Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/9X-pqN3r-xC8GH7Wu8DSJSJUPA0.roa
File: 9X-pqN3r-xC8GH7Wu8DSJSJUPA0.roa (raw, json)
Hash identifier: OT004gxOihnkrzbEbX7CQVGrCa2pcDEHoVXniJHqn+0=
Subject key identifier: F5:7F:A9:A8:DD:EB:FB:10:BC:18:7E:D6:BB:C0:D2:25:22:54:3C:0D
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32E34B17
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/9X-pqN3r-xC8GH7Wu8DSJSJUPA0.roa
Signing time: Sat 01 Jan 2022 13:58:45 +0000
ROA not before: Sat 01 Jan 2022 13:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199988
IP address blocks: 80.243.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853756695 (0x32e34b17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f57fa9a8ddebfb10bc187ed6bbc0d22522543c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0b:d7:02:ca:69:f9:68:38:24:c8:63:d9:f9:
7b:25:a7:5e:87:16:80:45:c1:4e:96:cd:ee:79:7c:
b8:c4:56:62:99:00:84:34:91:79:c2:28:ca:88:8b:
3c:24:64:97:5b:ab:24:bf:fe:45:a0:0a:b2:ac:d3:
bd:63:25:4a:b7:61:f3:da:92:ca:fe:e3:60:8c:7b:
89:d7:3e:84:9d:a1:ed:76:69:e7:b4:40:b9:14:47:
d4:16:e2:f1:13:23:ac:da:5f:9c:ac:a6:5d:90:1f:
66:5e:29:b6:25:41:79:e9:25:49:f4:58:21:95:3b:
4a:fd:9c:b2:82:ca:0f:0b:60:d1:b7:54:47:8c:fc:
dd:de:a8:e1:1f:d2:93:c9:66:16:88:82:f5:eb:26:
e5:92:ee:4a:2f:66:b0:b6:e3:83:b2:07:0c:cf:3c:
e3:46:50:7b:b4:dc:81:6a:1e:6f:b7:f4:46:70:54:
6d:57:e0:32:a5:6a:70:99:d2:6b:88:07:08:1c:fc:
7b:de:52:71:25:37:d1:ab:75:58:25:f5:4c:f2:74:
eb:a8:b5:63:90:2e:f3:6c:58:37:f5:de:f7:76:78:
c5:11:a8:a9:a4:2d:97:58:49:84:d8:7c:61:7b:93:
68:80:a2:f7:8b:b0:14:1a:eb:3d:6a:dd:53:dd:41:
2c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7F:A9:A8:DD:EB:FB:10:BC:18:7E:D6:BB:C0:D2:25:22:54:3C:0D
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/9X-pqN3r-xC8GH7Wu8DSJSJUPA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.126.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:72:18:78:a5:38:1e:ef:c9:01:27:30:47:25:97:da:00:9f:
22:ce:59:d9:73:f2:a0:b7:69:b6:91:80:51:ec:7c:cf:ae:1c:
35:26:43:51:b8:3f:35:74:66:cb:99:1e:ce:3d:ee:a8:b5:f5:
bd:94:55:9c:06:c2:b8:13:7f:05:2e:9a:8c:c1:24:b3:b6:3d:
1f:e5:72:15:55:b6:bb:10:c0:c8:fa:40:82:9c:4b:dc:35:3d:
04:e4:95:2c:90:37:fd:77:61:99:3c:2b:4a:f2:3e:5b:ad:f0:
66:e4:75:79:34:65:a5:65:22:3c:4d:3c:cd:84:d5:63:90:f8:
db:45:fd:03:61:79:18:d6:c6:55:ed:49:2c:fa:e4:da:4f:1d:
e4:c4:81:a7:e4:aa:2f:27:d8:e6:a9:2a:e0:b1:26:26:ba:3f:
b0:98:90:fe:fd:f9:28:41:c3:cc:94:4a:47:44:df:37:47:ab:
d0:12:1b:9f:bc:69:21:c4:87:28:7c:37:e1:3e:63:cf:9b:2a:
3e:27:70:67:87:52:35:e4:9f:02:ac:cc:83:06:99:f8:e2:eb:
64:61:50:6b:d9:c4:d4:83:23:00:10:c9:bc:54:23:07:9a:c6:
67:34:4d:c2:64:36:90:d3:19:cf:67:66:90:26:f8:07:4c:35:
8f:5d:f2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:03 2025 by rpki-client