Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/Z8wnA2itVPR9zxxfqnLX_eyTvXY.roa
File: Z8wnA2itVPR9zxxfqnLX_eyTvXY.roa (raw, json)
Hash identifier: N7iRDq2qhJARhENgYS1Gobu76hKcgsCLnrDoJ7LMXdA=
Subject key identifier: 67:CC:27:03:68:AD:54:F4:7D:CF:1C:5F:AA:72:D7:FD:EC:93:BD:76
Certificate issuer: /CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Certificate serial: 0194228D1B4668363F6B0EF90E3FB29A0B72
Authority key identifier: 8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/Z8wnA2itVPR9zxxfqnLX_eyTvXY.roa
Signing time: Wed 01 Jan 2025 15:47:40 +0000
ROA not before: Wed 01 Jan 2025 15:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198037
IP address blocks: 80.85.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:1b:46:68:36:3f:6b:0e:f9:0e:3f:b2:9a:0b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Validity
Not Before: Jan 1 15:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67cc270368ad54f47dcf1c5faa72d7fdec93bd76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4c:4d:60:53:74:c2:7e:42:43:3d:43:ab:c3:
4a:40:47:8d:61:ed:82:a1:07:f8:b0:b7:fc:53:60:
6b:f9:1f:1b:ad:1d:af:9f:96:1a:8c:f8:33:e6:cd:
89:68:35:c3:88:81:0d:6f:c8:0c:ff:4b:0f:f6:bd:
54:0e:a5:b1:59:5b:3d:e4:3d:f9:78:a0:8c:eb:1f:
40:b6:a4:34:02:b6:76:eb:c7:90:41:12:44:ca:7e:
8b:f0:62:f7:98:58:c9:24:01:2a:24:f8:7d:b9:cf:
0d:4c:7c:9f:35:bf:e8:e8:5a:f2:4c:45:7b:6a:c4:
48:50:86:d3:94:35:57:cb:b2:7f:16:cf:68:ae:09:
e1:fa:36:3b:68:b3:9b:09:ce:54:f5:72:6a:21:11:
00:7c:54:a3:b6:9b:1d:7f:d4:40:b1:cd:f4:c6:2d:
9f:33:5c:95:c4:e9:47:82:fe:7d:86:b5:c3:82:0c:
29:89:9e:c9:cd:d7:99:90:90:72:2d:f4:87:58:a4:
1b:e6:7e:26:7e:d0:98:c8:b1:51:fd:cb:b0:be:bb:
0f:9b:40:a3:92:e1:9e:df:1f:3a:2a:54:27:d9:39:
9c:5a:01:dc:71:ef:06:07:ab:b1:86:e4:fd:9e:53:
c3:cd:26:7b:a2:f0:bf:ef:e2:fb:a7:be:e7:d4:c7:
cf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CC:27:03:68:AD:54:F4:7D:CF:1C:5F:AA:72:D7:FD:EC:93:BD:76
X509v3 Authority Key Identifier:
keyid:8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/Z8wnA2itVPR9zxxfqnLX_eyTvXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/i90HS96_RRVKJr6_3OVTgpFTSwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.242.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:5c:6d:7b:c4:ea:c9:e9:9c:a7:83:1d:75:09:f1:96:e4:89:
61:64:d2:44:bb:18:16:f8:f8:70:21:61:d1:f6:54:ab:44:dc:
83:2b:38:9f:6a:b9:7e:78:7d:c4:73:63:43:8d:cc:16:92:a7:
69:a5:f9:bf:4a:77:be:5e:f2:3f:51:d5:5a:44:d0:36:e5:cb:
7c:17:b4:3d:2c:16:c5:75:d8:9a:63:83:de:90:55:69:6e:4f:
ff:d2:40:89:25:df:71:e5:b6:eb:c3:0a:77:69:b3:66:89:3a:
cf:29:5d:d0:06:b0:05:c2:8d:b2:47:30:06:a5:98:4f:81:af:
ee:0a:6a:19:39:0f:19:b0:67:67:d4:71:09:e0:3f:c1:49:fc:
3f:d7:e0:af:b9:94:37:8c:d7:80:66:ab:46:3a:88:86:3f:6b:
bb:8b:93:64:cc:01:e2:3f:fd:32:49:13:63:61:7a:87:86:7d:
5c:f3:d3:b4:1c:68:7e:4d:cd:f8:33:91:eb:a9:7d:af:ae:a1:
86:f6:36:4c:18:72:0f:32:dd:f7:d0:f8:35:46:9f:6c:68:b2:
28:26:f0:db:a8:9f:74:2f:05:3d:68:3a:57:98:12:0d:cf:13:
a5:16:9a:54:1c:75:a3:d2:d1:b5:c9:69:f1:22:f4:bf:36:e6:
56:4e:10:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:51 2025 by rpki-client on console.sobornost.net