Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/8di0JR2sBDqCzwfACUp5jc6sNOg.roa
File: 8di0JR2sBDqCzwfACUp5jc6sNOg.roa (raw, json)
Hash identifier: 6jnn/UoIQpQf2La2mU6dV1X65DafcaqRGMNQyAMe50g=
Subject key identifier: F1:D8:B4:25:1D:AC:04:3A:82:CF:07:C0:09:4A:79:8D:CE:AC:34:E8
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 0194266C1D508E6D119D09DABE23571BB168
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/8di0JR2sBDqCzwfACUp5jc6sNOg.roa
Signing time: Thu 02 Jan 2025 09:50:07 +0000
ROA not before: Thu 02 Jan 2025 09:50:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205113
IP address blocks: 80.231.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:1d:50:8e:6d:11:9d:09:da:be:23:57:1b:b1:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 2 09:50:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1d8b4251dac043a82cf07c0094a798dceac34e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:b9:d0:d7:77:d9:13:18:e2:ff:b3:d8:b9:
62:e5:d8:90:e0:a0:bc:28:72:f4:38:a5:12:a4:ae:
bf:89:ee:2c:05:87:cc:36:dc:e4:4b:91:e2:77:cd:
f1:91:bc:29:f5:82:62:dc:df:27:58:6a:de:c4:17:
e4:63:79:07:33:d5:df:d6:3a:c2:27:36:87:56:02:
16:e3:3a:fa:99:84:ee:7c:df:8e:d5:77:e8:ab:f5:
1a:7d:ad:57:1c:63:0c:33:a7:f7:61:f1:ea:01:d4:
76:8b:39:d1:4f:dd:0d:13:a8:40:5b:03:b5:df:eb:
b2:fc:50:e0:3d:7a:95:55:79:4b:b3:d4:e5:ac:78:
f2:d4:24:40:a8:11:da:8e:12:bb:f1:8d:9d:5b:08:
a1:16:4d:10:00:73:fc:0c:ee:62:9a:24:da:d3:d9:
07:31:fc:9d:f5:95:6e:ea:e9:c6:7a:3d:2b:cd:8d:
26:b7:d7:c1:7b:49:3c:cf:4c:07:f7:d4:b8:fa:1b:
bb:e0:ef:5a:6f:0f:07:09:f1:8c:9b:df:92:14:7c:
c6:1a:03:33:10:be:37:ca:18:38:5b:fe:11:a0:9a:
3c:cf:80:de:20:6f:4e:9f:92:c3:5f:1f:02:21:b3:
92:39:35:89:16:df:59:e1:9a:d6:05:67:1d:22:86:
ab:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D8:B4:25:1D:AC:04:3A:82:CF:07:C0:09:4A:79:8D:CE:AC:34:E8
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/8di0JR2sBDqCzwfACUp5jc6sNOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:71:8f:81:16:d6:dd:d8:be:b3:77:a2:6f:f7:49:4a:f7:03:
a5:12:5e:26:8a:99:ea:19:cf:78:65:bf:86:53:3e:e9:3e:d6:
a8:40:08:73:7f:96:e7:3b:e0:25:19:ac:62:39:c4:8e:32:4b:
9a:69:ac:7b:f1:e5:f7:52:e0:26:c2:85:56:ed:ef:72:11:ab:
ec:8e:43:51:f4:8f:38:70:67:49:d9:48:46:6f:f3:82:be:b7:
39:99:74:a7:86:6e:85:41:c0:12:33:ba:5b:71:38:6f:08:52:
73:0a:4a:9c:35:20:dd:c5:32:ba:0e:f5:91:95:69:25:3b:e6:
e9:91:a4:3e:8f:96:02:25:82:45:e8:c6:56:0f:b5:21:b2:54:
48:89:fa:d2:5c:11:c7:8d:66:48:1f:b3:84:48:7f:ea:d8:a2:
4f:a9:35:0e:b4:de:fb:b4:aa:0c:40:03:74:7b:be:39:77:1a:
d5:ee:5d:0a:20:74:e8:df:03:38:8b:4f:e5:b4:21:e5:c4:28:
d1:d0:51:45:ba:a4:64:e7:88:03:eb:08:fc:ad:a8:84:8d:0e:
60:07:ab:79:d5:aa:f5:0f:a9:49:7a:d9:5e:c9:ed:2d:05:73:
59:3b:49:4c:aa:8f:ae:4c:25:85:46:59:40:ad:74:de:05:46:
d9:48:a2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net