Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/AjM2cO9pBCzu1kQLffRZXhnYEpM.roa
File: AjM2cO9pBCzu1kQLffRZXhnYEpM.roa (raw, json)
Hash identifier: WmndjbtJSi8s6Hu/zCAud/J7Ii0vndkLot4A47GJcRc=
Subject key identifier: 02:33:36:70:EF:69:04:2C:EE:D6:44:0B:7D:F4:59:5E:19:D8:12:93
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32E217A8
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/AjM2cO9pBCzu1kQLffRZXhnYEpM.roa
Signing time: Sat 01 Jan 2022 13:58:45 +0000
ROA not before: Sat 01 Jan 2022 13:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198631
IP address blocks: 80.243.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853677992 (0x32e217a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02333670ef69042ceed6440b7df4595e19d81293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:23:8f:ae:b7:0b:de:e2:49:28:a8:17:60:1f:
92:6b:d9:3c:8e:c7:da:25:75:44:04:7c:7b:fc:d6:
32:52:af:f6:5b:ec:54:77:01:2d:05:85:14:7c:62:
1a:a8:e9:3f:81:47:1b:95:51:0c:a5:be:94:ad:6f:
21:cb:99:eb:2b:3c:e3:27:ae:72:d3:cb:a4:eb:c1:
2c:6d:54:a1:05:99:a5:88:5e:1b:e2:ab:4b:9f:ac:
22:fc:52:78:82:43:f2:b9:9f:54:9e:03:fa:f3:74:
c6:b3:12:d3:f1:ee:53:87:a5:e9:04:73:0f:9a:90:
16:1f:b1:86:55:15:e3:28:33:34:e2:80:09:47:98:
e8:f9:fc:de:37:86:a5:fa:a2:33:bf:d1:23:87:46:
cf:15:ca:df:be:e7:45:d7:72:df:21:53:32:0a:f2:
28:3f:da:45:e4:8b:bc:e4:91:08:c2:e8:fc:9b:f0:
4e:14:2f:12:c7:81:3a:04:b9:e3:8a:8c:a5:8d:5b:
46:73:d5:72:f7:5f:de:52:d6:47:65:8b:91:13:d2:
72:a0:4b:e7:a3:c7:84:17:9d:d1:fc:43:9a:59:f9:
96:55:95:58:a6:3a:b2:1b:f9:28:0d:42:bd:d1:a7:
00:81:61:71:09:b9:93:e3:99:f9:be:1e:de:b8:34:
20:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:33:36:70:EF:69:04:2C:EE:D6:44:0B:7D:F4:59:5E:19:D8:12:93
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/AjM2cO9pBCzu1kQLffRZXhnYEpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.127.0/24
Signature Algorithm: sha256WithRSAEncryption
be:1b:e9:76:e2:3a:df:84:f1:10:19:16:ea:b8:9b:f9:4c:9d:
32:d4:6c:de:a3:c5:7e:04:96:1a:04:af:87:9b:c9:7c:b2:cd:
5d:62:ca:b1:6a:79:77:34:ba:46:e3:d8:f3:12:c1:cf:5e:68:
66:c6:0f:69:19:eb:87:83:a4:cc:e1:b2:ae:6f:9a:c2:20:66:
78:78:b4:68:30:c9:08:6c:0d:bd:76:17:7d:63:77:1e:66:bc:
fe:11:7f:12:c7:19:75:a9:e8:23:dc:0d:6c:48:32:67:ff:7f:
d5:d7:9c:5d:64:1c:4c:ce:be:0a:d3:e1:4c:d3:23:7e:d8:fc:
5a:6e:31:6f:ba:ea:5e:01:fe:e7:ec:4c:f8:8e:69:99:05:a5:
dc:0b:b6:61:0f:fd:1d:89:4a:15:6e:31:7b:62:20:15:c5:9b:
73:d5:17:8d:b9:04:49:3d:61:42:51:bb:bd:97:86:32:18:4a:
e5:4c:67:22:7e:83:1d:64:0b:42:77:59:3a:db:7c:91:a7:f3:
af:60:a1:38:50:bc:5a:38:8e:aa:8d:2e:6e:cd:66:8a:e9:f7:
e8:43:aa:81:63:50:0b:67:38:31:53:64:4a:5b:dc:34:b2:8d:
ee:a6:71:e1:d6:d7:2b:46:ac:6f:cb:28:de:c2:cc:b7:2c:2e:
02:e9:ab:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:24 2024 by rpki-client on console-ams.rpki-client.org