Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/nnUIgxaPBMqSSCT1ksVepp2cS9U.roa
File: nnUIgxaPBMqSSCT1ksVepp2cS9U.roa (raw, json)
Hash identifier: uV2ZLipvtWYaf/iy9HPUYZTtM3ga+nP1vele4LXIox4=
Subject key identifier: 9E:75:08:83:16:8F:04:CA:92:48:24:F5:92:C5:5E:A6:9D:9C:4B:D5
Certificate issuer: /CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Certificate serial: F01322
Authority key identifier: 1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/nnUIgxaPBMqSSCT1ksVepp2cS9U.roa
Signing time: Sat 01 Jan 2022 09:57:54 +0000
ROA not before: Sat 01 Jan 2022 09:57:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 80.71.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15733538 (0xf01322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Validity
Not Before: Jan 1 09:57:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e750883168f04ca924824f592c55ea69d9c4bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:cd:e9:58:7d:ff:75:5a:7d:78:27:83:70:
06:c1:b8:05:a5:61:98:e2:9c:08:57:30:03:0d:25:
c1:9d:24:bf:84:25:80:0d:86:70:1e:cc:45:1c:89:
35:f8:41:5e:14:d7:7b:8b:27:07:7f:9a:ec:b9:7c:
ee:21:b4:85:97:63:5f:4c:74:ef:00:22:26:94:a7:
27:db:77:e3:a7:cb:f2:43:b8:63:1d:8c:91:ab:2c:
d6:8c:75:27:d6:6e:71:3e:b8:f7:63:dc:7c:fa:bb:
2b:95:b7:fb:ef:82:aa:e6:af:9d:23:54:a8:4a:4c:
0a:68:15:70:dc:94:aa:1a:60:a6:bc:b7:14:71:44:
00:3a:66:2e:62:d1:18:20:05:a6:68:11:f6:99:9a:
2c:6e:39:03:78:9a:b9:76:ee:43:61:1a:d2:c9:04:
4e:6c:3d:d6:cc:09:d4:30:5c:f0:a2:4f:95:b5:81:
30:33:82:56:50:0f:40:14:fe:ca:63:48:30:2d:72:
83:ae:99:4d:b8:22:6e:7c:5b:79:03:fc:9f:06:09:
29:3b:b6:cc:43:f7:34:0f:58:39:da:fa:2c:dc:82:
f6:7b:7e:bf:76:5f:ea:a4:ca:5d:a0:82:0c:0e:6a:
ce:03:8c:7a:3b:3c:5a:3c:6e:65:f3:a9:56:ec:89:
f9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:75:08:83:16:8F:04:CA:92:48:24:F5:92:C5:5E:A6:9D:9C:4B:D5
X509v3 Authority Key Identifier:
keyid:1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/nnUIgxaPBMqSSCT1ksVepp2cS9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/HfOOyuBCJf80eBGx03_bKj9uRys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.145.0/24
Signature Algorithm: sha256WithRSAEncryption
84:28:fc:9f:37:eb:7c:af:50:91:8f:aa:88:66:64:9c:45:b7:
fd:4e:97:2c:e5:52:7f:2a:1f:17:7b:98:35:e9:5e:96:cb:85:
18:2c:cd:a8:95:f5:47:7b:e6:98:87:6e:1b:6e:28:42:ff:7e:
d1:f2:ff:43:48:8e:6f:17:4d:6a:90:ff:d0:0f:b6:c4:6e:31:
63:88:e4:61:18:4a:16:4a:69:84:a4:29:ea:98:3f:46:80:43:
8f:47:36:a5:ec:26:d5:b7:55:20:8b:e7:51:ce:a9:89:7a:c0:
0b:f3:c1:e5:58:7e:fa:56:f3:bb:5f:ca:38:87:e1:0a:2f:42:
57:3d:3c:b1:6c:50:78:8a:2c:ff:f4:4b:cc:be:2c:66:d3:fd:
f7:11:4e:4b:29:6b:e0:54:38:c3:e9:3c:e3:3f:e3:c0:2a:8c:
04:53:96:08:e3:1d:bd:f6:7c:3c:c6:cf:11:54:8e:b1:d3:50:
d7:e0:97:64:b6:7f:24:b4:cc:34:9c:79:4d:ef:d5:66:42:93:
d7:9b:94:c5:42:aa:94:66:5a:6e:a0:67:f8:03:31:56:4e:a0:
1f:0a:8f:31:42:42:de:fe:e8:4f:66:44:84:11:cd:76:2b:2f:
bc:6c:a8:ca:9d:1f:25:61:29:1c:28:7d:41:2e:3a:ca:39:fc:
23:5b:64:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:10 2024 by rpki-client on console-ams.rpki-client.org