Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Or_LNd2uIggCWxls1wm_7Rw5mNI.roa
File: Or_LNd2uIggCWxls1wm_7Rw5mNI.roa (raw, json)
Hash identifier: LF4QMBFnZfDma3/f8K3qlldFMewN6514RwFUIBWn47Q=
Subject key identifier: 3A:BF:CB:35:DD:AE:22:08:02:5B:19:6C:D7:09:BF:ED:1C:39:98:D2
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32E38266
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Or_LNd2uIggCWxls1wm_7Rw5mNI.roa
Signing time: Sat 01 Jan 2022 13:58:46 +0000
ROA not before: Sat 01 Jan 2022 13:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201455
IP address blocks: 80.243.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853770854 (0x32e38266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3abfcb35ddae2208025b196cd709bfed1c3998d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:db:27:98:73:46:71:91:9b:00:14:b7:e4:a0:
18:b0:20:25:ec:df:ba:95:07:db:2a:00:7d:37:97:
42:d8:81:e5:bc:ec:8a:08:d5:92:f9:49:ea:c1:48:
a1:6d:81:5f:06:90:92:fd:d6:a0:84:82:ed:18:64:
cd:f3:eb:8f:36:be:09:64:d3:61:e9:93:53:b3:9b:
8b:3e:df:30:cb:26:90:e9:15:3e:42:ff:14:20:9a:
1a:44:e4:38:ea:88:3f:b8:79:2a:a5:c4:d8:00:7f:
e4:ac:ea:ea:1e:91:f6:e4:1a:5f:bb:46:00:4c:cd:
04:5b:76:6a:cd:91:6c:6b:3c:69:81:be:55:1a:e5:
1b:d9:09:5c:07:92:3d:e8:43:ad:66:c7:0d:1b:43:
78:31:84:37:60:a2:3b:c0:b7:c8:1e:7f:21:8c:e4:
f2:a7:60:f8:46:f5:d3:5a:95:b4:4a:02:22:f9:a7:
7b:bd:3c:d4:0d:0e:4b:30:31:6f:bb:d2:f6:20:9c:
84:1e:f0:72:10:d9:71:d1:16:86:ff:27:ea:96:f6:
a5:9d:b0:a5:90:39:ad:26:20:42:1c:38:85:d3:57:
95:ae:ad:30:50:5c:be:2b:fd:93:6b:09:df:74:7d:
6d:8a:c6:42:8c:a9:11:6d:24:8b:27:9b:ba:c2:9c:
97:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BF:CB:35:DD:AE:22:08:02:5B:19:6C:D7:09:BF:ED:1C:39:98:D2
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Or_LNd2uIggCWxls1wm_7Rw5mNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.123.0/24
Signature Algorithm: sha256WithRSAEncryption
01:72:ac:b8:a2:b0:74:75:25:55:5f:59:5c:ec:c5:b9:6c:e4:
81:9e:ba:1a:e8:a4:04:2c:17:4c:91:90:c9:9b:40:dc:2c:bc:
6d:a0:10:1a:0c:44:60:fd:75:b3:b1:52:64:09:31:7e:12:c0:
79:a3:ae:31:a3:a4:40:54:46:72:9b:13:a6:63:9a:37:b2:5f:
94:a9:02:4a:9d:1d:c2:16:2d:62:6c:f1:a4:0c:39:72:b5:94:
84:88:df:1d:75:02:87:2e:11:fd:68:d2:d3:e9:18:24:8e:95:
24:2a:b8:5c:cb:4f:71:21:f7:2a:3d:27:33:31:92:55:7f:e4:
8f:62:8a:bd:b4:f2:a6:0a:7e:ce:ce:85:47:92:ff:d6:38:bf:
38:31:7c:fb:ed:dc:e3:8f:d4:e9:26:1e:40:08:ad:9f:2c:a8:
fd:1f:c4:13:73:29:ca:52:b1:49:7f:3b:ae:e8:59:5a:0a:c7:
30:50:05:99:a1:d2:35:92:87:ac:09:b5:c7:8b:8b:4f:6f:02:
a7:6a:14:c7:43:ab:fc:b6:7c:a1:dd:34:6d:f7:17:a9:2e:fd:
b7:0d:7c:e2:aa:d7:a2:90:f2:64:96:cd:04:dc:ca:b2:fb:35:
5e:af:87:98:64:61:89:4d:b2:e4:ce:c9:21:19:8d:2a:4d:36:
99:59:3d:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMuOCZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Yzg5NTgyMjIwYjU4NDE3YTNhOTQ1OWY1NWM1Yjk0N2NjMzU3YzI1MB4XDTIyMDEw
MTEzNTg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2FiZmNiMzVkZGFl
MjIwODAyNWIxOTZjZDcwOWJmZWQxYzM5OThkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJrbJ5hzRnGRmwAUt+SgGLAgJezfupUH2yoAfTeXQtiB5bzs
igjVkvlJ6sFIoW2BXwaQkv3WoISC7RhkzfPrjza+CWTTYemTU7Obiz7fMMsmkOkV
PkL/FCCaGkTkOOqIP7h5KqXE2AB/5Kzq6h6R9uQaX7tGAEzNBFt2as2RbGs8aYG+
VRrlG9kJXAeSPehDrWbHDRtDeDGEN2CiO8C3yB5/IYzk8qdg+Eb101qVtEoCIvmn
e7081A0OSzAxb7vS9iCchB7wchDZcdEWhv8n6pb2pZ2wpZA5rSYgQhw4hdNXla6t
MFBcviv9k2sJ33R9bYrGQoypEW0kiyebusKcl20CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ6v8s13a4iCAJbGWzXCb/tHDmY0jAfBgNVHSMEGDAWgBSsiVgiILWEF6Op
RZ9VxblHzDV8JTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JJbFlJaUMxaEJlanFVV2ZWY1c1Ujh3MWZDVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvYmFiNDg5LThhNGUtNDYwMi04NGI0LWExMzY4ZWVjYjgyYi8x
L09yX0xOZDJ1SWdnQ1d4bHMxd21fN1J3NW1OSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
YmFiNDg5LThhNGUtNDYwMi04NGI0LWExMzY4ZWVjYjgyYi8xL3JJbFlJaUMxaEJl
anFVV2ZWY1c1Ujh3MWZDVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFDzezANBgkqhkiG9w0BAQsFAAOC
AQEAAXKsuKKwdHUlVV9ZXOzFuWzkgZ66GuikBCwXTJGQyZtA3Cy8baAQGgxEYP11
s7FSZAkxfhLAeaOuMaOkQFRGcpsTpmOaN7JflKkCSp0dwhYtYmzxpAw5crWUhIjf
HXUChy4R/WjS0+kYJI6VJCq4XMtPcSH3Kj0nMzGSVX/kj2KKvbTypgp+zs6FR5L/
1ji/ODF8++3c44/U6SYeQAitnyyo/R/EE3MpylKxSX87ruhZWgrHMFAFmaHSNZKH
rAm1x4uLT28Cp2oUx0Or/LZ8od00bfcXqS79tw184qrXopDyZJbNBNzKsvs1Xq+H
mGRhiU2y5M7JIRmNKk02mVk9Ug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org