Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/61m1MtJ_cU1CNpy0RzpX2TTh2HQ.roa
File: 61m1MtJ_cU1CNpy0RzpX2TTh2HQ.roa (raw, json)
Hash identifier: r/XCUjs8rHjjlXXeQUed0dcVxY22xQ0A4GfPLJf4YNA=
Subject key identifier: EB:59:B5:32:D2:7F:71:4D:42:36:9C:B4:47:3A:57:D9:34:E1:D8:74
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018DF3FA112D1BF476408ADF218E5A0BA961
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/61m1MtJ_cU1CNpy0RzpX2TTh2HQ.roa
Signing time: Thu 29 Feb 2024 08:27:48 +0000
ROA not before: Thu 29 Feb 2024 08:27:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
79.172.251.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:fa:11:2d:1b:f4:76:40:8a:df:21:8e:5a:0b:a9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Feb 29 08:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb59b532d27f714d42369cb4473a57d934e1d874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:1a:13:40:93:c7:76:43:23:2a:67:61:91:
d8:0d:4e:d9:e8:9e:49:b2:28:56:dd:6f:19:d3:c9:
e1:88:ad:2c:83:a5:7a:38:82:08:a2:3a:2a:f2:32:
5d:9b:0c:a2:4d:49:ec:3a:f3:7b:0f:bc:cf:14:66:
56:1a:b8:7d:2b:74:40:fa:cf:d2:06:b9:7d:49:9e:
74:c8:df:2c:77:b6:2c:1a:a8:77:ec:8b:b8:b4:4f:
df:5b:83:4e:df:bb:44:2e:ea:82:d6:df:0d:b9:61:
3f:81:a1:b2:e7:25:da:07:5b:7b:fc:5c:a4:98:56:
8e:5d:c5:51:8d:3f:46:d4:65:81:8d:99:3e:e0:ce:
37:15:8c:8f:af:8e:3f:c4:ec:aa:91:3d:6c:6c:0c:
36:a2:df:9c:68:34:ce:f0:99:36:4c:ec:85:23:54:
35:26:8c:9a:56:56:93:4c:d9:0a:dc:75:7a:a9:e5:
50:8f:48:6e:8e:89:a8:c3:10:cf:45:e4:e1:98:1a:
2d:48:89:00:8e:a6:b5:61:57:bb:bd:fb:28:2d:d4:
ff:20:8c:a1:38:84:a4:35:4b:70:fe:b7:4d:72:ad:
41:be:e2:93:2c:65:c5:b8:7d:fb:66:fb:b4:08:98:
2f:b8:6f:98:cd:d5:b5:65:88:fa:82:aa:dc:f3:6b:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:59:B5:32:D2:7F:71:4D:42:36:9C:B4:47:3A:57:D9:34:E1:D8:74
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/61m1MtJ_cU1CNpy0RzpX2TTh2HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
79.172.251.0/24
87.229.48.0/24
87.229.50.0/24
87.229.71.0/24
87.229.81.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.59.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
55:1c:f1:26:1e:b9:41:92:2f:9a:30:3b:cc:e4:57:3e:77:0b:
b6:8f:ec:a0:a3:5b:bb:ac:92:3a:c9:97:f0:c0:51:34:be:ff:
a2:94:5f:cb:fe:46:5d:1f:af:3d:0f:57:2b:6d:ec:ff:26:7f:
78:8f:ce:81:dd:d1:cb:4e:cf:2e:3f:64:b4:48:ad:f5:55:66:
ef:1e:a1:86:03:f0:95:07:ed:3e:8c:c2:66:a5:12:d7:be:ed:
8f:79:9a:11:d8:2f:55:02:08:64:11:a9:b9:0a:03:bb:66:d9:
ba:cd:56:0f:b0:43:6c:bf:99:04:8a:be:ab:eb:b1:af:d8:d6:
b4:35:c2:9d:86:2b:87:1d:ae:fb:18:0e:49:c0:92:80:18:24:
32:99:ae:e1:17:ae:40:3a:42:a7:3a:2f:0c:1b:00:59:10:45:
78:57:fc:dd:de:4e:ea:dd:c8:dd:61:cc:0c:42:04:92:85:9a:
3a:c8:cd:af:b8:02:13:86:3c:21:2f:dd:12:2a:d7:67:55:8c:
2c:20:52:0a:76:62:6a:eb:4e:28:b2:68:48:81:37:39:15:58:
ad:cc:14:2a:f9:40:c2:0c:59:bd:bb:63:c2:4b:04:a6:ef:bd:
47:b9:9f:7c:81:32:f0:d5:c3:e8:d6:11:b9:aa:49:fd:85:02:
c6:39:35:d9
-----BEGIN CERTIFICATE-----
MIIFTTCCBDWgAwIBAgISAY3z+hEtG/R2QIrfIY5aC6lhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjQwMjI5MDgyNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjU5YjUzMmQyN2Y3MTRkNDIzNjljYjQ0NzNhNTdkOTM0ZTFkODc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPkaE0CTx3ZDIypnYZHYDU7Z6J5J
sihW3W8Z08nhiK0sg6V6OIIIojoq8jJdmwyiTUnsOvN7D7zPFGZWGrh9K3RA+s/S
Brl9SZ50yN8sd7YsGqh37Iu4tE/fW4NO37tELuqC1t8NuWE/gaGy5yXaB1t7/Fyk
mFaOXcVRjT9G1GWBjZk+4M43FYyPr44/xOyqkT1sbAw2ot+caDTO8Jk2TOyFI1Q1
JoyaVlaTTNkK3HV6qeVQj0hujomowxDPReThmBotSIkAjqa1YVe7vfsoLdT/IIyh
OISkNUtw/rdNcq1BvuKTLGXFuH37Zvu0CJgvuG+YzdW1ZYj6gqrc82t8OQIDAQAB
o4ICWTCCAlUwHQYDVR0OBBYEFOtZtTLSf3FNQjactEc6V9k04dh0MB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvNjFtMU10Sl9jVTFDTnB5MFJ6cFgyVFRoMkhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQAT6zWAwQA
T6zaAwQAT6zcAwQAT6zkAwQAT6z7AwQAV+UwAwQAV+UyAwQAV+VHAwQAV+VRAwQB
X4rCAwQA1bXJMAwDBADZkDkDBALZkDgDBADZkD4wDQYJKoZIhvcNAQELBQADggEB
AFUc8SYeuUGSL5owO8zkVz53C7aP7KCjW7uskjrJl/DAUTS+/6KUX8v+Rl0frz0P
Vytt7P8mf3iPzoHd0ctOzy4/ZLRIrfVVZu8eoYYD8JUH7T6MwmalEte+7Y95mhHY
L1UCCGQRqbkKA7tm2brNVg+wQ2y/mQSKvqvrsa/Y1rQ1wp2GK4cdrvsYDknAkoAY
JDKZruEXrkA6Qqc6LwwbAFkQRXhX/N3eTurdyN1hzAxCBJKFmjrIza+4AhOGPCEv
3RIq12dVjCwgUgp2YmrrTiiyaEiBNzkVWK3MFCr5QMIMWb27Y8JLBKbvvUe5n3yB
MvDVw+jWEbmqSf2FAsY5Ndk=
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:22:31 2025 by rpki-client