Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/e1n3zMQpFEt4Dk6msVeWUr4DgDE.roa
File: e1n3zMQpFEt4Dk6msVeWUr4DgDE.roa (raw, json)
Hash identifier: KNX9qEQlnbh8p5wvZNuOrdDhGoan4/bwg6Qzuybxx3k=
Subject key identifier: 7B:59:F7:CC:C4:29:14:4B:78:0E:4E:A6:B1:57:96:52:BE:03:80:31
Certificate issuer: /CN=ac89582220b58417a3a9459f55c5b947cc357c25
Certificate serial: 32DFF5A5
Authority key identifier: AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/e1n3zMQpFEt4Dk6msVeWUr4DgDE.roa
Signing time: Sat 01 Jan 2022 13:58:44 +0000
ROA not before: Sat 01 Jan 2022 13:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51482
IP address blocks: 80.243.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 853538213 (0x32dff5a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac89582220b58417a3a9459f55c5b947cc357c25
Validity
Not Before: Jan 1 13:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b59f7ccc429144b780e4ea6b1579652be038031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d2:8f:11:23:14:20:62:08:ec:d2:de:6d:75:
a3:3d:4d:86:42:af:0f:5d:ee:25:fa:c7:e1:fd:65:
c8:49:f3:9a:eb:d0:4c:c8:62:67:47:28:00:94:8a:
be:72:c0:e6:0b:19:3f:89:66:4a:df:63:64:d7:a2:
91:f7:da:90:eb:a1:f8:d8:68:a1:20:4c:57:59:d4:
6a:d0:6f:a1:dc:8e:55:74:07:52:44:d8:28:64:f4:
47:8d:c5:c5:19:37:23:fc:a9:f6:3c:67:c9:bb:cd:
c2:97:30:57:b3:97:0e:44:94:e8:9d:5b:99:56:7f:
ed:8a:7a:20:3a:4d:b8:07:16:53:24:b1:89:4e:3b:
31:23:d3:24:db:96:b4:f1:6b:86:22:6d:76:7f:10:
58:36:71:a3:fd:a1:36:34:f9:23:33:31:6d:8b:0c:
bd:a5:f0:62:db:5c:68:72:a6:c1:68:c1:91:a5:fc:
48:80:9b:c0:3e:bb:2f:16:ed:35:35:35:16:f4:76:
0a:61:17:db:9e:67:d5:f3:a3:2c:fc:cb:13:11:3e:
fa:28:c6:77:8b:89:71:ab:99:9a:21:45:4b:c4:4b:
b9:16:11:d6:8d:f6:ac:00:e0:6a:e0:eb:90:8f:5a:
d4:1d:4e:ea:d9:e5:16:52:0e:fb:06:b6:9b:10:0c:
96:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:59:F7:CC:C4:29:14:4B:78:0E:4E:A6:B1:57:96:52:BE:03:80:31
X509v3 Authority Key Identifier:
keyid:AC:89:58:22:20:B5:84:17:A3:A9:45:9F:55:C5:B9:47:CC:35:7C:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIlYIiC1hBejqUWfVcW5R8w1fCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/e1n3zMQpFEt4Dk6msVeWUr4DgDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/bab489-8a4e-4602-84b4-a1368eecb82b/1/rIlYIiC1hBejqUWfVcW5R8w1fCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:51:fa:da:87:25:4f:4f:9e:85:19:1e:71:d4:a7:06:2b:26:
33:38:3b:3c:5b:b1:ea:80:7a:b1:7e:61:d0:29:d4:15:cf:b9:
a9:ed:37:af:61:62:a2:12:09:18:49:c1:4b:be:9f:78:b7:f0:
4f:d6:5c:fe:bd:93:33:3e:ff:ee:46:b3:a7:e3:34:0b:d7:ba:
86:f7:ad:8e:66:27:4d:1f:7d:23:74:7e:d6:f1:25:d5:22:80:
d4:d2:5c:57:28:3d:5e:01:7a:d3:88:b9:f2:5a:41:c6:c1:03:
fa:62:db:37:f6:32:4d:2b:98:df:ff:f8:8f:a5:5a:50:69:b7:
13:6e:bd:24:79:02:0d:83:78:b6:6b:2d:f0:81:48:17:d1:e1:
eb:fe:53:fa:8a:03:e9:03:45:ab:8b:76:20:e2:23:0d:08:1f:
0d:1c:5a:6f:ee:72:8d:fe:db:15:85:5d:d7:82:8a:28:06:2d:
73:74:e2:28:31:8a:b5:11:96:2b:bf:d3:c2:1a:de:3a:61:23:
51:54:08:c4:16:e3:25:4c:1b:da:43:cf:e3:be:1d:c8:67:79:
fd:af:fa:78:06:70:7c:9e:34:19:04:7f:4b:b5:a2:8a:50:a1:
d3:3e:42:e9:d5:15:88:91:b9:7b:7a:23:c8:9d:af:33:b8:d6:
49:1b:ef:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:49:29 2025 by rpki-client