Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/32441e-5e9b-4a32-8cc4-1eb75bb68233/1/621hWvBObU0KbojSBLWUXo4jF5o.roa
File: 621hWvBObU0KbojSBLWUXo4jF5o.roa (raw, json)
Hash identifier: bGhGcnNXquYec5H9mQpND+EzafK9SyRlgLrctL4mXdU=
Subject key identifier: EB:6D:61:5A:F0:4E:6D:4D:0A:6E:88:D2:04:B5:94:5E:8E:23:17:9A
Certificate issuer: /CN=f97f69ed26c2e4687dbab2e6c6cca88d17c4c332
Certificate serial: 0195802F532F4E6CDDEDC76B84DABAC5F6CB
Authority key identifier: F9:7F:69:ED:26:C2:E4:68:7D:BA:B2:E6:C6:CC:A8:8D:17:C4:C3:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-X9p7SbC5Gh9urLmxsyojRfEwzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/32441e-5e9b-4a32-8cc4-1eb75bb68233/1/621hWvBObU0KbojSBLWUXo4jF5o.roa
Signing time: Mon 10 Mar 2025 13:12:19 +0000
ROA not before: Mon 10 Mar 2025 13:12:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47347
IP address blocks: 79.142.32.0/23 maxlen: 23
2a01:7b40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:80:2f:53:2f:4e:6c:dd:ed:c7:6b:84:da:ba:c5:f6:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f97f69ed26c2e4687dbab2e6c6cca88d17c4c332
Validity
Not Before: Mar 10 13:12:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eb6d615af04e6d4d0a6e88d204b5945e8e23179a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:46:5e:5e:19:cb:eb:3d:f2:c2:61:e8:37:80:
2c:0e:0f:81:81:61:dd:99:ba:4d:7b:14:c4:df:bf:
8c:0c:83:e6:59:20:7f:02:31:db:a7:42:6f:d9:ff:
c5:6e:ac:de:79:91:d1:f7:ca:0a:e5:21:f9:1e:22:
93:3c:27:25:30:05:37:4b:e0:1c:f8:28:4d:36:9b:
d1:34:45:23:14:e3:ea:77:3b:c7:7e:c8:ac:47:5f:
04:99:e8:36:2b:f8:f1:a6:57:f6:29:87:02:31:9c:
a6:59:8d:ab:c0:2a:3c:a5:85:b6:e4:32:b5:06:dc:
c9:d2:e9:7d:9f:d9:b3:02:31:ad:95:18:3c:be:ec:
29:4c:73:e2:a6:59:7e:23:29:cf:fe:97:0e:22:52:
db:8a:92:9f:ee:bb:b6:ad:31:01:ba:8a:70:19:a7:
11:9c:e5:1d:dc:17:b4:43:ce:dd:ea:f1:8a:03:5a:
91:a4:94:b6:5d:99:ad:e8:fd:49:e3:b4:0e:06:4e:
5b:94:f2:19:45:eb:03:d7:80:45:27:79:0f:ab:fa:
eb:f0:e7:43:26:32:c9:7d:a1:77:1b:20:44:16:9a:
64:e2:f4:2c:cf:f9:28:8e:3f:97:5e:7c:49:eb:0b:
72:6d:ce:d3:33:df:0d:49:35:6c:ee:9e:b6:e2:20:
88:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6D:61:5A:F0:4E:6D:4D:0A:6E:88:D2:04:B5:94:5E:8E:23:17:9A
X509v3 Authority Key Identifier:
keyid:F9:7F:69:ED:26:C2:E4:68:7D:BA:B2:E6:C6:CC:A8:8D:17:C4:C3:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-X9p7SbC5Gh9urLmxsyojRfEwzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32441e-5e9b-4a32-8cc4-1eb75bb68233/1/621hWvBObU0KbojSBLWUXo4jF5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/32441e-5e9b-4a32-8cc4-1eb75bb68233/1/1-X9p7SbC5Gh9urLmxsyojRfEwzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.32.0/23
IPv6:
2a01:7b40::/32
Signature Algorithm: sha256WithRSAEncryption
22:b0:ec:26:44:0e:ec:6f:12:1e:67:76:3f:b7:9a:22:8c:1e:
88:a4:9e:47:fc:40:06:0d:ac:50:4f:db:43:c9:d4:42:a3:01:
2a:50:c9:94:5a:81:23:55:e7:bf:da:8e:a5:95:1d:69:41:3a:
b3:f6:5b:5f:d8:5d:7e:93:68:4d:82:6a:15:36:a6:e8:da:43:
cf:58:d6:de:23:c9:ce:ff:a5:3e:7b:d6:9a:f8:89:8b:a5:4f:
61:9b:3d:74:6d:92:14:87:28:36:d1:40:a0:7a:5b:56:fe:d5:
7d:42:6c:54:0b:6d:7e:ad:bf:45:97:ee:b6:ce:83:17:d3:31:
cc:cd:cf:63:d0:17:eb:aa:2d:54:f5:61:0e:13:48:36:36:84:
e0:ba:7e:2f:a9:bc:a0:a3:3d:3d:95:7b:32:7b:8d:a7:70:dd:
79:5a:85:97:ac:bd:81:e6:aa:02:d1:f1:2a:eb:36:6d:a4:90:
37:88:41:d7:d7:42:0c:14:fe:5d:c8:c1:ac:45:07:e9:a6:22:
db:ba:6a:a2:84:a8:9b:f9:e4:42:90:68:65:d6:23:25:ee:90:
b6:75:64:f7:9b:5c:5c:6d:85:57:7b:00:28:be:d3:72:32:01:
5b:29:43:0c:66:e7:06:16:84:a2:68:64:b3:fc:29:b3:fb:f1:
95:7b:59:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net