Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Y-59U71h37TavAV5PnrCYHhETFQ.roa
File: Y-59U71h37TavAV5PnrCYHhETFQ.roa (raw, json)
Hash identifier: KijNKxToxFhig576f+jOIcorS0tqJxHVHS8y19uVSDI=
Subject key identifier: 63:EE:7D:53:BD:61:DF:B4:DA:BC:05:79:3E:7A:C2:60:78:44:4C:54
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32DF3400
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Y-59U71h37TavAV5PnrCYHhETFQ.roa
Signing time: Sat 01 Jan 2022 13:58:43 +0000
ROA not before: Sat 01 Jan 2022 13:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 80.243.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853488640 (0x32df3400)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ee7d53bd61dfb4dabc05793e7ac26078444c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ff:cd:dc:aa:29:07:90:18:2c:10:4e:97:1a:
f7:13:66:f8:2d:9b:61:6f:f3:4b:2e:14:2d:cf:a2:
9a:a2:1b:ce:38:63:8a:de:68:c7:a9:98:02:a3:60:
50:6c:cb:78:85:75:d5:87:fe:1a:18:de:20:0b:53:
b3:c0:a4:89:e5:93:6b:97:e2:db:b7:d7:df:46:64:
4c:91:33:58:73:81:10:e1:db:35:3f:86:82:18:8b:
28:e9:3b:d2:ba:20:69:5f:ff:9e:5f:9c:bb:dc:0f:
29:26:36:5c:bc:75:1f:ee:64:a7:eb:01:49:06:64:
e5:1b:fe:1e:25:20:49:18:9d:d1:53:1c:de:d2:d3:
f7:a0:c6:82:b8:5f:e1:1e:02:92:02:8d:a7:e5:4f:
aa:fd:16:55:2c:74:e4:27:af:c7:6f:0e:02:23:d4:
b6:77:0f:b8:f1:5d:3e:3a:2f:48:b9:ca:ed:fd:df:
8a:ee:9f:a4:28:3f:fe:5f:b8:5b:89:57:52:f1:3d:
03:2e:12:17:47:d6:ec:53:9d:5c:a8:59:f1:d9:8e:
64:80:66:ea:fc:7a:e5:ab:f1:8d:7b:87:f3:6f:59:
ed:08:f5:e2:dd:bb:32:f5:29:6b:66:1b:4d:08:27:
9d:dd:3f:15:33:c9:6b:43:35:b7:5d:f3:cf:c4:a1:
b0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EE:7D:53:BD:61:DF:B4:DA:BC:05:79:3E:7A:C2:60:78:44:4C:54
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/Y-59U71h37TavAV5PnrCYHhETFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.125.0/24
Signature Algorithm: sha256WithRSAEncryption
59:11:4b:1a:94:26:15:f3:da:68:f2:81:cb:57:b2:bd:04:24:
e5:93:c7:28:d5:31:51:33:8d:5f:9a:a5:07:fa:e9:41:39:5b:
37:e3:34:a3:f6:c0:b2:f9:aa:56:d1:2d:40:c6:2c:e9:8d:c6:
4e:9f:1e:fd:49:71:81:73:ce:4d:4d:79:55:db:21:c7:f2:4a:
5f:49:98:4a:e9:b6:fc:e4:e7:fd:40:b0:d4:80:62:79:ff:a7:
8f:36:e8:47:ef:32:60:3e:7d:08:23:8c:9f:20:a2:b6:2c:e6:
b4:82:e0:cd:fd:67:6a:18:e0:0a:73:ab:92:cf:9f:b1:01:33:
8c:c2:73:e5:d2:49:16:ac:50:2e:40:30:a0:b5:ce:4e:c6:a2:
f6:5e:a1:1a:80:bc:64:a0:cc:ba:3f:59:91:f2:01:e0:9f:13:
0f:90:86:ab:05:a8:1a:24:ba:ae:8d:0f:fb:33:63:34:57:15:
92:31:50:3a:0a:66:69:0c:35:5d:51:7a:ea:73:f9:e8:b1:47:
f4:c1:5e:8c:d1:92:62:f1:36:dc:91:a5:3d:ec:bb:03:7a:04:
fe:be:2b:72:f6:81:1d:b0:5d:41:43:f1:69:8c:56:af:14:8c:
fc:7c:36:b1:42:73:5b:b7:60:db:d5:5a:4f:9d:89:56:38:69:
4c:b3:dc:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:46 2024 by rpki-client on console-fra.rpki-client.org