Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2ef0f1-5082-48df-94fe-f7531a2b6247/1/s5r9yap3tom_HtotpIwIYRM_tQI.roa
File: s5r9yap3tom_HtotpIwIYRM_tQI.roa (raw, json)
Hash identifier: nsesgmnToPnc+rmcM0u9Mw7MgCf2v2fzdAWiv7iq1Wc=
Subject key identifier: B3:9A:FD:C9:AA:77:B6:89:BF:1E:DA:2D:A4:8C:08:61:13:3F:B5:02
Certificate issuer: /CN=075fdb0de4051347a21e9628ac41736734cb4f2b
Certificate serial: 01962EB5A9E5C584F7209DEC91DDE7E4A731
Authority key identifier: 07:5F:DB:0D:E4:05:13:47:A2:1E:96:28:AC:41:73:67:34:CB:4F:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B1_bDeQFE0eiHpYorEFzZzTLTys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2ef0f1-5082-48df-94fe-f7531a2b6247/1/s5r9yap3tom_HtotpIwIYRM_tQI.roa
Signing time: Sun 13 Apr 2025 10:32:59 +0000
ROA not before: Sun 13 Apr 2025 10:32:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25400
IP address blocks: 79.174.16.0/24 maxlen: 24
79.174.18.0/24 maxlen: 24
194.146.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:b5:a9:e5:c5:84:f7:20:9d:ec:91:dd:e7:e4:a7:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=075fdb0de4051347a21e9628ac41736734cb4f2b
Validity
Not Before: Apr 13 10:32:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b39afdc9aa77b689bf1eda2da48c0861133fb502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:b2:1b:2f:de:25:3a:f3:5c:b8:8a:e8:86:43:
2f:c6:6f:e7:67:00:75:8e:62:95:4f:40:b9:ed:53:
31:89:64:aa:dd:5f:0e:4e:75:0d:3b:6b:be:ca:80:
f3:2e:ca:ef:5f:b9:6c:34:f9:b5:32:28:02:a1:6f:
27:8a:33:5b:ea:d0:e3:b3:71:81:53:eb:2c:b8:85:
1a:c0:56:d4:37:65:a6:e6:5d:da:51:17:c6:d3:d0:
0a:f0:96:a8:20:a1:c6:5c:3c:1d:22:68:69:af:58:
57:3b:35:11:24:94:4f:8b:03:cd:b9:e0:f1:6d:30:
1f:63:f4:4e:86:c2:d6:a5:f0:de:f9:d1:19:1b:fd:
55:0b:9d:92:60:cd:6c:3f:3b:29:8c:ad:37:63:a9:
7d:50:c6:e1:11:66:7a:60:8c:b3:dc:db:0a:39:3d:
0f:a2:f5:2c:5f:97:e1:8a:6a:7b:78:17:dc:2e:16:
67:1a:50:d1:3d:20:8f:33:d4:2a:79:3d:d2:26:2e:
ea:d5:4d:f2:be:fb:43:fc:09:72:41:5b:8c:d9:54:
42:86:e3:04:50:6c:09:ba:c8:f0:17:f5:a5:ea:5a:
71:ef:f5:e5:0e:5b:15:2f:b0:e7:59:e2:39:ab:a2:
f3:d2:eb:79:38:3f:a9:3b:ed:10:c9:c2:9e:47:b2:
52:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9A:FD:C9:AA:77:B6:89:BF:1E:DA:2D:A4:8C:08:61:13:3F:B5:02
X509v3 Authority Key Identifier:
keyid:07:5F:DB:0D:E4:05:13:47:A2:1E:96:28:AC:41:73:67:34:CB:4F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B1_bDeQFE0eiHpYorEFzZzTLTys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2ef0f1-5082-48df-94fe-f7531a2b6247/1/s5r9yap3tom_HtotpIwIYRM_tQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2ef0f1-5082-48df-94fe-f7531a2b6247/1/B1_bDeQFE0eiHpYorEFzZzTLTys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.16.0/24
79.174.18.0/24
194.146.8.0/22
Signature Algorithm: sha256WithRSAEncryption
20:2a:c9:ff:33:e9:8f:de:3f:cc:ad:1e:39:6f:a8:2a:1b:42:
33:f8:23:25:84:9c:20:4d:9c:d7:49:40:c8:4f:f6:d9:e4:1d:
4d:a5:9d:07:a6:1d:74:9e:1e:6a:3e:ca:5e:a4:2b:13:af:51:
ef:a5:ac:08:a6:33:a9:1f:f9:01:33:d4:b4:73:de:d1:0c:c3:
6e:90:be:31:a5:fe:f3:b0:c4:50:eb:81:77:eb:2c:ce:ca:22:
ef:4e:cc:ac:4b:3c:20:83:68:15:8f:50:c7:75:e6:a9:f4:7a:
4a:cd:fa:61:a0:9a:ad:20:17:3f:75:08:99:c1:5b:89:3e:09:
f5:1e:37:1c:aa:7b:01:83:f5:1d:fe:16:ab:54:78:14:b9:37:
45:4a:df:d4:af:e0:9a:1e:54:97:b3:63:06:22:4c:42:1e:6e:
74:8a:82:87:51:82:cd:af:9d:f2:da:48:30:64:29:67:9c:45:
ee:27:cf:20:33:01:95:24:5d:f3:7e:52:c5:5e:a2:4e:d3:eb:
04:23:61:85:cd:67:e4:f4:5b:40:1e:2e:12:3b:16:84:7c:33:
b0:c6:a8:14:61:bb:44:75:bd:06:6d:e1:d6:6e:b8:2a:9f:bd:
34:2b:c0:15:22:ee:2b:e7:20:c3:30:2a:c2:e9:06:85:fb:96:
a0:0e:a6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net