Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/24d458-8f77-43d7-85c5-1a9d70ed2847/1/2HRFbyqwZ9MkCyauoamlfYzzc0E.roa
File: 2HRFbyqwZ9MkCyauoamlfYzzc0E.roa (raw, json)
Hash identifier: Ei+RU1AkX7SHY3/r0Os/6Pyv7C+TIQwZ22e9OuwFZY0=
Subject key identifier: D8:74:45:6F:2A:B0:67:D3:24:0B:26:AE:A1:A9:A5:7D:8C:F3:73:41
Certificate issuer: /CN=db810ec3ef37b842cad56138d54db97a8f6b76a8
Certificate serial: 0186288FAC6D602B4EC5CF6501302D8B6B53
Authority key identifier: DB:81:0E:C3:EF:37:B8:42:CA:D5:61:38:D5:4D:B9:7A:8F:6B:76:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24EOw-83uELK1WE41U25eo9rdqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/24d458-8f77-43d7-85c5-1a9d70ed2847/1/2HRFbyqwZ9MkCyauoamlfYzzc0E.roa
Signing time: Mon 06 Feb 2023 21:09:09 +0000
ROA not before: Mon 06 Feb 2023 21:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212953
IP address blocks: 79.110.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:28:8f:ac:6d:60:2b:4e:c5:cf:65:01:30:2d:8b:6b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db810ec3ef37b842cad56138d54db97a8f6b76a8
Validity
Not Before: Feb 6 21:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d874456f2ab067d3240b26aea1a9a57d8cf37341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:aa:e3:75:d9:ff:d6:f4:20:40:84:d8:60:a6:
27:b3:db:03:92:68:5c:44:b8:a8:a7:d2:bd:e3:7b:
87:3b:6b:ab:8b:e5:56:80:de:e1:de:97:1c:d9:32:
f1:04:12:03:e4:73:43:b7:6f:b1:de:56:dc:f4:24:
c0:70:98:6a:ac:e3:9e:3f:ca:ee:fb:08:0c:f6:d3:
c5:84:60:d5:cc:7c:65:84:1a:02:13:1c:c2:38:65:
df:08:9f:28:00:6f:5b:05:d2:71:67:0a:6d:41:15:
41:62:bd:cd:9b:d2:8c:35:69:1a:4a:22:f5:d5:56:
b8:a8:4d:fe:3e:af:a9:42:05:a7:79:81:6a:fd:d9:
10:47:ef:b7:1c:41:2d:59:f1:a7:0b:1c:23:eb:56:
a0:04:69:5e:90:08:52:0f:8a:ec:02:b7:27:59:8d:
2d:ca:7b:e9:b8:d1:1e:af:ca:a4:cf:f9:88:7f:b5:
08:ce:0b:bd:b7:4f:79:30:48:a8:f5:b4:08:77:e3:
c7:3f:93:23:45:8b:49:c7:8b:b6:be:76:61:08:e1:
3f:51:c8:8a:33:e2:e5:11:c6:ee:47:c9:6a:75:d9:
7a:71:af:55:87:96:80:27:ad:99:ca:fa:30:10:f5:
77:09:9b:9a:e0:53:92:33:37:4a:85:81:e2:db:40:
dc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:74:45:6F:2A:B0:67:D3:24:0B:26:AE:A1:A9:A5:7D:8C:F3:73:41
X509v3 Authority Key Identifier:
keyid:DB:81:0E:C3:EF:37:B8:42:CA:D5:61:38:D5:4D:B9:7A:8F:6B:76:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24EOw-83uELK1WE41U25eo9rdqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/24d458-8f77-43d7-85c5-1a9d70ed2847/1/2HRFbyqwZ9MkCyauoamlfYzzc0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/24d458-8f77-43d7-85c5-1a9d70ed2847/1/24EOw-83uELK1WE41U25eo9rdqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.234.0/24
Signature Algorithm: sha256WithRSAEncryption
58:7c:af:ff:fa:9c:38:71:3c:a7:14:e9:f8:36:91:31:8f:62:
d0:85:c3:08:2e:48:f6:22:f9:cb:4f:87:3c:79:4d:94:21:f1:
bb:a5:cc:37:9a:f5:40:e3:9e:9f:eb:18:8a:dd:72:01:a1:81:
b6:6c:96:78:22:23:de:78:f2:2a:b6:b6:2d:db:21:19:af:99:
5e:77:13:59:80:39:95:69:01:59:80:5f:a5:c7:52:fb:49:b5:
56:8e:c6:c6:3b:84:b6:15:87:e2:ec:f5:84:d1:e0:03:f5:d3:
9f:66:93:51:6c:fd:40:ae:a5:96:76:7c:65:9f:a1:b9:21:46:
21:68:d9:f0:18:2b:fb:70:d5:f0:28:d6:cd:e0:f9:39:dd:03:
7a:74:6b:2b:a5:a6:c3:d1:08:61:43:52:49:ce:58:92:3b:70:
db:d4:99:e2:b3:1a:fd:a7:d0:56:92:7b:45:16:56:4a:ce:51:
94:1c:96:62:48:1e:ae:76:59:18:24:d4:64:cf:32:44:ed:7d:
e4:b6:63:76:c2:d2:6c:f1:30:d9:ec:70:f5:1c:cf:61:25:19:
a7:1d:61:83:cb:25:13:49:81:0a:9b:d3:eb:a2:b2:56:15:c5:
92:5b:a3:5f:67:3f:33:1b:be:b9:84:43:2f:9e:7c:7a:d6:34:
48:3f:2a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:30 2025 by rpki-client