Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/efdd3e-07e4-4254-a0f4-d10f940228f4/1/hpW0isuh4jp-tXATvv-4QABDZgc.roa
File: hpW0isuh4jp-tXATvv-4QABDZgc.roa (raw, json)
Hash identifier: JN45FD4otah1CbFjY+g2UAwPyWZPSnNnJUt9aufXfTc=
Subject key identifier: 86:95:B4:8A:CB:A1:E2:3A:7E:B5:70:13:BE:FF:B8:40:00:43:66:07
Certificate issuer: /CN=c4e9b1784a2d3decd168b4aee668d8ffc4f51d3c
Certificate serial: DD2B4D
Authority key identifier: C4:E9:B1:78:4A:2D:3D:EC:D1:68:B4:AE:E6:68:D8:FF:C4:F5:1D:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xOmxeEotPezRaLSu5mjY_8T1HTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/efdd3e-07e4-4254-a0f4-d10f940228f4/1/hpW0isuh4jp-tXATvv-4QABDZgc.roa
Signing time: Sat 01 Jan 2022 04:59:49 +0000
ROA not before: Sat 01 Jan 2022 04:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 80.71.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14494541 (0xdd2b4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4e9b1784a2d3decd168b4aee668d8ffc4f51d3c
Validity
Not Before: Jan 1 04:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8695b48acba1e23a7eb57013beffb84000436607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:72:9e:7b:5c:50:33:55:45:1c:33:0b:bb:
9f:11:6b:41:8c:f1:be:14:cf:71:7d:27:28:c6:2b:
f8:cb:f7:75:c0:89:04:71:63:e4:f0:00:d4:2c:7e:
62:2a:90:cf:9c:98:6f:fa:ff:74:8b:3c:0a:36:74:
7b:61:94:54:43:f8:89:9f:b7:98:24:08:8c:a4:cf:
36:79:77:22:36:9e:52:07:b5:73:ca:ec:7e:80:3f:
76:4e:af:77:1f:e2:33:bb:d3:66:21:36:c1:07:df:
6d:6f:a0:41:12:ae:26:cc:58:ca:3a:d3:8c:53:16:
ee:12:a4:2a:bb:5e:68:95:15:93:e3:93:c8:cd:ad:
99:5a:4c:a7:57:6d:39:55:21:bf:96:e4:c1:38:5c:
ed:68:39:ba:68:c0:0f:48:f8:f0:a7:43:a0:b3:c2:
b7:33:11:df:bf:d3:a6:c9:c4:b9:ee:5d:dc:65:39:
1d:6d:62:fb:6c:63:e2:bf:44:8e:d3:fe:6d:78:b7:
97:00:6c:15:0e:1f:52:e4:cd:8a:e6:19:b2:74:50:
62:c5:87:96:b5:5a:60:ef:00:cf:57:43:e7:1b:01:
90:51:aa:a7:5f:1f:9e:5d:aa:31:f0:b8:f9:97:53:
6e:e8:26:b4:fc:1d:3f:3b:6c:6a:fd:d6:f1:c9:b4:
a9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:95:B4:8A:CB:A1:E2:3A:7E:B5:70:13:BE:FF:B8:40:00:43:66:07
X509v3 Authority Key Identifier:
keyid:C4:E9:B1:78:4A:2D:3D:EC:D1:68:B4:AE:E6:68:D8:FF:C4:F5:1D:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xOmxeEotPezRaLSu5mjY_8T1HTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/efdd3e-07e4-4254-a0f4-d10f940228f4/1/hpW0isuh4jp-tXATvv-4QABDZgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/efdd3e-07e4-4254-a0f4-d10f940228f4/1/xOmxeEotPezRaLSu5mjY_8T1HTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.154.0/24
