Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6ed3cc-faa0-46ab-9995-1d5fc6f3d2e1/1/ObDzkVk49pWzpGAOFeRHqE6A0mA.roa
File: ObDzkVk49pWzpGAOFeRHqE6A0mA.roa (raw, json)
Hash identifier: KA5J/NuJQ9Ab6gADAK2Wc9WmQXCdgN64vW7LmiJS1cs=
Subject key identifier: 39:B0:F3:91:59:38:F6:95:B3:A4:60:0E:15:E4:47:A8:4E:80:D2:60
Certificate issuer: /CN=d5a5897a9b46c6e5f37b4143e0ec7e3f9250aeb5
Certificate serial: 01856D81B2940AFF14725C57F232310B4B5D
Authority key identifier: D5:A5:89:7A:9B:46:C6:E5:F3:7B:41:43:E0:EC:7E:3F:92:50:AE:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aWJeptGxuXze0FD4Ox-P5JQrrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6ed3cc-faa0-46ab-9995-1d5fc6f3d2e1/1/ObDzkVk49pWzpGAOFeRHqE6A0mA.roa
Signing time: Sun 01 Jan 2023 13:24:54 +0000
ROA not before: Sun 01 Jan 2023 13:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 80.73.243.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b2:94:0a:ff:14:72:5c:57:f2:32:31:0b:4b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a5897a9b46c6e5f37b4143e0ec7e3f9250aeb5
Validity
Not Before: Jan 1 13:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39b0f3915938f695b3a4600e15e447a84e80d260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1b:2a:1a:36:87:b1:9f:f8:42:30:9a:12:ef:
2c:47:82:cd:db:c6:de:c3:31:68:db:1b:d7:01:da:
75:12:3a:00:a4:ec:b6:14:bb:1d:d5:c5:d9:01:fe:
cf:e8:a8:6e:aa:ad:6f:52:79:12:e0:08:67:11:bb:
3e:9e:84:c1:47:3d:ec:25:59:85:40:2f:9c:ee:a1:
25:b9:4a:b2:a3:4c:c6:ee:7b:77:02:97:2d:a4:29:
b6:65:cc:59:a0:e1:7d:9b:a7:ed:55:e9:43:23:b2:
16:70:6c:5d:3f:0c:3c:40:10:06:31:b8:84:81:9f:
bc:8f:61:68:a5:18:c1:50:fd:4f:67:3a:f4:b2:d7:
f5:16:4b:8b:61:87:ed:9a:be:3b:72:6e:ae:28:0e:
4e:21:a8:20:e0:c0:0f:8d:49:20:eb:f2:2d:8b:77:
d0:fa:68:0f:a0:88:b5:ca:3e:69:50:23:87:d4:5f:
ee:ca:0e:63:45:cd:29:cc:08:5a:cb:88:5a:88:4e:
a0:dd:04:94:ca:1f:bb:24:bd:9e:82:ba:e6:32:43:
01:3e:a7:50:d7:22:43:88:38:a9:44:ac:3b:89:f8:
61:75:67:50:6f:76:e0:7e:1d:6c:34:0b:06:81:ab:
8a:eb:be:b3:ec:48:d7:ee:7b:e6:2a:87:04:68:cc:
6b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B0:F3:91:59:38:F6:95:B3:A4:60:0E:15:E4:47:A8:4E:80:D2:60
X509v3 Authority Key Identifier:
keyid:D5:A5:89:7A:9B:46:C6:E5:F3:7B:41:43:E0:EC:7E:3F:92:50:AE:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aWJeptGxuXze0FD4Ox-P5JQrrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6ed3cc-faa0-46ab-9995-1d5fc6f3d2e1/1/ObDzkVk49pWzpGAOFeRHqE6A0mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6ed3cc-faa0-46ab-9995-1d5fc6f3d2e1/1/1aWJeptGxuXze0FD4Ox-P5JQrrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.243.0/24
Signature Algorithm: sha256WithRSAEncryption
11:48:d7:74:f5:cc:be:2e:99:79:31:f1:fd:02:c8:e3:7d:20:
70:44:0d:65:96:93:ac:e0:c4:b4:b6:53:a5:0d:8b:2b:25:cd:
dd:f2:10:6d:af:2c:20:2f:b3:e1:28:2a:bd:8e:bb:60:6b:ff:
1c:b6:cc:16:da:12:cd:e9:6f:80:90:a5:ff:ca:4b:e5:dd:f9:
9f:5e:90:5c:5b:0a:cf:e1:7e:d4:c7:8a:56:c8:d7:e8:63:58:
93:c0:27:f3:ef:e0:7d:c5:05:a8:e1:07:f5:0c:4f:af:98:8d:
bf:23:a6:97:c2:89:ea:bf:17:fd:56:02:35:f3:f3:e8:44:02:
70:52:4b:ed:f3:49:b4:dd:f8:ce:78:6a:d5:e0:e4:5d:6c:2d:
82:15:31:8c:72:56:eb:d3:b0:07:f3:7e:65:cd:9a:90:ae:ec:
09:dc:1f:d4:ec:01:12:f0:68:ae:ce:89:5c:00:11:66:12:f7:
04:fb:b5:45:94:e4:68:9d:e7:3f:46:a5:e6:b1:16:46:f3:4c:
0d:3b:84:22:7e:1f:4d:a4:cd:86:1a:2f:e1:61:18:19:89:23:
fc:58:c9:1d:5c:8b:73:c0:16:7f:6c:d7:8a:5b:ef:ff:ef:ba:
59:bc:3d:68:46:41:65:a9:fd:46:39:3e:f3:33:1f:2c:24:f0:
0e:1d:47:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:46 2024 by rpki-client on console-fra.rpki-client.org