Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/e6KXF5wF0vO-qqTzdKeyh2Ean8Y.roa
File: e6KXF5wF0vO-qqTzdKeyh2Ean8Y.roa (raw, json)
Hash identifier: KHUWWv5iYnIrkVVVgtcwtIxqcrf8XOGEsuNQcxfs8gw=
Subject key identifier: 7B:A2:97:17:9C:05:D2:F3:BE:AA:A4:F3:74:A7:B2:87:61:1A:9F:C6
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0196257E5A7DBA4D6A5274540564C3D61274
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/e6KXF5wF0vO-qqTzdKeyh2Ean8Y.roa
Signing time: Fri 11 Apr 2025 15:35:59 +0000
ROA not before: Fri 11 Apr 2025 15:35:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211595
IP address blocks: 79.120.220.0/24 maxlen: 24
82.141.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:25:7e:5a:7d:ba:4d:6a:52:74:54:05:64:c3:d6:12:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Apr 11 15:35:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ba297179c05d2f3beaaa4f374a7b287611a9fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cf:36:3b:de:84:c9:f2:fc:bd:5e:00:3d:f5:
64:2d:f1:10:47:97:2d:21:d6:26:9c:ec:e2:a6:26:
a5:6a:ef:ca:e4:a1:bb:74:b9:03:a7:83:4b:f4:02:
15:dc:19:b8:d9:12:28:03:58:2a:3b:4d:ae:ca:b7:
ad:8d:54:9e:48:4a:08:c7:80:a2:29:5a:8c:ef:cd:
a6:2d:aa:ac:8e:a6:54:ac:1e:b3:8f:d2:0a:1c:ac:
4b:9e:5d:58:f4:59:f7:ea:4d:ac:e3:93:65:0b:72:
c6:20:cd:49:13:92:78:28:14:ca:e2:7a:6f:5d:53:
72:2c:c7:c1:67:db:9c:75:ad:85:39:6b:00:01:71:
02:ae:a0:5a:c0:53:5c:7e:b6:6c:34:23:ca:cc:7b:
0e:9a:b5:21:88:93:69:0a:71:93:df:6f:5d:be:93:
13:ea:94:94:1a:8f:96:a0:7c:d9:a6:88:f4:17:59:
95:56:6c:34:34:ce:27:ff:89:e5:91:93:a6:65:af:
87:77:8a:5f:44:6d:57:56:f5:cd:bb:4a:8e:25:fa:
84:60:93:dd:9e:5f:aa:f3:91:aa:9a:fc:68:18:99:
b3:6b:dc:36:7e:77:6d:27:c9:74:6c:84:63:4f:cc:
ae:1b:95:85:76:c5:70:a6:07:02:77:09:c1:a1:86:
4b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A2:97:17:9C:05:D2:F3:BE:AA:A4:F3:74:A7:B2:87:61:1A:9F:C6
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/e6KXF5wF0vO-qqTzdKeyh2Ean8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.120.220.0/24
82.141.139.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:60:46:cc:53:fb:bf:ef:8b:31:66:3b:ce:44:a0:5f:86:5b:
4a:63:04:3d:b7:3d:e3:ee:c8:46:a8:7b:d0:45:d0:37:c6:13:
45:b6:16:2f:ee:2c:24:4b:d2:c0:80:87:5b:59:b7:81:91:b2:
bb:65:07:11:87:3e:42:5f:46:7f:ac:7a:2d:cb:0a:fa:db:ce:
ae:bf:de:ac:bb:54:55:dd:23:64:9a:e0:c7:c8:bf:44:2f:45:
04:e6:55:bf:1a:e4:01:ca:21:c4:8e:33:d9:f9:01:79:10:c6:
b8:01:31:a0:ef:e3:3a:19:58:d0:df:d9:73:4f:4c:24:de:5b:
7e:8a:1c:66:a3:ff:64:54:4d:e9:44:08:c3:30:a1:d5:9f:15:
1a:a0:66:7d:7b:d6:50:d8:70:82:13:6f:7d:91:35:28:fd:79:
84:31:d5:bb:79:3a:8f:ba:ee:5b:8f:54:13:6b:d9:d4:4d:b5:
78:19:8a:95:5f:66:4f:0a:b8:ae:96:09:9d:68:35:64:11:51:
d7:1a:00:87:0c:59:1e:1b:10:47:7e:2c:3f:3f:45:08:b4:2c:
d6:e7:b0:bb:26:fd:95:c1:9e:31:fd:00:fc:48:18:a1:d3:42:
a1:98:57:a5:7e:d7:91:7f:3f:65:9b:eb:18:0f:b2:4e:2b:c3:
33:9f:8b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net