Signature Algorithm: sha256WithRSAEncryption
83:19:df:df:df:a1:f1:8e:50:c9:74:e4:55:40:0c:ba:33:d6:
1f:6b:31:bb:2e:1f:11:b7:df:d7:b8:e8:a2:16:16:6f:bc:fa:
ed:0e:9e:45:42:cb:f3:78:67:a7:af:33:52:59:5a:5b:2f:87:
60:a4:7c:c2:9b:26:da:eb:73:08:de:51:b3:eb:c7:69:83:c4:
d5:8c:a8:ab:89:a5:36:c3:22:2f:63:41:e3:8d:6c:f1:c6:e4:
69:6d:a4:19:7e:be:be:21:e5:55:ba:e4:c1:3e:93:b8:0b:32:
d1:f4:cd:fb:c9:4f:ad:7b:4b:4e:5d:d1:cb:d1:6b:6d:d0:47:
67:38:d7:9f:4b:56:e1:7b:7d:77:ba:32:f5:01:01:a0:84:16:
00:96:a3:aa:35:c6:1f:95:91:34:39:5b:c3:47:32:6e:96:31:
a3:8e:b5:24:c8:7a:30:ea:94:9d:80:e8:17:14:c2:9a:7f:d0:
58:79:c2:fe:2c:05:73:57:de:49:cb:c2:f4:a9:62:cf:08:28:
fd:6f:d7:fd:18:1f:e4:72:f6:73:b1:fd:5a:a3:ca:a3:94:ff:
f7:02:fd:a6:a3:5b:f9:ad:c2:c1:ef:56:7d:bb:1a:07:2f:25:
90:23:8d:13:d2:db:0b:58:55:f6:bb:e6:e6:bf:0f:c0:bd:9e:
e0:a4:9d:0c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAN0rTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NGU5YjE3ODRhMmQzZGVjZDE2OGI0YWVlNjY4ZDhmZmM0ZjUxZDNjMB4XDTIyMDEw
MTA0NTk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODY5NWI0OGFjYmEx
ZTIzYTdlYjU3MDEzYmVmZmI4NDAwMDQzNjYwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALd/cp57XFAzVUUcMwu7nxFrQYzxvhTPcX0nKMYr+Mv3dcCJ
BHFj5PAA1Cx+YiqQz5yYb/r/dIs8CjZ0e2GUVEP4iZ+3mCQIjKTPNnl3IjaeUge1
c8rsfoA/dk6vdx/iM7vTZiE2wQffbW+gQRKuJsxYyjrTjFMW7hKkKrteaJUVk+OT
yM2tmVpMp1dtOVUhv5bkwThc7Wg5umjAD0j48KdDoLPCtzMR37/TpsnEue5d3GU5
HW1i+2xj4r9EjtP+bXi3lwBsFQ4fUuTNiuYZsnRQYsWHlrVaYO8Az1dD5xsBkFGq
p18fnl2qMfC4+ZdTbugmtPwdPztsav3W8cm0qXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSGlbSKy6HiOn61cBO+/7hAAENmBzAfBgNVHSMEGDAWgBTE6bF4Si097NFo
tK7maNj/xPUdPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hPbXhlRW90UGV6UmFMU3U1bWpZXzhUMUhUdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWQvZWZkZDNlLTA3ZTQtNDI1NC1hMGY0LWQxMGY5NDAyMjhmNC8x
L2hwVzBpc3VoNGpwLXRYQVR2di00UUFCRFpnYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQv
ZWZkZDNlLTA3ZTQtNDI1NC1hMGY0LWQxMGY5NDAyMjhmNC8xL3hPbXhlRW90UGV6
UmFMU3U1bWpZXzhUMUhUdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFBHmjANBgkqhkiG9w0BAQsFAAOC
AQEAgxnf39+h8Y5QyXTkVUAMujPWH2sxuy4fEbff17joohYWb7z67Q6eRULL83hn
p68zUllaWy+HYKR8wpsm2utzCN5Rs+vHaYPE1Yyoq4mlNsMiL2NB441s8cbkaW2k
GX6+viHlVbrkwT6TuAsy0fTN+8lPrXtLTl3Ry9FrbdBHZzjXn0tW4Xt9d7oy9QEB
oIQWAJajqjXGH5WRNDlbw0cybpYxo461JMh6MOqUnYDoFxTCmn/QWHnC/iwFc1fe
ScvC9Klizwgo/W/X/Rgf5HL2c7H9WqPKo5T/9wL9pqNb+a3Cwe9WfbsaBy8lkCON
E9LbC1hV9rvm5r8PwL2e4KSdDA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:37 2024 by rpki-client on console-fra.rpki-client.org