Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/NNwE8RzgLnLkQPjjvDCepDv9xVY.roa
File: NNwE8RzgLnLkQPjjvDCepDv9xVY.roa (raw, json)
Hash identifier: meHjY/iNR09f1xIIjhxrBFdViMWQSCXm/PN9AdB8GuI=
Subject key identifier: 34:DC:04:F1:1C:E0:2E:72:E4:40:F8:E3:BC:30:9E:A4:3B:FD:C5:56
Certificate issuer: /CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Certificate serial: 0194F1DD9F45A53506E8529DE8602767E15F
Authority key identifier: B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/NNwE8RzgLnLkQPjjvDCepDv9xVY.roa
Signing time: Mon 10 Feb 2025 21:57:00 +0000
ROA not before: Mon 10 Feb 2025 21:57:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6079
IP address blocks: 79.110.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f1:dd:9f:45:a5:35:06:e8:52:9d:e8:60:27:67:e1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Validity
Not Before: Feb 10 21:57:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34dc04f11ce02e72e440f8e3bc309ea43bfdc556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:44:20:99:98:1a:5f:c7:15:ea:c9:f9:9e:05:
39:b2:a6:cb:7a:47:dd:05:d9:67:91:e7:78:bf:20:
ab:f9:db:a9:da:1d:1e:a6:7f:b4:42:70:94:3e:60:
28:1e:09:68:37:ae:11:d2:0b:6b:1d:9e:2e:cd:ef:
9d:6c:0d:f3:be:44:d7:97:7e:4d:e9:e8:96:c0:85:
48:ad:34:8c:c0:8a:7d:a9:2d:da:5b:29:08:cd:19:
95:43:06:6c:ae:ba:93:b6:48:b1:08:56:0d:25:36:
f8:3c:d6:b9:3e:8c:23:80:0e:a0:03:c1:83:a2:3d:
5d:2f:49:0f:ec:76:dd:af:38:9e:ef:25:15:94:c5:
0b:dd:80:1d:bc:2c:54:90:bd:f0:e1:f5:c3:48:8f:
19:8d:4f:05:24:92:c7:3f:8e:51:c0:06:05:a3:9b:
a3:61:16:f3:f1:d3:db:de:b4:3e:69:ee:eb:0d:96:
fe:35:2b:f0:8c:7e:9d:f3:8a:7f:c7:09:40:98:b3:
15:72:fd:dd:ae:0d:2d:15:f4:e3:42:46:ab:51:2b:
2c:34:13:6c:99:b9:38:28:04:45:e3:5f:9b:75:10:
13:47:24:1d:a7:01:bb:be:27:a7:69:2e:ea:b0:8d:
5e:14:97:63:92:cd:87:aa:e6:d1:c1:89:28:fb:e5:
31:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DC:04:F1:1C:E0:2E:72:E4:40:F8:E3:BC:30:9E:A4:3B:FD:C5:56
X509v3 Authority Key Identifier:
keyid:B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/NNwE8RzgLnLkQPjjvDCepDv9xVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.238.0/24
Signature Algorithm: sha256WithRSAEncryption
59:41:7f:51:97:6e:03:ad:4d:36:c5:d7:29:e1:b0:83:c8:e0:
f7:c7:b6:26:92:14:d9:19:32:bd:ef:4f:a0:9e:f6:1d:d4:b2:
fd:9f:d6:f9:a5:6d:54:4a:c7:97:3b:91:ea:98:cc:c0:4f:10:
fb:4d:9b:e9:80:0f:63:d6:a7:80:b8:59:a6:af:fb:41:84:d8:
b6:c2:1e:67:89:12:a8:29:6b:e2:a0:ef:e8:25:98:ed:cd:6e:
6d:bb:70:eb:76:48:0d:66:d6:db:83:d0:44:12:49:87:98:4f:
6a:11:ac:22:55:b0:39:e2:39:78:08:ad:50:f8:52:b1:93:c6:
82:79:50:ef:b0:00:ce:05:0a:80:e4:d4:b5:db:5b:fb:4f:c3:
e3:1d:9b:fe:68:75:19:80:ee:d5:97:da:59:03:d4:f9:f6:8b:
b7:5f:25:48:f4:8a:be:68:e7:b9:cb:8e:0a:76:17:80:10:d5:
77:38:fa:31:77:2c:af:aa:9f:d6:03:b2:8a:fd:a3:c0:bd:46:
06:7a:7d:11:94:d8:07:cf:d9:18:60:db:86:7e:a1:f1:34:f6:
7e:77:23:cf:f3:a6:c4:4d:bf:ca:8b:69:7b:c8:69:9b:1b:23:
dd:bf:b6:42:29:38:f8:49:5a:13:3e:83:72:b4:0e:25:b8:34:
32:f9:e3:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTx3Z9FpTUG6FKd6GAnZ+FfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzNjc0ZTgyMmYzODc2ZDI3ZGVhZWQ1ZjY2ZGJlOWMxYTQy
MmViMTYwHhcNMjUwMjEwMjE1NzAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGRjMDRmMTFjZTAyZTcyZTQ0MGY4ZTNiYzMwOWVhNDNiZmRjNTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0QgmZgaX8cV6sn5ngU5sqbLekfd
Bdlnked4vyCr+dup2h0epn+0QnCUPmAoHgloN64R0gtrHZ4uze+dbA3zvkTXl35N
6eiWwIVIrTSMwIp9qS3aWykIzRmVQwZsrrqTtkixCFYNJTb4PNa5PowjgA6gA8GD
oj1dL0kP7Hbdrzie7yUVlMUL3YAdvCxUkL3w4fXDSI8ZjU8FJJLHP45RwAYFo5uj
YRbz8dPb3rQ+ae7rDZb+NSvwjH6d84p/xwlAmLMVcv3drg0tFfTjQkarUSssNBNs
mbk4KARF41+bdRATRyQdpwG7vienaS7qsI1eFJdjks2HqubRwYko++UxLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDTcBPEc4C5y5ED447wwnqQ7/cVWMB8GA1UdIwQY
MBaAFLNnToIvOHbSfertX2bb6cGkIusWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczJkT2dpODRkdEo5NnUxZlp0dnB3YVFpNnhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8zOTMyNTEtYjQ4OC00MGQzLWJlMzkt
ZjhmMDhmZTY0ODM4LzEvTk53RThSemdMbkxrUVBqanZEQ2VwRHY5eFZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC8zOTMyNTEtYjQ4OC00MGQzLWJlMzktZjhmMDhmZTY0ODM4
LzEvczJkT2dpODRkdEo5NnUxZlp0dnB3YVFpNnhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT27uMA0G
CSqGSIb3DQEBCwUAA4IBAQBZQX9Rl24DrU02xdcp4bCDyOD3x7YmkhTZGTK970+g
nvYd1LL9n9b5pW1USseXO5HqmMzATxD7TZvpgA9j1qeAuFmmr/tBhNi2wh5niRKo
KWvioO/oJZjtzW5tu3DrdkgNZtbbg9BEEkmHmE9qEawiVbA54jl4CK1Q+FKxk8aC
eVDvsADOBQqA5NS121v7T8PjHZv+aHUZgO7Vl9pZA9T59ou3XyVI9Iq+aOe5y44K
dheAENV3OPoxdyyvqp/WA7KK/aPAvUYGen0RlNgHz9kYYNuGfqHxNPZ+dyPP86bE
Tb/Ki2l7yGmbGyPdv7ZCKTj4SVoTPoNytA4luDQy+eNr
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:17 2025 by rpki-client