Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e98bf0-c78a-43b7-a661-24ded67086b4/1/xORl1Q4RCr1g3_RJ50ivpSnZtDk.roa
File: xORl1Q4RCr1g3_RJ50ivpSnZtDk.roa (raw, json)
Hash identifier: 1aTOpB1IfYU6V2YECzgC7b1T/7jYsqYewbvvbun9dZU=
Subject key identifier: C4:E4:65:D5:0E:11:0A:BD:60:DF:F4:49:E7:48:AF:A5:29:D9:B4:39
Certificate issuer: /CN=e8bb0e846120af811657611c9acf1afe0bf82751
Certificate serial: 018CC3B6E3AB9A490DAC49450BAC68F10BB7
Authority key identifier: E8:BB:0E:84:61:20:AF:81:16:57:61:1C:9A:CF:1A:FE:0B:F8:27:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LsOhGEgr4EWV2Ecms8a_gv4J1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e98bf0-c78a-43b7-a661-24ded67086b4/1/xORl1Q4RCr1g3_RJ50ivpSnZtDk.roa
Signing time: Mon 01 Jan 2024 06:29:52 +0000
ROA not before: Mon 01 Jan 2024 06:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 80.91.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:e3:ab:9a:49:0d:ac:49:45:0b:ac:68:f1:0b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8bb0e846120af811657611c9acf1afe0bf82751
Validity
Not Before: Jan 1 06:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4e465d50e110abd60dff449e748afa529d9b439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0f:43:a2:5f:15:92:f4:03:2f:20:62:1e:41:
22:e9:87:b7:ab:5c:60:9e:87:1f:e9:4a:f9:f5:5c:
cc:be:96:99:25:a2:18:dc:c1:8f:47:78:db:19:63:
e8:c3:3f:1c:21:db:75:78:cd:df:5d:c2:26:12:70:
b6:57:bd:fb:52:58:23:d4:c0:3a:2c:1f:b2:9b:1a:
c1:40:69:1b:28:7f:37:cb:e5:62:a3:25:83:1f:7f:
d6:67:85:9d:35:b7:f8:c0:f9:6b:f9:89:cd:d1:3f:
84:6e:99:28:13:18:65:38:3b:a5:53:b6:d2:f4:cb:
f1:49:cb:24:ae:3b:bf:3f:ca:fa:a9:fc:71:24:e5:
50:98:55:5b:20:ae:a5:d8:62:dc:09:9a:e7:7a:ab:
2e:cb:a7:a8:40:df:6d:6f:28:76:40:e7:95:5e:a2:
d9:e2:ad:1f:0f:3a:26:5c:e5:96:d2:6f:21:3b:57:
87:0d:eb:f0:e0:85:95:bf:db:d9:f3:ef:b0:21:fe:
ac:f2:de:91:39:4c:06:3f:a8:37:af:b8:2c:ab:47:
34:40:16:53:0d:30:30:c0:13:82:06:f4:3d:4c:a2:
e8:e4:b9:5e:41:eb:2c:bf:ec:d7:e4:4b:0e:13:66:
7d:e8:88:e7:a5:56:55:5b:2f:8f:d7:67:24:f3:63:
5f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E4:65:D5:0E:11:0A:BD:60:DF:F4:49:E7:48:AF:A5:29:D9:B4:39
X509v3 Authority Key Identifier:
keyid:E8:BB:0E:84:61:20:AF:81:16:57:61:1C:9A:CF:1A:FE:0B:F8:27:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LsOhGEgr4EWV2Ecms8a_gv4J1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e98bf0-c78a-43b7-a661-24ded67086b4/1/xORl1Q4RCr1g3_RJ50ivpSnZtDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e98bf0-c78a-43b7-a661-24ded67086b4/1/6LsOhGEgr4EWV2Ecms8a_gv4J1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.211.0/24
Signature Algorithm: sha256WithRSAEncryption
78:23:68:2b:45:f9:86:77:eb:4d:5b:1c:3c:3d:fb:74:cd:40:
b5:ae:84:90:92:f7:bd:d4:b3:cb:93:51:40:07:a8:97:3a:64:
a4:33:ba:d0:3e:fc:6e:ff:29:fa:2b:23:bf:56:75:c0:3b:64:
ad:25:c4:91:70:89:95:1e:5f:24:2c:6a:3b:d1:48:d2:15:fd:
dd:48:61:f6:2a:67:9c:9f:38:3a:7b:86:f5:15:45:36:a5:32:
2e:1b:eb:f2:48:29:91:b7:57:32:fc:9d:3a:34:33:09:89:6e:
33:c6:7b:53:b9:22:06:70:75:07:3a:62:66:89:fb:8f:6a:cb:
f7:40:f0:b6:59:ee:42:e3:7a:a1:06:73:54:ef:24:9d:d7:08:
b5:92:db:c7:7f:9e:e8:4b:dd:d7:16:1c:67:1d:d4:51:b2:8c:
fd:8d:b4:8e:71:33:fd:fb:4e:db:ca:b9:e8:32:80:f0:f2:bc:
5b:68:db:6b:29:8c:a3:2d:af:a7:b4:7a:bd:12:c3:c6:19:e9:
85:cb:3b:ac:7e:91:9e:d9:d0:9f:70:1a:54:22:b5:5b:2f:01:
fd:a1:a0:a2:eb:4e:e2:a3:f9:74:ed:68:ab:f8:9a:e9:7a:51:
0b:c9:08:b9:8c:ef:eb:a6:37:c0:16:48:7e:5d:8d:75:30:b4:
5e:c6:c0:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:37 2025 by rpki-client