Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/Y9z347AysFfpa1BhfD09VxXCIR8.roa
File: Y9z347AysFfpa1BhfD09VxXCIR8.roa (raw, json)
Hash identifier: qUmiXTZ0hJVQMehtvj0c+glBLM7q6v5/k3LP5RShE7E=
Subject key identifier: 63:DC:F7:E3:B0:32:B0:57:E9:6B:50:61:7C:3D:3D:57:15:C2:21:1F
Certificate issuer: /CN=f1479b83c520d784445c24828bab633f0d702cf3
Certificate serial: 01942143FB554E55AA20AF693127D8CB637D
Authority key identifier: F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/Y9z347AysFfpa1BhfD09VxXCIR8.roa
Signing time: Wed 01 Jan 2025 09:48:10 +0000
ROA not before: Wed 01 Jan 2025 09:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35429
IP address blocks: 80.251.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:fb:55:4e:55:aa:20:af:69:31:27:d8:cb:63:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1479b83c520d784445c24828bab633f0d702cf3
Validity
Not Before: Jan 1 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63dcf7e3b032b057e96b50617c3d3d5715c2211f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:49:fe:61:6a:eb:d6:f8:7f:f5:09:fb:be:a7:
30:bd:70:90:8d:b5:9f:f9:82:6c:03:a9:4f:51:09:
1a:47:28:88:3c:6e:f9:49:0a:77:d1:e6:f0:f1:fd:
d9:e2:6d:83:f0:80:b9:65:b7:91:13:ba:13:16:05:
02:b2:c5:d4:aa:31:f8:87:5e:4f:18:0c:9e:6d:46:
b4:a5:e9:74:86:54:45:e4:e6:c3:62:72:10:5a:3d:
e3:58:e8:f5:bd:cd:c6:06:ca:1d:0d:9f:83:7d:e5:
16:85:90:e3:8d:c2:0d:6c:c6:79:74:bd:d7:43:a3:
9c:52:3a:6e:9b:61:cc:7b:29:8a:27:d5:48:75:c6:
49:a4:7c:94:47:4c:9a:37:d5:7f:96:8d:25:45:de:
a5:bc:d9:fb:ef:f5:c7:31:95:7f:ac:51:ac:b5:f1:
1b:c9:77:18:df:35:03:b8:ea:d9:d9:a7:b1:d8:55:
03:bc:1f:79:5d:97:36:52:f1:0d:b4:ea:7d:1d:57:
9f:89:0e:33:c0:44:ad:69:ce:d1:5f:0c:b2:76:92:
11:cc:c0:65:8c:b6:67:d1:68:f6:28:7e:7d:42:b1:
09:37:df:27:64:6f:5b:86:1a:f2:23:10:4d:68:00:
16:bc:01:f1:e5:b6:2a:65:30:6a:bd:e2:e4:ea:8c:
af:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DC:F7:E3:B0:32:B0:57:E9:6B:50:61:7C:3D:3D:57:15:C2:21:1F
X509v3 Authority Key Identifier:
keyid:F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/Y9z347AysFfpa1BhfD09VxXCIR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/8Uebg8Ug14REXCSCi6tjPw1wLPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.251.96.0/20
Signature Algorithm: sha256WithRSAEncryption
07:c2:72:71:b1:d7:ab:e4:a0:a1:b2:25:b5:56:ac:fc:c7:37:
ef:b6:1c:d9:6e:5d:40:55:e7:a2:3d:bd:08:da:b5:e0:48:c4:
a8:bb:16:0f:02:66:8c:9e:f2:94:23:0f:8d:60:5d:87:1e:45:
e1:99:ed:ba:a1:93:51:85:0b:f1:6f:0b:6a:e4:af:d0:aa:14:
e6:21:d4:dd:2a:65:ac:b7:7c:63:17:a5:1d:1a:22:26:c6:1a:
ec:13:f2:88:ac:ed:04:37:57:df:2b:36:27:18:ae:72:36:7c:
14:4b:53:cf:ce:77:93:2a:73:73:db:d7:44:81:6b:f9:65:7c:
48:da:ef:9d:9c:5d:a5:01:64:f0:1c:cb:f4:9f:e3:0c:a0:cd:
7e:41:be:74:2a:f4:a4:5e:ac:07:a7:8e:fa:59:40:58:6a:b5:
cd:b9:8b:ac:d3:44:44:da:ed:ba:b6:bf:9b:5e:6f:18:b3:90:
6a:dd:af:2d:49:65:cf:92:6e:58:55:72:79:84:d0:c5:85:59:
09:34:34:67:6c:f4:26:97:fe:53:14:1f:86:03:0e:af:59:59:
fb:c0:fe:80:1b:7b:5c:49:fc:21:6c:3b:d5:c5:9a:59:25:b5:
67:ec:e3:e3:df:2d:10:98:56:27:a6:a2:97:b8:ef:c6:46:f0:
34:3f:ad:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:40 2025 by rpki-client on console.sobornost.net