Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/R-nm7JlFGOLqZ7Qzb3lHnRCD0zM.roa
File: R-nm7JlFGOLqZ7Qzb3lHnRCD0zM.roa (raw, json)
Hash identifier: SyZvvuADZCxbYSiEt/tYm8cL3fZLYslLzSPDGZyS53M=
Subject key identifier: 47:E9:E6:EC:99:45:18:E2:EA:67:B4:33:6F:79:47:9D:10:83:D3:33
Certificate issuer: /CN=aa67dfb882ae7d8e55d258651742f4e6ce437019
Certificate serial: 018CC42458A921FBF68DA78C09FCDE15576E
Authority key identifier: AA:67:DF:B8:82:AE:7D:8E:55:D2:58:65:17:42:F4:E6:CE:43:70:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmffuIKufY5V0lhlF0L05s5DcBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/R-nm7JlFGOLqZ7Qzb3lHnRCD0zM.roa
Signing time: Mon 01 Jan 2024 08:29:25 +0000
ROA not before: Mon 01 Jan 2024 08:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31461
IP address blocks: 80.65.176.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:58:a9:21:fb:f6:8d:a7:8c:09:fc:de:15:57:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa67dfb882ae7d8e55d258651742f4e6ce437019
Validity
Not Before: Jan 1 08:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47e9e6ec994518e2ea67b4336f79479d1083d333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:9a:3c:0f:65:70:90:02:bd:ee:81:5e:65:
3b:a1:5c:67:95:d2:85:93:4f:b8:76:1c:6d:b1:0b:
11:ec:2f:4b:c0:83:53:e2:b3:1d:01:7c:ba:ec:1d:
c6:46:51:e7:08:5d:b0:b6:9c:99:10:1b:bd:e0:d2:
c3:b8:33:1c:3f:f3:3c:02:b4:01:32:1b:85:2a:ba:
39:b1:2d:16:2b:02:9f:fe:db:b3:ef:f2:45:62:6f:
70:6a:f1:d3:a7:17:d5:f9:c3:f8:92:0d:1b:f7:b8:
c1:75:c9:c9:43:54:81:90:bd:6f:2b:92:fc:3e:b7:
d7:25:e3:d4:61:36:eb:58:b5:fe:48:cf:8c:86:df:
b3:08:c9:a8:3d:7e:8d:a7:7c:e9:9c:26:85:62:ef:
96:55:fa:ed:05:b5:f4:31:f3:2e:85:27:f4:67:a7:
46:f3:df:79:98:c3:e7:40:f7:f3:39:c4:e0:a1:ee:
d6:69:c0:ea:98:25:1b:8d:7c:aa:d0:0d:b4:b3:07:
1e:5e:6d:24:99:d2:29:31:c0:61:2a:ed:f2:55:13:
aa:83:07:32:c8:47:6c:f5:4e:25:30:d5:ce:d2:64:
38:46:e4:26:e4:4e:c2:32:e4:f0:34:0e:c7:29:1f:
fd:16:c5:40:67:ec:92:73:bd:16:7c:7d:f2:00:cc:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E9:E6:EC:99:45:18:E2:EA:67:B4:33:6F:79:47:9D:10:83:D3:33
X509v3 Authority Key Identifier:
keyid:AA:67:DF:B8:82:AE:7D:8E:55:D2:58:65:17:42:F4:E6:CE:43:70:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmffuIKufY5V0lhlF0L05s5DcBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/R-nm7JlFGOLqZ7Qzb3lHnRCD0zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.65.176.0/21
Signature Algorithm: sha256WithRSAEncryption
21:dd:fe:42:97:6d:ac:a9:a7:1e:c0:44:c3:df:83:53:df:1f:
37:d2:62:53:b2:25:13:2d:3b:8b:9d:bb:40:fc:7d:03:f2:c6:
81:a6:e2:78:69:ce:c3:1f:d1:0f:d0:c5:00:f8:ab:c3:4f:af:
11:9e:26:b3:81:0f:43:df:cb:c2:b4:95:0f:fd:d7:7b:df:dc:
0b:a1:59:84:4c:e7:92:df:80:61:2f:1d:a4:2d:86:89:6b:e6:
f1:8e:a4:66:d3:d2:e6:71:10:74:ab:a1:94:c2:45:cc:08:3a:
14:46:e3:f3:9f:0d:e5:ad:ad:fa:0c:c3:f7:87:90:3d:fc:0f:
e0:2e:9c:0a:07:cf:0b:db:f5:45:e4:1c:0b:b4:d3:78:12:34:
14:bf:31:2d:1c:fe:6c:4e:9d:87:12:15:5a:20:22:3b:5e:41:
ba:ca:0d:2e:ab:5e:7c:23:c2:dd:f0:cc:99:53:c0:8f:83:ca:
77:8d:51:b0:f3:1d:70:29:8b:9e:cd:eb:8d:dd:35:e2:a0:3d:
d6:0f:ee:52:3b:10:57:0b:a8:53:7a:3d:19:e3:e9:df:bf:67:
f2:cd:91:30:0a:9f:3d:a2:c7:44:20:35:76:23:30:ab:e9:3a:
1f:20:f8:7f:de:39:0b:59:ea:38:2d:a0:4c:6a:29:2f:d3:84:
e1:a0:e9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:21 2024 by rpki-client on console.sobornost.net