01:
d3:8d:27:ec:d6:b2:fc:d6:b9:03:8c:4a:6c:30:18:65:fc:f0:
71:49:78:ce:d0:ab:2f:ea:4f:6e:c8:46:b9:e4:21:bc:27:4b:
13:6e:fa:51:47:fc:87:a8:d6:7a:a9:69:f6:c9:cb:e6:7e:c6:
a4:17:bd:76:00:8f:2f:6a:74:3f:a0:a3:87:a2:58:f8:99:1e:
da:2d:9a:d6:bd:53:25:3c:da:57:01:63:72:82:1a:4f:bc:e8:
5e:28:a6:82:c5:5e:c3:27:67:65:c0:7e:45:6c:78:91:3c:97:
68:b4:e9:9f:f6:03:a0:bc:07:87:75:43:61:05:4f:40:c9:9c:
38:6f:46:cb:7e:5c:b7:e3:08:bb:1d:b0:86:0e:09:81:29:aa:
a2:39:11:5b:d6:9f:e1:1a:44:80:76:9c:9d:90:05:92:07:29:
c4:f1:43:3e:53:f3:68:c5:33:2f:1b:b7:fa:1c:e3:70:1a:fa:
7e:cf:7f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 26 10:43:27 2023 by rpki-client on console-fra.rpki-client.org