Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/Ql7ItDDdq7bhBxPpwqaRhSHm764.roa
File: Ql7ItDDdq7bhBxPpwqaRhSHm764.roa (raw, json)
Hash identifier: C5tr2QQM8mt5nL4T08yqpG8HFjoTMzn0Nfj9PYa0vX4=
Subject key identifier: 42:5E:C8:B4:30:DD:AB:B6:E1:07:13:E9:C2:A6:91:85:21:E6:EF:AE
Certificate issuer: /CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Certificate serial: 01942143CD68CB59D338CBD812479B9EA63F
Authority key identifier: A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/Ql7ItDDdq7bhBxPpwqaRhSHm764.roa
Signing time: Wed 01 Jan 2025 09:47:59 +0000
ROA not before: Wed 01 Jan 2025 09:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21266
IP address blocks: 80.90.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:cd:68:cb:59:d3:38:cb:d8:12:47:9b:9e:a6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d029f2c321adb59eca5fca57a1eb9bdf531d6a
Validity
Not Before: Jan 1 09:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=425ec8b430ddabb6e10713e9c2a6918521e6efae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d2:b8:84:c0:ee:b7:70:ae:ab:66:c8:e2:dc:
ef:5a:aa:77:88:eb:53:7f:a1:fa:55:88:73:1c:95:
7a:5b:58:1f:04:75:78:ab:29:71:bc:fb:24:69:9d:
93:86:3d:bc:b2:09:f6:5a:8a:12:c2:cd:c2:69:24:
5d:1a:ae:7c:cd:01:ce:78:92:8f:3d:96:eb:32:99:
4e:d4:05:66:7b:fa:4f:73:67:2c:ad:a8:77:d8:09:
80:94:7a:0d:5f:d2:34:00:21:0f:07:d7:2b:ae:13:
e8:9b:be:36:bc:af:9c:10:f5:6f:8d:2d:4b:38:40:
f6:ac:e9:5b:68:d2:28:6e:03:31:4e:b4:41:86:b4:
dd:33:01:11:cc:87:62:bc:db:99:62:29:40:ca:20:
9a:d0:8e:88:b3:e3:b0:d2:e6:5d:60:ed:e2:9f:62:
cf:e0:4b:17:69:6b:25:06:c9:07:75:9e:5c:d6:40:
63:7f:da:a7:b8:c9:1c:d2:0f:6a:d4:9e:79:bc:f5:
c0:da:09:1f:e7:cd:90:74:83:fd:a4:21:84:e8:41:
19:f1:2c:de:f5:30:2e:87:6b:62:83:71:f7:09:54:
af:d3:99:b8:bd:02:78:d7:db:ec:8c:6e:f4:cc:6a:
2d:d5:17:41:a2:ac:fe:41:59:75:42:7a:f9:f1:25:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5E:C8:B4:30:DD:AB:B6:E1:07:13:E9:C2:A6:91:85:21:E6:EF:AE
X509v3 Authority Key Identifier:
keyid:A4:D0:29:F2:C3:21:AD:B5:9E:CA:5F:CA:57:A1:EB:9B:DF:53:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNAp8sMhrbWeyl_KV6Hrm99THWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/Ql7ItDDdq7bhBxPpwqaRhSHm764.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/126756-9a94-4a91-bf47-8ad6ffb2617d/1/pNAp8sMhrbWeyl_KV6Hrm99THWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.64.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:a9:88:fa:c2:14:70:19:ad:5b:bd:fc:a5:21:c0:da:09:06:
1c:c6:a1:8b:eb:13:bf:3f:a0:db:b8:ac:b4:7d:4e:09:9d:30:
c7:ec:45:91:c7:68:49:9e:c8:5b:bc:c5:35:97:3f:47:04:0e:
69:b9:43:47:0c:fb:61:09:9d:5c:e4:24:04:89:5b:d5:92:ba:
0a:2e:f1:08:ec:61:ef:d0:ca:ef:6f:e6:3b:2b:7b:00:25:85:
11:fa:09:ba:e5:22:81:82:96:36:d2:06:d9:ca:a0:80:1f:d4:
1d:81:bd:6c:59:f2:1a:a4:46:4a:ee:99:b9:1b:c1:85:55:89:
cc:b8:4e:d9:ce:a0:9c:7e:ec:6b:af:ee:9a:f1:2e:ea:d3:6a:
0e:30:f4:8b:11:d3:b9:1b:77:8a:30:db:40:42:81:23:b5:3c:
aa:d6:78:91:42:22:25:11:54:65:8e:c6:fa:cd:3e:1c:37:c9:
dc:e3:fe:b4:2d:78:99:fc:26:1e:76:15:d7:f8:30:ba:64:ca:
6e:35:c8:dc:27:54:c3:8d:e9:8e:d2:ec:b4:de:7d:ab:85:11:
3a:ae:21:ce:fd:30:be:16:97:2d:78:70:e8:49:e1:62:e5:ff:
bd:8a:6c:4b:9b:fe:0b:52:03:a7:4a:0c:79:38:bc:be:f9:71:
cf:c2:b9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:47:58 2025 by rpki-client on console.sobornost.net