Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/1-SnnIDOhH63HQ_N0BxypNJP3QjU.roa
File: 1-SnnIDOhH63HQ_N0BxypNJP3QjU.roa (raw, json)
Hash identifier: fAjpmK6Zca137o7vGKPycBeoqRjl3sX6zuEiOW/w6J8=
Subject key identifier: F9:29:E7:20:33:A1:1F:AD:C7:43:F3:74:07:1C:A9:34:93:F7:42:35
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444F437ABAD19AD8070B995AB94CC45
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/1-SnnIDOhH63HQ_N0BxypNJP3QjU.roa
Signing time: Wed 01 Jan 2025 23:48:06 +0000
ROA not before: Wed 01 Jan 2025 23:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197886
IP address blocks: 79.120.244.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:f4:37:ab:ad:19:ad:80:70:b9:95:ab:94:cc:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f929e72033a11fadc743f374071ca93493f74235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8b:4d:48:8a:06:26:55:f3:81:5c:f3:ef:7e:
53:19:1d:68:7e:bd:60:b0:09:d6:ed:36:4b:ab:e4:
83:49:d5:61:39:0e:a8:f2:bf:b9:ad:77:5c:d8:4c:
1a:f0:95:ac:0c:8d:a6:23:d7:f0:51:9b:f9:21:38:
d9:8c:c2:83:05:59:79:69:34:df:d2:73:70:b8:c1:
7d:2f:37:b5:12:05:93:f7:34:49:6b:fe:82:bc:6e:
4d:0d:39:91:d3:2f:22:29:ae:ec:73:df:e4:68:9d:
52:f2:24:a4:0a:63:d7:a5:aa:f2:52:a0:40:10:20:
0e:a7:87:a8:c0:3d:81:61:a6:86:61:aa:ba:63:0a:
dd:d1:4a:e3:d4:02:32:33:6f:63:56:88:0f:37:a7:
3f:ee:a6:80:4c:75:01:15:96:f7:83:b2:ed:62:3e:
aa:e2:8a:ce:e1:84:af:cd:9b:0d:30:bf:5c:e5:44:
a2:e7:e0:54:ac:c7:b5:c1:a7:11:0e:70:fc:4d:27:
d6:fc:0a:ee:eb:40:7c:c7:cf:fd:62:70:f6:5f:90:
c0:cb:3b:b1:49:c5:d7:6b:10:76:d8:b7:bc:8f:fd:
df:9e:2d:1b:33:11:4c:f3:e3:2f:64:91:a6:7c:01:
8a:a3:55:10:07:e9:e3:ad:7d:92:b2:73:7c:f8:af:
dc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:E7:20:33:A1:1F:AD:C7:43:F3:74:07:1C:A9:34:93:F7:42:35
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/1-SnnIDOhH63HQ_N0BxypNJP3QjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.120.244.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:53:fd:32:9a:d9:52:0d:7b:9b:bb:89:37:06:d0:6f:59:8c:
16:4f:dd:53:9d:eb:01:7a:79:c2:31:4b:fb:75:4d:1b:05:1e:
ea:99:f9:23:e8:f0:2e:d5:14:ba:79:a5:b9:58:82:62:fb:ea:
51:05:14:68:a9:73:e6:47:c9:40:55:2b:d6:cd:6e:14:1f:df:
26:c4:2e:43:65:16:2e:5a:f3:42:36:59:16:af:c3:0c:d2:e7:
df:82:1e:da:22:0e:07:6f:d5:8c:b5:e7:cb:47:40:98:07:54:
b3:e6:da:26:37:b7:32:27:30:43:b0:47:61:9a:2f:4d:ee:f6:
43:32:30:7f:7d:36:db:e1:87:a2:24:5f:de:63:24:74:2c:61:
e7:e1:90:7a:9b:65:8e:dd:9b:9a:d5:0a:d5:17:95:8d:fa:93:
f1:41:04:21:20:18:91:3f:cd:91:84:2b:15:9f:59:d1:5c:e7:
2b:da:85:bc:a6:c6:b1:38:b0:5a:81:92:6e:d9:fb:10:b8:24:
1d:aa:77:61:75:f7:58:b6:04:e2:69:6a:e9:d7:fe:7c:ad:50:
2c:08:42:19:c6:c5:22:a2:77:b6:ce:b2:14:b7:5e:59:8a:84:
fc:65:f9:72:77:64:9a:86:83:b8:fe:bf:86:27:d2:b7:ae:51:
58:5b:f7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net