Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7fbb64-ff75-4082-9d1c-50f597043655/1/YfjOZWfohnpgi_RjomAZARqxn4U.roa
File: YfjOZWfohnpgi_RjomAZARqxn4U.roa (raw, json)
Hash identifier: yBlSDu7YKgaLAkMUqyRj1B0OLBke6N0QGqSjfyZ+hpg=
Subject key identifier: 61:F8:CE:65:67:E8:86:7A:60:8B:F4:63:A2:60:19:01:1A:B1:9F:85
Certificate issuer: /CN=ec68368c5d294160f4d2d0ceaf7531e4475fa533
Certificate serial: 098B4254
Authority key identifier: EC:68:36:8C:5D:29:41:60:F4:D2:D0:CE:AF:75:31:E4:47:5F:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Gg2jF0pQWD00tDOr3Ux5EdfpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7fbb64-ff75-4082-9d1c-50f597043655/1/YfjOZWfohnpgi_RjomAZARqxn4U.roa
Signing time: Mon 07 Mar 2022 15:05:34 +0000
ROA not before: Mon 07 Mar 2022 15:05:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 79.143.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160121428 (0x98b4254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec68368c5d294160f4d2d0ceaf7531e4475fa533
Validity
Not Before: Mar 7 15:05:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61f8ce6567e8867a608bf463a26019011ab19f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:ba:40:28:18:2c:c7:04:da:53:fc:4f:ac:
e7:55:f3:69:36:2a:d0:bd:7a:51:78:bd:41:d5:36:
5e:3a:f5:02:80:f9:81:c7:7f:8a:48:f1:85:cf:0e:
e1:8e:65:dd:7e:02:19:c0:58:ee:68:46:1a:88:08:
b3:9f:0f:71:62:c6:60:0f:13:94:d7:b5:86:2e:a8:
81:eb:b5:53:d7:5c:2c:62:26:d8:42:7f:1a:35:d4:
d7:c3:bf:42:5a:d5:56:cc:21:1c:d9:ec:2b:8d:69:
3c:aa:87:60:ad:43:0d:bd:6e:c5:7b:0e:90:e2:70:
61:79:55:36:a6:96:ad:5a:27:a9:4c:f0:d2:14:9f:
aa:97:1b:65:c9:d2:cb:13:12:7f:9d:18:2a:f2:b5:
39:ec:b1:e2:99:6e:27:8d:f1:2a:52:27:ad:d7:21:
ae:1b:da:5a:0e:47:fa:e7:3f:14:ba:e0:3a:2a:8b:
2f:d2:1e:52:1e:2c:a2:66:71:ae:6b:6c:14:b4:f3:
5a:12:8f:8d:91:bb:bf:ab:99:3f:e3:51:b0:a1:93:
2f:a9:38:85:85:f1:a8:d7:0c:e2:d7:74:2a:09:7d:
7d:ef:d1:67:3b:8c:35:4b:44:c1:f3:59:02:7d:65:
37:6a:54:b4:b0:95:13:67:d9:ee:b9:3a:16:b0:27:
4a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F8:CE:65:67:E8:86:7A:60:8B:F4:63:A2:60:19:01:1A:B1:9F:85
X509v3 Authority Key Identifier:
keyid:EC:68:36:8C:5D:29:41:60:F4:D2:D0:CE:AF:75:31:E4:47:5F:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Gg2jF0pQWD00tDOr3Ux5EdfpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7fbb64-ff75-4082-9d1c-50f597043655/1/YfjOZWfohnpgi_RjomAZARqxn4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7fbb64-ff75-4082-9d1c-50f597043655/1/7Gg2jF0pQWD00tDOr3Ux5EdfpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.19.0/24
Signature Algorithm: sha256WithRSAEncryption
70:7a:6e:30:f0:15:35:f4:06:b3:38:99:07:b8:3f:af:50:c3:
b5:80:9e:3f:db:b3:d4:54:c9:b9:db:5a:d3:14:85:47:89:3e:
24:64:3a:52:4d:fe:6c:d5:96:7a:7c:7d:6f:e0:36:5f:17:34:
1a:33:76:10:91:dc:9d:48:0c:3a:a7:c2:78:a7:a0:65:5a:09:
7d:17:a7:f8:de:12:8e:b3:e2:3f:75:b6:b0:77:d6:5d:26:24:
0d:75:92:b4:ab:f4:36:70:73:fe:ba:fb:50:e0:89:eb:54:f0:
be:5f:0f:e2:3b:f6:7f:45:be:25:5b:0d:e6:7d:15:b7:be:c9:
75:e5:77:7c:c7:8b:2d:ac:91:31:54:71:5c:3b:2d:40:e5:96:
00:a7:38:54:a7:d8:41:e2:dc:86:20:f1:0f:26:2d:be:52:88:
16:19:8c:6f:b4:88:15:23:2c:b5:4b:26:67:2f:8e:fb:13:05:
b0:4e:03:b6:60:f4:65:b9:72:00:06:54:99:51:b4:9a:44:77:
8a:72:54:6c:6e:e6:89:0e:79:c1:76:bb:25:79:44:42:0b:96:
9a:ed:7f:63:8b:47:76:1e:49:0f:be:f0:89:af:66:d1:4a:d1:
c5:04:48:6f:b8:dd:75:f2:20:15:0c:46:b5:c4:df:09:d4:40:
4c:6c:50:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:23 2025 by rpki-client