Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/yDFm8NdKsP65iLOYR1B3zvOopIA.roa
File: yDFm8NdKsP65iLOYR1B3zvOopIA.roa (raw, json)
Hash identifier: pjXcbS0DOd7ztEynsQmjb5MXJUmgCTsIlTKp2UWMi/E=
Subject key identifier: C8:31:66:F0:D7:4A:B0:FE:B9:88:B3:98:47:50:77:CE:F3:A8:A4:80
Certificate issuer: /CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Certificate serial: 01856FA70DB6B871B0A1C6DF0ED6EA0724BB
Authority key identifier: 1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/yDFm8NdKsP65iLOYR1B3zvOopIA.roa
Signing time: Sun 01 Jan 2023 23:24:56 +0000
ROA not before: Sun 01 Jan 2023 23:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 80.71.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0d:b6:b8:71:b0:a1:c6:df:0e:d6:ea:07:24:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Validity
Not Before: Jan 1 23:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c83166f0d74ab0feb988b398475077cef3a8a480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:bc:51:2e:e8:90:0b:83:9c:6e:e6:34:e3:
ff:a9:cd:20:17:36:69:40:41:0e:a1:a3:fb:d5:a0:
27:bf:66:17:97:e3:53:3f:b9:70:d0:f1:85:24:8a:
76:d5:fb:7a:0d:f6:ef:40:f9:3c:2d:7f:d9:80:2c:
be:7b:91:cc:a0:e2:99:1a:9d:48:92:11:44:4a:09:
cf:cf:1d:ef:73:05:f3:a7:ef:2b:36:a2:1f:2e:0a:
59:5d:cc:48:e0:10:3b:63:6f:7b:19:d0:9f:bc:87:
09:b4:0c:aa:0b:ee:3b:37:1a:9a:aa:24:bb:48:d9:
06:1d:0d:7c:17:d3:17:13:2d:92:52:14:a6:c5:ff:
1d:7c:16:fc:03:97:aa:5d:63:96:ea:8a:6c:bb:94:
cd:2a:9e:b6:c7:47:84:e4:44:66:c0:01:9c:6e:5d:
c9:64:08:9c:7a:6f:49:ba:13:d4:19:b0:87:4e:f6:
60:f5:72:83:3e:d9:8e:85:d0:9b:9d:b4:b7:c4:e6:
11:ab:e8:d8:59:a6:42:ab:8b:8f:aa:f2:bd:ad:da:
25:26:d5:1f:45:55:30:4e:33:54:35:1d:9a:e0:69:
a2:a2:1c:c3:6c:ec:65:f9:74:59:47:51:a0:55:14:
a7:e6:b8:d0:66:61:ac:6e:18:c8:b6:e0:21:45:4c:
2a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:31:66:F0:D7:4A:B0:FE:B9:88:B3:98:47:50:77:CE:F3:A8:A4:80
X509v3 Authority Key Identifier:
keyid:1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/yDFm8NdKsP65iLOYR1B3zvOopIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/HfOOyuBCJf80eBGx03_bKj9uRys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.145.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:91:34:06:9e:76:2b:10:a4:a6:0b:b2:af:5f:d4:1f:e8:3c:
64:4e:57:0b:b6:cb:ea:6b:e3:50:67:65:aa:34:47:19:cf:bb:
41:01:09:7a:82:4d:54:0d:65:5a:e4:4d:6a:09:81:c8:97:00:
68:41:8a:ce:6c:e3:5a:f2:bc:fa:f0:46:fb:44:d1:93:dd:63:
17:7c:65:82:d2:4d:1f:dc:1c:79:87:a7:2a:29:f2:0f:37:22:
04:96:cc:35:b9:dd:3e:99:28:02:f2:87:e0:8c:92:a9:d3:e3:
b3:a0:ea:f0:e9:fb:b8:c0:c9:84:d7:c3:47:57:d8:d0:fa:55:
49:91:f2:a1:8a:23:48:99:7d:b4:f0:55:08:46:06:c6:85:ae:
00:c9:01:53:71:53:63:88:3e:c1:e7:dd:8d:7d:0f:98:64:cd:
3a:f5:9d:04:57:7b:72:31:e5:d8:f0:b9:79:8b:7e:45:3a:06:
29:c7:08:0f:25:d4:29:dd:53:e1:5e:23:98:ec:ee:b9:9e:05:
56:a5:ca:3e:a0:e6:6d:24:f0:f1:f9:75:db:5c:b9:d1:c0:5f:
ae:b3:d3:72:cb:31:44:d3:21:aa:5e:4b:c2:1e:69:70:03:53:
b6:0b:9d:e1:eb:15:87:17:c8:db:bd:77:d4:db:4a:33:1a:ff:
76:8e:3f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:05 2024 by rpki-client on console-fra.rpki-client.org