Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/HSdlh2QFEpGM_46Ow4vGDv79v_E.roa
File: HSdlh2QFEpGM_46Ow4vGDv79v_E.roa (raw, json)
Hash identifier: 1ypzUErprDZDRYPQT+U1/uxj8msJvU+nPJ/mnvBhz8M=
Subject key identifier: 1D:27:65:87:64:05:12:91:8C:FF:8E:8E:C3:8B:C6:0E:FE:FD:BF:F1
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 0194214449EF5350E6A0F67DFE73E6BCB033
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/HSdlh2QFEpGM_46Ow4vGDv79v_E.roa
Signing time: Wed 01 Jan 2025 09:48:31 +0000
ROA not before: Wed 01 Jan 2025 09:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20525
IP address blocks: 79.141.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:49:ef:53:50:e6:a0:f6:7d:fe:73:e6:bc:b0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 1 09:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d276587640512918cff8e8ec38bc60efefdbff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:62:ce:f6:a8:eb:24:96:d1:aa:48:48:d1:b7:
51:e5:79:32:a2:ed:ce:cd:10:4f:a9:65:f6:62:64:
8f:81:b6:df:b5:ab:79:c6:be:6a:73:02:8c:f4:2c:
32:2d:4e:1e:12:b8:6e:d2:e2:2d:d9:2c:7c:65:1c:
6b:53:cd:4b:1b:2e:e6:fb:0c:4d:94:0b:76:80:5b:
65:f5:54:3c:58:86:15:19:a2:b9:52:dd:59:e0:bc:
0a:a2:98:2f:ef:d5:33:19:85:38:eb:72:e7:70:cd:
71:80:ee:23:51:22:a1:8d:0a:d8:1d:1c:32:86:2b:
e0:98:02:07:b4:8d:e5:e0:89:ef:8d:78:86:a5:55:
f5:04:58:f3:66:e5:16:0f:46:ea:1a:cb:4d:64:c1:
12:db:35:5c:48:cb:5a:a3:9a:0b:a3:52:db:3e:42:
5d:5b:cb:c4:d6:ea:af:2e:28:68:0d:ab:d2:8f:2d:
3b:bd:c6:01:bf:ed:eb:b5:50:00:6b:bd:39:0c:07:
fb:ee:af:89:8a:b6:f2:74:38:ac:0c:e5:1d:ff:fd:
d0:f1:be:e8:77:77:c2:bc:b2:6b:d1:cd:52:5a:1b:
30:ae:7c:b7:c5:c5:98:38:a7:45:80:3b:3e:56:ad:
10:f0:a4:af:be:b3:33:3c:b4:bc:a3:a8:21:45:7a:
3e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:27:65:87:64:05:12:91:8C:FF:8E:8E:C3:8B:C6:0E:FE:FD:BF:F1
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/HSdlh2QFEpGM_46Ow4vGDv79v_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.220.0/22
Signature Algorithm: sha256WithRSAEncryption
e8:44:3c:6a:25:56:42:1d:ab:fc:18:d6:8d:f3:12:14:8a:97:
6f:b9:89:1b:cf:16:8b:75:46:44:1d:6b:5c:3f:07:46:22:43:
a6:11:19:6c:f0:ba:63:0f:10:20:29:79:b4:de:fe:1f:de:15:
84:bf:1a:68:cb:74:e6:ae:ea:44:34:63:1c:18:2f:b4:ee:9c:
97:24:1c:7b:92:3f:6b:08:5f:39:8b:ee:c5:34:87:67:f6:01:
a8:44:64:6d:ed:f2:52:be:ae:b3:9e:08:12:e0:e1:9b:ec:e9:
98:61:e5:8a:5a:b4:70:4d:2b:95:83:9c:6c:f5:93:a7:e3:82:
52:41:26:ed:cc:63:42:6e:f0:ab:97:ea:58:31:bc:7d:1d:11:
dc:d5:ab:16:ba:7a:04:7f:49:61:1d:f7:19:be:28:d6:7e:f0:
c2:f6:26:f9:59:e3:d5:f3:08:4b:fc:92:2c:02:59:19:75:ad:
37:bb:cc:fb:51:a6:81:28:25:20:c6:dd:ba:1e:5c:5f:99:b2:
1d:43:d8:a1:67:9f:e5:01:0a:dc:62:a3:40:9f:54:fa:f3:2f:
f8:71:40:51:e5:7b:cb:8b:e5:3f:c1:79:8d:9f:b4:85:5b:be:
fe:8c:07:fc:b9:c6:96:f6:2b:df:9a:f4:20:fc:4e:4b:e2:5c:
e9:32:43:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:24:43 2025 by rpki-client