Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/d4YbeMmWmyXeBM8u68uKWF25nwo.roa
File: d4YbeMmWmyXeBM8u68uKWF25nwo.roa (raw, json)
Hash identifier: qtZE6RS5BgKCqE6kopMvxaMLNpxuumjautrXypOIQx8=
Subject key identifier: 77:86:1B:78:C9:96:9B:25:DE:04:CF:2E:EB:CB:8A:58:5D:B9:9F:0A
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 0194266B5EB489E489DCDC798CC16CD6A24E
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/d4YbeMmWmyXeBM8u68uKWF25nwo.roa
Signing time: Thu 02 Jan 2025 09:49:18 +0000
ROA not before: Thu 02 Jan 2025 09:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204448
IP address blocks: 80.95.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:5e:b4:89:e4:89:dc:dc:79:8c:c1:6c:d6:a2:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 09:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77861b78c9969b25de04cf2eebcb8a585db99f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:99:09:a9:21:e2:b5:68:df:52:56:2f:b6:7d:
54:32:ae:ef:4f:42:76:c8:4d:16:9d:22:8c:5b:78:
76:f2:c2:2b:66:db:7b:9a:29:c3:7b:98:a9:7a:6c:
0c:ee:0a:af:1e:8e:ae:6a:83:a1:8a:91:01:f5:7b:
3c:a3:b1:02:a2:73:f2:6a:b1:87:37:b8:bc:07:96:
69:cf:c1:70:76:e7:95:9f:eb:59:3e:09:2c:e6:ae:
e2:5c:cc:4b:75:55:2e:e5:4a:c5:ca:ae:88:07:80:
10:ee:b9:55:40:20:19:88:2d:9d:09:fc:cc:90:a1:
af:47:c9:d4:cd:12:e9:94:5b:a4:57:eb:48:dc:b1:
c3:b3:fc:ed:b4:17:41:ec:75:f7:8d:55:92:6c:7b:
b8:36:ee:86:a2:45:ef:a2:9e:64:73:45:51:f4:b5:
ce:28:42:4f:b9:40:47:46:2d:25:4c:17:f4:41:34:
01:a9:a4:d0:33:ba:40:4d:bb:cd:21:8d:fb:81:e3:
db:b9:92:05:30:66:06:86:38:fa:9a:37:0c:3a:b3:
55:24:4f:04:49:b1:5e:bd:6c:e6:f9:c7:53:fb:33:
ef:8c:ca:eb:bc:68:ce:97:d3:58:9b:5d:5a:91:c0:
de:6d:a4:ef:be:f6:92:ca:9e:01:32:cd:aa:f7:d4:
e4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:86:1B:78:C9:96:9B:25:DE:04:CF:2E:EB:CB:8A:58:5D:B9:9F:0A
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/d4YbeMmWmyXeBM8u68uKWF25nwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.23.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3b:bf:3e:12:03:d6:c1:b4:01:ca:c0:e2:12:08:10:95:7b:
1e:d4:a0:54:cd:60:75:8c:91:64:86:de:c3:95:f3:06:21:f1:
03:87:43:79:03:d1:5c:48:d8:42:0a:c0:c1:d3:45:6c:56:b3:
e1:4f:f0:68:0d:c6:d1:93:2a:e6:58:31:bd:0b:74:6a:c5:ac:
7d:3a:d7:bc:84:fc:47:6c:cc:33:c1:2f:72:a7:86:9a:0d:ec:
97:cf:d5:23:39:a7:50:fb:40:73:1a:b0:25:00:ba:a3:ed:70:
60:3c:69:1f:c2:26:8e:03:08:ed:94:c1:57:ae:e1:02:b0:92:
26:f5:6b:18:d6:b6:bf:81:f1:b8:a6:1d:40:1b:e6:6e:b5:c4:
db:82:e1:a7:ed:4d:d6:11:af:0d:b0:a7:40:63:7a:12:cd:e9:
15:8d:b7:a1:ca:8b:2e:a0:a3:b8:c4:c5:ad:00:8a:32:e3:e3:
7e:7a:67:c9:30:2a:3a:e0:c7:00:02:41:8b:4d:a7:dc:1a:fb:
65:47:36:22:cc:ce:f1:2a:e3:74:85:9e:e0:4d:19:1c:85:29:
ba:97:5b:7f:1a:36:ab:84:b6:fd:bb:93:77:24:f8:f6:65:b9:
26:34:40:3f:19:48:a1:b3:fd:d2:da:a0:84:81:0c:f0:4f:f6:
18:52:ce:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:03:19 2025 by rpki-client