Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Ls0kCSZbLt5ppnX9UB1JaDXFjcw.roa
File: Ls0kCSZbLt5ppnX9UB1JaDXFjcw.roa (raw, json)
Hash identifier: hbhICpoBZr/G8iBJYWLiSRC8dnAwBMdQCPVNE9+0OB8=
Subject key identifier: 2E:CD:24:09:26:5B:2E:DE:69:A6:75:FD:50:1D:49:68:35:C5:8D:CC
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32E44DEA
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Ls0kCSZbLt5ppnX9UB1JaDXFjcw.roa
Signing time: Sat 01 Jan 2022 13:58:46 +0000
ROA not before: Sat 01 Jan 2022 13:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203686
IP address blocks: 80.243.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853822954 (0x32e44dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ecd2409265b2ede69a675fd501d496835c58dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:21:3c:35:80:e9:b3:63:de:91:c6:a4:f3:ae:
02:77:8d:3e:09:86:7e:0d:35:b0:e4:1b:6c:af:be:
8f:86:6d:db:90:5c:a7:80:d0:13:d9:c4:72:5d:40:
e5:38:da:bd:1d:0d:4c:7c:b7:a0:85:ab:54:5c:e9:
30:be:33:2f:6c:a2:84:a3:4b:3d:58:99:0d:ee:13:
ce:17:cf:24:e2:28:6c:e4:cb:82:07:5a:0d:42:c7:
32:79:23:1d:df:bf:67:81:0e:dc:6a:31:76:f3:0d:
e6:6f:19:e0:65:98:81:b4:42:11:05:a4:8c:ce:44:
da:8d:6f:09:2c:8a:e1:60:0b:79:6d:d7:55:22:86:
0b:fa:41:24:25:7c:72:9b:bb:e6:98:a0:33:bd:ba:
2a:20:05:f4:db:9b:7a:04:0d:c5:15:5c:99:63:29:
b2:7f:41:04:34:ed:3e:2b:05:cb:d0:34:98:ea:5d:
6b:6f:b6:82:74:ff:43:6f:c7:6f:50:a9:c1:a8:cd:
a3:fa:98:84:d8:56:91:ee:25:e6:f5:a2:00:94:8e:
ff:00:d5:bc:b7:ba:6d:d7:de:c4:b6:cb:9f:5b:fc:
14:24:86:ee:c8:69:63:59:bc:ff:e8:a2:22:84:f7:
c0:dc:26:4b:94:95:c5:6a:49:3c:bd:61:09:1e:e7:
9e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CD:24:09:26:5B:2E:DE:69:A6:75:FD:50:1D:49:68:35:C5:8D:CC
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Ls0kCSZbLt5ppnX9UB1JaDXFjcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.117.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ee:92:e9:1a:8c:d9:70:79:51:a8:44:cf:12:99:a9:c8:65:
c9:3e:ce:21:17:c7:9b:79:78:5d:f9:84:3f:dc:ad:17:ae:e9:
00:a0:c3:4c:b4:d6:f7:b5:93:fd:0b:94:e7:74:71:f9:26:61:
c5:48:b6:cd:c3:99:ad:b7:64:bb:57:33:d7:7b:97:29:e4:57:
a8:fd:e9:fa:77:0f:ae:73:e5:6e:54:b9:55:98:be:c6:b0:a1:
7d:69:30:7a:6e:5d:c6:ba:cb:01:6b:bc:af:e3:df:46:4c:97:
7d:e0:6c:17:5d:6d:27:4f:62:84:95:62:2e:94:22:94:78:ed:
42:d4:ad:42:84:19:7f:6f:34:aa:c7:5b:94:08:70:0d:c5:0e:
2a:21:db:cb:66:09:6d:76:9b:fd:ea:47:55:f8:5e:e4:fc:f7:
ba:cb:b5:0f:71:4e:b2:fe:17:c3:2f:2a:94:26:9b:32:9c:02:
a1:db:83:ff:d3:5c:88:62:78:a0:6f:03:62:25:31:e1:cf:7e:
c6:04:6c:57:65:5b:61:3d:3b:dc:80:0b:6e:87:47:48:c1:e0:
d2:c0:a1:81:f5:bb:49:7a:5e:04:11:4d:5b:d2:3a:48:f3:53:
96:cc:a2:86:a9:22:bb:7f:d4:46:a2:5d:cc:e9:88:03:f2:9c:
f9:dc:a7:10
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMuRN6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Yzg5NTgyMjIwYjU4NDE3YTNhOTQ1OWY1NWM1Yjk0N2NjMzU3YzI1MB4XDTIyMDEw
MTEzNTg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmVjZDI0MDkyNjVi
MmVkZTY5YTY3NWZkNTAxZDQ5NjgzNWM1OGRjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANchPDWA6bNj3pHGpPOuAneNPgmGfg01sOQbbK++j4Zt25Bc
p4DQE9nEcl1A5TjavR0NTHy3oIWrVFzpML4zL2yihKNLPViZDe4TzhfPJOIobOTL
ggdaDULHMnkjHd+/Z4EO3GoxdvMN5m8Z4GWYgbRCEQWkjM5E2o1vCSyK4WALeW3X
VSKGC/pBJCV8cpu75pigM726KiAF9NubegQNxRVcmWMpsn9BBDTtPisFy9A0mOpd
a2+2gnT/Q2/Hb1CpwajNo/qYhNhWke4l5vWiAJSO/wDVvLe6bdfexLbLn1v8FCSG
7shpY1m8/+iiIoT3wNwmS5SVxWpJPL1hCR7nnqkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQuzSQJJlsu3mmmdf1QHUloNcWNzDAfBgNVHSMEGDAWgBSsiVgiILWEF6Op
RZ9VxblHzDV8JTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JJbFlJaUMxaEJlanFVV2ZWY1c1Ujh3MWZDVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvYmFiNDg5LThhNGUtNDYwMi04NGI0LWExMzY4ZWVjYjgyYi8x
L0xzMGtDU1piTHQ1cHBuWDlVQjFKYURYRmpjdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
YmFiNDg5LThhNGUtNDYwMi04NGI0LWExMzY4ZWVjYjgyYi8xL3JJbFlJaUMxaEJl
anFVV2ZWY1c1Ujh3MWZDVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFDzdTANBgkqhkiG9w0BAQsFAAOC
AQEAYu6S6RqM2XB5UahEzxKZqchlyT7OIRfHm3l4XfmEP9ytF67pAKDDTLTW97WT
/QuU53Rx+SZhxUi2zcOZrbdku1cz13uXKeRXqP3p+ncPrnPlblS5VZi+xrChfWkw
em5dxrrLAWu8r+PfRkyXfeBsF11tJ09ihJViLpQilHjtQtStQoQZf280qsdblAhw
DcUOKiHby2YJbXab/epHVfhe5Pz3usu1D3FOsv4Xwy8qlCabMpwCoduD/9NciGJ4
oG8DYiUx4c9+xgRsV2VbYT073IALbodHSMHg0sChgfW7SXpeBBFNW9I6SPNTlsyi
hqkiu3/URqJdzOmIA/Kc+dynEA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:32 2025 by rpki-client