Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-MXh5ZmK_IkBTnOdQWqe33qhA8.roa
File: V-MXh5ZmK_IkBTnOdQWqe33qhA8.roa (raw, json)
Hash identifier: grCGgFjIsOKhm/V7TlxvJn8aZ/1hi62W04phhNGVQMs=
Subject key identifier: 57:E3:17:87:96:66:2B:F2:24:05:39:CE:75:05:AA:7B:7D:EA:84:0F
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018CE4C16315AEC3D4BC04D4741BAEC2025C
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-MXh5ZmK_IkBTnOdQWqe33qhA8.roa
Signing time: Sun 07 Jan 2024 16:28:48 +0000
ROA not before: Sun 07 Jan 2024 16:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 79.172.224.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
213.181.217.0/24 maxlen: 24
213.181.216.0/24 maxlen: 24
213.181.221.0/24 maxlen: 24
79.172.192.0/24 maxlen: 24
79.172.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e4:c1:63:15:ae:c3:d4:bc:04:d4:74:1b:ae:c2:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 7 16:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57e3178796662bf2240539ce7505aa7b7dea840f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:41:be:18:9d:07:3d:39:5d:c3:99:8b:37:0a:
e3:f5:18:23:2f:e1:0c:a3:24:70:0f:f5:d5:7a:53:
c6:15:35:77:f5:1d:e1:19:de:fc:e0:44:40:ba:14:
9a:4f:90:dd:81:8b:22:7f:3f:1b:9a:1d:1a:43:55:
1c:db:74:45:9d:fa:9d:be:24:9e:c8:76:7b:2b:b6:
e9:c4:1f:71:7c:ad:ab:fe:48:4b:38:73:79:2f:d5:
ea:73:08:a9:61:bf:18:be:68:b1:b8:2b:48:60:c4:
f1:00:7d:2c:a6:cd:1b:bc:6d:be:52:6b:0a:0f:62:
35:45:f1:d4:b0:ab:12:c3:7c:49:52:a2:3f:4c:6f:
7e:74:73:75:90:55:92:3d:f5:00:21:b8:4b:43:f1:
b4:c7:5b:04:fc:f7:fc:a9:9a:54:ca:db:4b:55:35:
a9:a9:df:84:f1:25:93:23:89:90:35:b2:a4:55:0c:
d6:9d:7f:6d:e8:8d:61:2b:13:47:e8:49:27:97:34:
c5:2c:82:12:18:52:67:f3:19:a6:16:2d:8a:0f:18:
5d:8a:ac:72:dc:b5:41:68:43:da:5c:28:fb:31:c0:
13:48:29:aa:ce:c6:6d:ec:31:14:0d:b3:59:e0:63:
84:11:cb:a6:1d:7f:ab:dd:68:57:77:02:1f:cb:a5:
18:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E3:17:87:96:66:2B:F2:24:05:39:CE:75:05:AA:7B:7D:EA:84:0F
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-MXh5ZmK_IkBTnOdQWqe33qhA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/24
79.172.207.0/24
79.172.224.0/24
79.172.228.0/24
213.181.216.0/23
213.181.221.0/24
217.144.59.0-217.144.60.255
Signature Algorithm: sha256WithRSAEncryption
17:10:d9:ce:b3:31:27:a2:be:6b:d3:f2:de:16:f2:27:81:af:
93:87:c2:1b:ae:f9:f4:59:4f:a4:5e:76:b8:f2:97:4b:47:f1:
30:6f:fe:cd:e9:a5:a6:8a:1c:9e:a5:49:5c:9d:c6:84:06:40:
bc:bb:ed:41:37:36:d5:93:72:73:d5:f1:60:bd:c3:93:ea:01:
58:17:41:a2:cb:24:dc:3b:8e:3f:30:8d:b9:f1:92:e6:3f:ed:
a0:b3:26:ba:87:e2:0f:3a:f7:5d:14:cc:b2:26:cb:fa:40:5e:
81:0c:5f:e8:92:30:5f:8f:a6:76:d2:d7:2a:76:56:95:2b:47:
6a:9c:5f:ea:d8:5c:94:6c:80:25:43:62:35:8f:78:de:23:25:
c3:b4:0d:e6:9c:da:2c:04:de:e6:ba:41:10:56:84:ba:0e:11:
f9:c4:d0:31:da:21:e2:a3:fc:ba:76:1e:97:09:7b:c3:83:76:
e9:80:0b:61:08:2d:6b:cf:cc:e8:7f:23:4f:04:ac:e9:c0:11:
e9:82:17:3e:75:00:d4:36:b3:de:48:4f:81:14:95:d9:2f:08:
00:42:56:ae:c8:8b:55:08:0b:91:10:2a:d6:e5:10:cf:29:56:
b8:1f:57:75:14:1a:8b:ca:b6:a1:de:cd:e3:3a:53:18:e6:c0:
30:1f:00:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:46:16 2025 by rpki-client