Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/su4uJEaKpvcz2tMzU7C5SdtxASs.roa
File: su4uJEaKpvcz2tMzU7C5SdtxASs.roa (raw, json)
Hash identifier: NrT2NCOoKhHzI/kr15PY+AfddhE3H98HGpo2dID1Mdg=
Subject key identifier: B2:EE:2E:24:46:8A:A6:F7:33:DA:D3:33:53:B0:B9:49:DB:71:01:2B
Certificate issuer: /CN=ab53ec0e9a053cbbe0e9a071bcad9e68a99ccfa8
Certificate serial: 019396F6B25A999F1AFFC1A1F8175F22A316
Authority key identifier: AB:53:EC:0E:9A:05:3C:BB:E0:E9:A0:71:BC:AD:9E:68:A9:9C:CF:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1PsDpoFPLvg6aBxvK2eaKmcz6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/su4uJEaKpvcz2tMzU7C5SdtxASs.roa
Signing time: Thu 05 Dec 2024 13:16:10 +0000
ROA not before: Thu 05 Dec 2024 13:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34731
IP address blocks: 80.76.16.0/20 maxlen: 20
80.76.16.0/21 maxlen: 21
80.76.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:96:f6:b2:5a:99:9f:1a:ff:c1:a1:f8:17:5f:22:a3:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab53ec0e9a053cbbe0e9a071bcad9e68a99ccfa8
Validity
Not Before: Dec 5 13:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2ee2e24468aa6f733dad33353b0b949db71012b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:78:25:52:7a:85:8e:a1:c7:d5:27:d9:5a:f6:
a3:cf:57:86:e3:a0:e0:70:ea:d3:d0:aa:0d:eb:40:
72:e9:0d:9f:3d:86:5b:a6:13:68:1a:f1:f6:fb:4a:
b4:9d:ed:2b:9e:b2:cc:ff:dc:cc:4d:d9:d7:ce:63:
48:01:0a:b4:1a:dc:83:fd:f0:39:3d:e3:de:6c:36:
56:3a:be:93:f8:cf:98:dc:5a:6b:e2:d6:67:c8:d7:
01:4b:2b:ae:c8:58:52:25:f8:c4:27:3b:05:8c:06:
91:58:db:f9:07:90:c4:a5:33:ca:02:53:af:42:78:
b3:3f:a5:2d:04:d4:8f:8f:41:a8:2d:ef:73:b9:09:
72:11:6e:bc:eb:39:13:2f:b2:b2:51:9d:11:c7:66:
75:cd:ea:4b:db:9b:1f:19:2e:3e:ae:11:de:5b:fc:
17:92:cb:21:12:00:be:dc:df:0a:7b:86:07:a6:69:
42:a1:ae:2f:02:c5:08:f5:52:2a:57:6c:17:0c:04:
8d:43:76:98:15:e5:13:99:c9:88:06:6e:b2:d3:6d:
55:7b:fb:2c:1c:59:9b:66:0c:e3:ac:83:1b:02:99:
d5:ba:cc:f9:1c:65:35:2a:1b:7c:b9:c7:64:bb:c8:
90:9a:a8:05:61:d8:e5:fc:e5:fc:63:ae:53:90:bd:
03:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EE:2E:24:46:8A:A6:F7:33:DA:D3:33:53:B0:B9:49:DB:71:01:2B
X509v3 Authority Key Identifier:
keyid:AB:53:EC:0E:9A:05:3C:BB:E0:E9:A0:71:BC:AD:9E:68:A9:9C:CF:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1PsDpoFPLvg6aBxvK2eaKmcz6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/su4uJEaKpvcz2tMzU7C5SdtxASs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/61f398-94f6-4468-85f3-63fcaac31ca3/1/q1PsDpoFPLvg6aBxvK2eaKmcz6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.16.0/20
Signature Algorithm: sha256WithRSAEncryption
ca:27:49:fd:4a:68:11:71:c1:8c:fe:c6:80:64:cc:be:41:7b:
6f:37:a7:3f:9c:e0:19:00:99:61:16:ed:0e:0e:80:d9:59:c8:
b3:0e:b4:f2:db:32:9e:e9:06:75:b5:a7:3c:89:97:1c:f9:c8:
33:7a:fc:21:0c:43:3e:51:c5:0e:8c:f4:0b:2a:66:6d:ff:e6:
e6:0e:3d:8f:26:a4:2c:8c:1d:c5:e0:9e:42:e2:7a:99:be:92:
0a:9b:bb:53:2d:c7:ec:a5:ad:d6:dc:4e:4f:ff:ff:f3:bd:6c:
19:a8:d0:c6:8c:f6:ec:3e:d3:73:f6:1e:ee:de:98:44:9e:d6:
41:2b:b4:f8:8d:fa:8d:ee:7a:61:bc:c0:46:90:0c:58:ae:fb:
90:8b:c6:18:67:15:17:34:b5:d2:80:0e:5c:ef:8e:25:31:06:
75:d6:39:5a:3f:f9:62:df:39:a0:bb:b5:c6:00:60:58:10:03:
88:e8:ca:6a:1e:c3:37:ad:ed:d4:ab:e1:9c:d0:b9:1e:b4:9e:
00:4f:07:09:62:ea:fa:8c:d2:94:ee:be:e1:b7:f9:bf:f8:df:
f7:9a:78:2f:20:d5:1c:bb:c1:c4:bb:a7:df:2c:4b:55:68:ec:
2a:10:7a:63:51:48:25:81:43:1b:37:b6:6f:95:86:fe:7d:3e:
29:78:57:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:02 2024 by rpki-client on console.sobornost.net