Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fBnCLVe2bnm5egcosIhxFK-lxtQ.roa
File: fBnCLVe2bnm5egcosIhxFK-lxtQ.roa (raw, json)
Hash identifier: nytTVyNKBQUH0NKaEG4UM5/sOP2eE+RfizrGRcH4D1M=
Subject key identifier: 7C:19:C2:2D:57:B6:6E:79:B9:7A:07:28:B0:88:71:14:AF:A5:C6:D4
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 019423D77CD4E1DDB30BFA3029B9FBB80BBD
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fBnCLVe2bnm5egcosIhxFK-lxtQ.roa
Signing time: Wed 01 Jan 2025 21:48:32 +0000
ROA not before: Wed 01 Jan 2025 21:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25107
IP address blocks: 80.233.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:7c:d4:e1:dd:b3:0b:fa:30:29:b9:fb:b8:0b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 1 21:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c19c22d57b66e79b97a0728b0887114afa5c6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7a:aa:52:d1:80:99:da:36:41:b3:73:a5:41:
d3:ba:e2:e9:c5:7f:98:cf:c4:3a:83:90:f0:a9:46:
df:09:01:f8:63:90:7e:fc:fb:11:6b:77:58:73:d7:
3f:61:0a:fd:8b:e7:22:21:a6:48:c2:6c:47:36:ae:
53:d2:4d:b8:13:db:d4:d1:c3:76:35:14:95:3a:d7:
47:67:b3:79:cd:39:07:eb:45:ed:a0:23:9c:bd:ca:
69:89:71:8e:f3:2a:b5:cb:88:4d:cd:a3:47:4a:48:
c2:58:86:7a:02:72:08:4a:b0:ad:d7:e3:f2:17:d6:
9e:3c:f7:15:e0:a4:dd:1d:e3:8d:4a:b0:d1:82:0d:
67:87:46:ab:3c:0a:41:b8:73:39:2c:57:88:77:36:
91:ba:39:c5:2a:9f:8e:42:78:22:c3:1e:57:f3:08:
0c:c3:cc:88:2a:bb:0a:d7:f3:3f:d6:77:83:a5:1e:
f4:60:8f:ad:6d:52:a1:b9:13:30:66:73:f5:eb:68:
40:a4:24:75:47:de:bc:dc:e4:22:25:51:8a:8a:65:
18:0e:e2:9e:af:6c:25:55:f1:ee:b6:c8:ca:2e:f8:
63:40:e0:7f:f7:76:a3:e2:1c:ec:df:80:da:c1:41:
46:a2:c6:49:a7:4f:ed:bb:61:7d:83:5e:4f:b7:27:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:19:C2:2D:57:B6:6E:79:B9:7A:07:28:B0:88:71:14:AF:A5:C6:D4
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fBnCLVe2bnm5egcosIhxFK-lxtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.138.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:99:13:f8:cc:e6:c7:f4:15:b1:e8:77:1a:96:66:61:e4:9b:
28:0f:65:de:c9:9a:0f:87:d7:98:18:af:44:62:d1:bf:d9:dd:
78:19:48:88:ba:5a:ce:1a:7f:47:4f:8b:de:89:ef:99:7c:c4:
15:49:40:c4:50:50:29:5d:3d:d1:73:7b:2e:16:7f:86:b4:76:
1f:88:22:a5:cb:bf:10:e3:92:14:17:f0:d7:f1:1a:cc:5c:4b:
00:f5:d8:02:c5:61:03:f3:80:da:32:67:81:d2:57:fa:cb:6d:
e4:e2:3d:24:f1:5b:21:93:4e:a7:95:22:40:37:39:24:bb:5f:
97:e7:98:3c:8e:70:98:27:fe:c6:54:27:38:08:52:86:e2:d1:
c2:8a:88:bb:8d:e2:32:f5:e6:44:e7:d7:6f:ec:a5:61:2d:d2:
57:0f:21:bb:40:b8:ac:aa:df:6e:d8:55:ec:9b:97:5d:e4:15:
ae:35:38:fa:6c:a7:c5:d6:88:8b:93:bd:76:5e:f7:82:4a:68:
20:2a:90:92:85:9d:55:3a:1d:c8:9c:05:8d:e5:ab:06:72:9b:
a4:b4:ff:f8:71:e5:9d:08:92:35:67:af:11:cd:e6:0f:76:57:
99:ea:f8:6f:e2:4a:94:95:a9:1a:64:89:87:26:a8:4b:41:d3:
70:7e:c0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:35:19 2025 by rpki-client