Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/01IyZPShAVPSGK_LBQOoBRoX2hY.roa
File: 01IyZPShAVPSGK_LBQOoBRoX2hY.roa (raw, json)
Hash identifier: ShcyZPAfMNiVhqYvv3BbNg/G1EjlR2Uh6H6nXOZGEhY=
Subject key identifier: D3:52:32:64:F4:A1:01:53:D2:18:AF:CB:05:03:A8:05:1A:17:DA:16
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019465CB8528692F1B0D27D89D473A40061B
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/01IyZPShAVPSGK_LBQOoBRoX2hY.roa
Signing time: Tue 14 Jan 2025 17:10:24 +0000
ROA not before: Tue 14 Jan 2025 17:10:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213596
IP address blocks: 77.239.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:65:cb:85:28:69:2f:1b:0d:27:d8:9d:47:3a:40:06:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Jan 14 17:10:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3523264f4a10153d218afcb0503a8051a17da16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:80:f4:28:0f:10:68:95:e5:13:c3:9f:f8:dc:
a2:da:70:50:e9:21:23:17:e9:16:36:ba:35:68:40:
a4:f1:d8:ba:22:8a:2c:cf:6c:47:05:a8:2a:5b:d2:
96:b7:68:fc:40:56:a5:3c:b3:9f:bc:34:2e:4a:43:
c3:06:e1:b8:2b:ca:19:6b:de:81:d9:3e:73:ef:cf:
28:8d:82:1f:09:49:bf:a9:71:fa:3c:5f:31:79:9d:
ed:5e:da:db:53:d9:6c:79:7f:63:1a:c9:56:33:52:
10:d4:12:fd:ff:b0:0b:06:65:da:e7:3b:f1:67:e5:
69:fb:3d:87:4d:e1:9d:de:19:17:c8:73:fc:e7:03:
3a:a9:28:71:b4:1f:53:cc:98:68:fc:ad:f3:d3:5b:
25:0a:ae:d3:79:cc:5a:c7:91:7f:53:8a:b5:d9:02:
79:23:c5:2e:20:e0:f6:9f:3d:bb:2c:32:cf:9e:fb:
29:5b:e5:84:60:32:9a:3e:4a:6b:24:1e:18:9f:ef:
47:30:06:9a:18:98:8e:df:8a:97:a8:e3:45:a2:40:
09:8e:51:e8:53:a1:b2:b3:a7:08:74:fb:a4:79:bf:
4a:76:be:9e:18:e8:c5:a2:23:9b:3d:67:5c:89:05:
f2:4c:12:3d:af:a4:2d:0f:ab:91:fb:25:83:55:0b:
ed:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:52:32:64:F4:A1:01:53:D2:18:AF:CB:05:03:A8:05:1A:17:DA:16
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/01IyZPShAVPSGK_LBQOoBRoX2hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.239.126.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ef:d7:73:45:b6:29:c1:e6:29:65:b8:35:f7:36:55:52:69:
a2:1a:90:2f:ff:cc:0b:61:00:d9:a6:c3:8e:54:0c:55:ee:da:
ca:12:95:35:65:0d:53:f6:27:d6:dd:40:2d:64:b5:75:92:7d:
5a:b9:80:bb:66:08:96:3d:c3:fb:7d:6e:88:f0:4a:9d:2f:c3:
f1:1b:a4:52:f8:15:37:d1:79:cc:e3:fb:9c:a5:fd:77:11:9c:
b5:f4:64:ee:2c:ad:33:00:54:04:a5:f9:55:55:75:d1:99:93:
af:17:0d:eb:01:de:fb:cc:4f:57:16:09:bb:23:35:67:73:e7:
3f:0e:55:ce:91:44:f3:6f:14:a1:bb:5a:b4:d9:c2:de:a0:c9:
22:7d:22:fd:b2:42:40:f9:61:81:67:33:52:c2:ce:63:89:8f:
cf:60:da:fc:6b:c7:1b:f7:2e:75:14:fc:20:54:88:cc:b2:25:
ce:0e:94:61:23:f9:50:24:98:71:ca:89:f5:c6:d1:2a:03:bb:
ee:6e:0d:b5:ae:a0:82:73:61:17:a3:0a:f5:85:5d:6a:61:c4:
cb:83:5f:be:25:82:98:c1:fd:8d:06:d4:e9:ee:50:45:17:8c:
96:55:54:4b:64:99:a8:42:6e:e2:14:8c:cc:51:b7:3b:0a:b8:
d8:1b:cc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:28:29 2025 by rpki-client