Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1D52BMnhR_gUwz0lbGzHPys5fOM.roa
File: 1D52BMnhR_gUwz0lbGzHPys5fOM.roa (raw, json)
Hash identifier: LJlbkCShxPn1cvX+AGhCNWeWkSn0f5Lqk1rhtHqW92c=
Subject key identifier: D4:3E:76:04:C9:E1:47:F8:14:C3:3D:25:6C:6C:C7:3F:2B:39:7C:E3
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0193B99AAED7389BFC5D96872BF0F08B636B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1D52BMnhR_gUwz0lbGzHPys5fOM.roa
Signing time: Thu 12 Dec 2024 06:42:22 +0000
ROA not before: Thu 12 Dec 2024 06:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 80.71.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b9:9a:ae:d7:38:9b:fc:5d:96:87:2b:f0:f0:8b:63:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Dec 12 06:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d43e7604c9e147f814c33d256c6cc73f2b397ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:99:a5:3c:0c:ec:5e:f2:2c:84:c1:d9:ff:
65:a2:37:b3:af:0d:a8:df:2e:45:4d:71:4d:e7:cf:
12:b5:ad:8a:36:04:eb:71:ad:40:13:13:d8:ef:10:
19:20:40:28:2f:71:fc:bf:75:9d:c6:c1:c4:6d:2d:
0e:09:86:f6:19:d9:e3:b6:d1:33:85:94:80:7d:f9:
28:5b:a3:bd:2b:38:d0:60:ba:cb:94:8f:49:94:ca:
1a:4e:9f:6b:15:7f:bf:12:43:62:6c:8a:cc:c8:9f:
0c:13:e8:3a:e6:cb:b3:22:a3:75:17:4f:d0:d3:77:
d1:f0:9d:1b:27:e8:ea:ef:7a:a5:37:5c:0d:c3:1f:
d0:89:6f:fe:75:05:9a:31:90:b4:5d:07:7e:75:b5:
e7:01:34:d3:c0:77:ac:80:a6:d8:38:e0:a3:b2:26:
29:b4:74:cd:11:c9:d4:cc:d1:da:83:97:8d:81:e3:
74:b5:9e:41:4f:38:5a:65:01:16:f2:06:12:83:94:
7a:e5:f2:ae:c1:a9:1b:94:55:73:be:2d:e4:4d:90:
0f:31:2e:ed:e6:ea:0a:d2:e5:7f:83:80:3a:18:49:
81:f1:d2:7c:66:39:68:fa:5b:68:42:6b:3d:2e:77:
7c:e7:0c:05:68:62:bc:48:15:ea:ea:02:d0:ba:d3:
57:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3E:76:04:C9:E1:47:F8:14:C3:3D:25:6C:6C:C7:3F:2B:39:7C:E3
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1D52BMnhR_gUwz0lbGzHPys5fOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.224.0/24
Signature Algorithm: sha256WithRSAEncryption
75:8e:db:25:3c:91:3c:04:f5:b8:6d:5b:38:5b:9a:66:93:bf:
94:dd:0c:1b:4d:e7:25:4e:e4:a3:ca:24:d8:5b:70:e0:2f:c1:
b9:6c:a2:7a:97:87:e8:c7:3f:45:03:3f:39:a6:e1:63:24:ff:
80:cf:db:0b:27:32:7e:cb:a4:07:99:5f:f4:8b:e9:ff:65:8b:
05:48:99:7a:9d:43:65:ca:15:92:97:78:0d:26:ee:6e:4e:d1:
10:8a:d9:34:9c:2a:84:8c:32:1a:c0:4b:d1:67:64:c9:21:81:
64:b4:e3:81:19:e3:c5:3f:4e:da:38:e6:06:f6:ae:3c:94:af:
be:1f:eb:74:36:93:13:3e:e4:d2:08:b5:f9:a7:54:7e:da:ae:
37:54:e3:e0:c1:c0:17:0d:dd:2f:f0:06:66:6f:87:14:7c:78:
5e:6e:7b:22:e4:95:8c:1b:80:4c:07:7c:37:1c:0a:da:89:ee:
19:55:32:f7:8a:82:f5:73:7b:75:c9:a1:45:6d:fd:f9:3a:46:
68:fd:63:2d:9e:98:4c:8a:fc:50:23:13:45:eb:d4:89:2f:df:
f0:59:16:0f:55:8b:ae:4e:b1:cf:38:20:9b:dc:42:ef:fe:7a:
9b:52:2c:2b:07:22:f1:4c:c6:32:c9:7b:ca:7f:0f:b6:5d:1a:
52:1a:f7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:18 2024 by rpki-client on console.sobornost.net