Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/cFp3sdqkWaZye6-airsIuIkzKv8.roa
File: cFp3sdqkWaZye6-airsIuIkzKv8.roa (raw, json)
Hash identifier: CM5ImIDnlwYBg3dxUK7lIP2gPi3oKOcpqM4ynF5YVkU=
Subject key identifier: 70:5A:77:B1:DA:A4:59:A6:72:7B:AF:9A:8A:BB:08:B8:89:33:2A:FF
Certificate issuer: /CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Certificate serial: 018636C7C9F2A1405847920038505214B9BD
Authority key identifier: 1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/cFp3sdqkWaZye6-airsIuIkzKv8.roa
Signing time: Thu 09 Feb 2023 15:25:08 +0000
ROA not before: Thu 09 Feb 2023 15:25:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59447
IP address blocks: 80.71.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:c7:c9:f2:a1:40:58:47:92:00:38:50:52:14:b9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Validity
Not Before: Feb 9 15:25:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=705a77b1daa459a6727baf9a8abb08b889332aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:40:4d:58:ff:f5:28:92:3d:4e:d2:1c:3d:43:
f3:c9:b5:ae:e7:63:f6:fe:52:ea:8b:e2:02:23:e9:
cb:c7:38:99:24:1f:a4:15:13:0c:12:5d:7d:35:0f:
36:61:f4:14:1d:7d:a5:ce:70:ec:78:a4:30:4a:bd:
de:c7:0c:7c:9e:c7:c0:35:26:2c:c8:04:8e:7c:c0:
73:9e:dc:c4:c4:24:e7:58:1d:3b:01:01:4c:32:b2:
1b:83:50:73:80:8d:53:c1:bc:88:90:45:75:47:d8:
75:6d:52:cb:22:ca:80:b8:55:6c:02:fb:56:8f:a5:
6d:96:aa:ec:eb:6e:83:cc:55:b0:2b:5b:56:af:d8:
7f:2b:7d:94:8b:5c:c9:5c:88:8c:1d:55:db:69:12:
7f:14:2f:79:5c:cb:d9:97:20:dc:f2:f2:7c:44:d3:
46:2c:81:c9:fe:4a:e3:ed:65:2f:04:28:4c:65:30:
6b:e8:89:59:0c:e1:aa:9e:ab:17:48:44:7d:b2:8d:
64:2f:57:4a:b1:dd:c2:08:8d:94:1c:84:e5:3e:7a:
f4:8f:fe:70:bd:26:38:2a:ab:65:ba:8a:79:d2:b3:
a6:46:d4:4b:78:69:e9:2e:91:37:d2:65:91:cd:f9:
90:27:78:d4:eb:39:e8:5a:60:77:d7:68:fe:65:ae:
6f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5A:77:B1:DA:A4:59:A6:72:7B:AF:9A:8A:BB:08:B8:89:33:2A:FF
X509v3 Authority Key Identifier:
keyid:1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/cFp3sdqkWaZye6-airsIuIkzKv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/HfOOyuBCJf80eBGx03_bKj9uRys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.145.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a3:66:e3:6c:ff:e0:2a:2a:55:10:f2:22:f6:58:18:e5:16:
b6:d4:79:e3:0f:ba:04:26:dc:26:b7:02:56:dc:3a:65:1e:33:
8d:3a:b9:97:6d:d6:61:7a:b2:af:e6:96:e8:4c:68:af:a9:bc:
e9:3a:44:e2:c1:b6:c2:3e:69:26:75:23:c1:16:80:39:c5:71:
1a:c3:77:92:41:29:ab:4a:0d:22:f7:e6:02:ff:18:56:0c:11:
3d:99:c1:b8:c5:b9:8f:92:e5:b0:5e:3d:a2:1c:3e:8a:ba:4b:
7d:c5:03:81:e4:94:31:39:2f:de:13:d2:32:12:ff:27:9a:54:
d6:eb:ec:b5:02:a8:3a:6c:90:7f:72:97:e7:6c:93:39:0c:9e:
20:3c:bc:5e:6c:cd:a6:79:52:31:5f:1e:69:d9:b0:47:1b:2b:
67:0d:8a:1c:40:ad:3e:54:03:58:eb:3a:7b:c1:60:80:43:06:
75:ef:c1:e1:f3:56:5d:37:dd:4a:f3:03:9b:09:5a:1f:5e:c8:
57:dd:ed:a4:e9:c1:25:13:6e:13:12:9c:ed:d4:89:3c:86:87:
6f:70:32:0a:93:bf:5f:98:62:0a:f5:12:73:9f:65:50:2f:13:
43:a7:97:55:7e:a8:67:88:d3:9f:cc:37:08:95:21:5d:c2:6a:
97:7d:dd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:05 2024 by rpki-client on console-fra.rpki-client.org