Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/H6jPghNQAskXkIq7zpweOWX5qnk.roa
File: H6jPghNQAskXkIq7zpweOWX5qnk.roa (raw, json)
Hash identifier: ylpvakYvI5GQKfzrD8FDWAHTjJEI9Iwa4qZrIobeKJI=
Subject key identifier: 1F:A8:CF:82:13:50:02:C9:17:90:8A:BB:CE:9C:1E:39:65:F9:AA:79
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 019566BE431F5524F7D1C4F8C579972B0333
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/H6jPghNQAskXkIq7zpweOWX5qnk.roa
Signing time: Wed 05 Mar 2025 14:38:19 +0000
ROA not before: Wed 05 Mar 2025 14:38:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21266
IP address blocks: 80.90.64.0/20 maxlen: 20
80.90.64.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:66:be:43:1f:55:24:f7:d1:c4:f8:c5:79:97:2b:03:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: Mar 5 14:38:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1fa8cf82135002c917908abbce9c1e3965f9aa79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d1:2e:cd:14:3f:32:48:e2:60:5a:14:df:8a:
5b:67:e2:82:03:29:4a:bb:03:81:80:10:17:15:74:
b8:70:a3:ea:e3:26:3f:ba:01:41:a3:db:5e:c2:ba:
88:81:b9:90:0d:4d:8f:db:a6:35:8e:89:3e:9b:a0:
70:43:b1:87:89:ea:92:3d:4c:96:8e:6a:91:24:9a:
dd:94:fb:2e:e3:87:e2:52:cc:e2:f6:44:18:2e:ad:
ca:8c:ad:ae:cb:30:18:c1:a0:58:d5:ff:af:68:2a:
4d:80:e7:84:ab:0c:4e:57:f3:0f:59:6c:c1:34:03:
22:d6:c8:20:9a:d1:a1:10:2d:03:53:be:23:5d:51:
22:98:89:e7:f7:3c:88:82:37:c6:b2:8a:04:ea:6a:
cd:13:8d:3d:32:f7:b6:f8:c2:2f:d8:44:35:3d:44:
3f:32:3a:50:34:5b:47:f6:11:5f:21:af:b0:9d:95:
c4:9f:1f:b2:53:63:a5:b5:6b:f0:99:ef:26:6e:51:
08:6f:3b:23:72:61:92:e0:94:e9:21:a4:a9:88:f8:
b9:44:56:77:9f:f6:77:a8:14:46:fc:03:c0:30:15:
f2:08:ad:a8:50:7b:4a:e5:9a:e8:da:b1:4b:86:a2:
1c:dd:26:d0:b4:af:71:ce:9e:f3:38:da:a4:0c:d8:
60:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A8:CF:82:13:50:02:C9:17:90:8A:BB:CE:9C:1E:39:65:F9:AA:79
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/H6jPghNQAskXkIq7zpweOWX5qnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/20
Signature Algorithm: sha256WithRSAEncryption
89:4f:e2:8d:b9:ca:c8:a7:f8:41:87:bd:78:db:e3:41:3b:e8:
0a:5f:88:1c:82:c7:a9:6f:26:2f:65:15:51:13:b2:f8:f6:52:
22:60:08:32:e9:7c:15:d5:89:26:b9:d3:7f:5e:ee:92:9f:95:
4a:18:12:1a:27:0e:33:a6:30:e4:15:d6:c0:30:21:1f:a6:df:
7c:e6:ed:a4:39:67:87:e6:77:64:af:6c:d8:cc:b4:31:cf:6d:
41:c1:39:e7:df:f1:ca:c8:87:86:00:5f:ef:72:62:cd:43:8c:
1d:f5:6b:2e:d0:9e:6a:44:25:c7:88:da:0a:8b:e0:fe:2f:37:
61:fd:71:f9:2e:cc:70:72:8a:0b:69:f2:44:b9:74:1d:e4:42:
e4:91:1a:6f:52:b8:00:4d:6d:cd:39:11:28:c5:e9:4a:79:d5:
f6:20:af:80:b4:f3:09:42:c6:08:e4:70:36:14:c8:06:75:86:
db:0b:5b:bd:ec:57:49:15:2f:20:85:91:a8:b2:ac:a8:a4:73:
9f:0f:23:4c:a4:83:3f:f6:b0:99:ee:1b:aa:bf:e3:93:a7:58:
b0:30:0e:81:38:c4:3a:9a:b6:d2:5f:93:97:0e:7c:e5:53:29:
80:ae:b0:cf:bd:11:7a:13:e3:d4:a8:94:f2:7d:de:f9:5e:4b:
43:7a:62:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 18:31:14 2025 by rpki-client on console.sobornost.net