Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa
File: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (raw, json)
Hash identifier: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=
Subject key identifier: 0D:F2:40:CD:FF:50:DC:BE:2D:12:65:8F:4B:BA:AA:28:39:A5:80:AD
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019426D99DAF47C001AF90417E8B026B84E6
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa
Signing time: Thu 02 Jan 2025 11:49:43 +0000
ROA not before: Thu 02 Jan 2025 11:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43966
IP address blocks: 79.173.64.0/23 maxlen: 24
79.173.66.0/23 maxlen: 24
79.173.77.0/24 maxlen: 24
79.173.80.0/20 maxlen: 24
94.243.192.0/20 maxlen: 24
94.243.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:9d:af:47:c0:01:af:90:41:7e:8b:02:6b:84:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jan 2 11:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0df240cdff50dcbe2d12658f4bbaaa2839a580ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:aa:fb:cb:da:8d:92:36:50:10:50:07:8d:6f:
79:ae:87:9b:a9:92:49:d8:a3:de:03:b6:ad:c7:e0:
6d:d0:3a:1b:2f:13:aa:a2:15:40:7a:57:aa:b3:75:
6f:00:c8:e8:74:ab:9d:a8:4d:7a:22:29:d1:f1:2f:
aa:ee:11:9c:66:19:1e:c7:f6:e0:27:3a:c9:26:93:
8e:72:7d:63:93:dc:3c:71:e3:29:59:64:b8:f6:bb:
82:a4:33:f9:f5:89:39:c6:d4:75:b0:ef:85:93:70:
91:1d:69:55:03:10:12:98:fe:4e:a3:0c:59:85:45:
c1:5b:61:0c:32:67:e9:ff:f9:b1:02:60:90:4b:34:
00:06:86:b3:69:f2:be:8c:82:f4:08:74:7a:b8:fe:
0e:aa:f8:43:c4:62:57:d3:5b:bc:41:cd:ad:15:93:
96:73:2f:50:8a:c4:4e:b6:01:f9:d9:ab:f0:3a:89:
b6:55:d6:17:d3:15:e9:85:96:f9:bf:2f:1b:e0:a9:
85:0d:ce:e5:3e:b9:44:27:8f:a5:bf:1b:f9:ed:7e:
6b:2a:d0:70:c1:b3:02:50:cc:c8:7b:e5:61:e6:a7:
dc:80:2b:c9:e0:7e:a8:95:05:79:0c:f5:9d:ac:fd:
25:13:e4:f9:ee:1f:9a:87:34:f9:69:39:87:6c:f5:
b9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F2:40:CD:FF:50:DC:BE:2D:12:65:8F:4B:BA:AA:28:39:A5:80:AD
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.64.0/22
79.173.77.0/24
79.173.80.0/20
94.243.192.0/20
94.243.236.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:b1:e5:f3:8d:1a:39:b2:31:6c:20:22:93:f9:23:f6:1f:c4:
de:2a:11:29:e8:28:1c:25:6c:6e:1f:a6:6c:dd:74:1d:f4:c5:
60:44:10:4e:ea:9c:21:1b:3b:5f:df:f8:12:98:20:bc:dc:33:
0e:0e:30:2c:c2:b2:f0:41:b8:36:6e:04:64:95:46:e2:ef:c1:
d8:41:7b:83:c3:ba:6d:de:6c:3b:31:6d:95:f9:f6:77:3e:35:
07:ea:7b:03:af:9e:5d:31:35:7a:15:8c:17:b9:34:4f:a6:7c:
b9:88:91:61:f8:7c:6c:32:17:f7:ac:96:81:c6:91:b2:93:96:
64:e2:bd:c9:23:a1:0b:76:bb:f6:c4:1d:44:20:b6:2c:c8:af:
a5:a8:04:12:62:d4:10:fd:9b:84:e6:c6:0e:18:cf:fe:49:3a:
bb:97:ce:96:43:6f:87:ac:d0:3e:de:02:ea:2a:de:f4:b8:a9:
55:e4:9f:ee:dc:ba:1a:8f:39:ea:90:a4:d8:30:d3:ae:0e:1d:
30:77:c7:d6:94:35:c1:65:26:37:ee:a1:a6:32:41:12:e1:4d:
1b:9a:39:41:0a:c8:5d:ca:ef:0b:7b:55:58:c6:85:48:51:b3:
b9:2d:ed:84:58:9e:d8:1b:7e:2a:af:34:9d:44:0b:88:d5:2d:
6b:6f:49:0b
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZQm2Z2vR8ABr5BBfosCa4TmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx
Y2YxMTMwHhcNMjUwMTAyMTE0OTQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGYyNDBjZGZmNTBkY2JlMmQxMjY1OGY0YmJhYWEyODM5YTU4MGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuar7y9qNkjZQEFAHjW95roebqZJJ
2KPeA7atx+Bt0DobLxOqohVAeleqs3VvAMjodKudqE16IinR8S+q7hGcZhkex/bg
JzrJJpOOcn1jk9w8ceMpWWS49ruCpDP59Yk5xtR1sO+Fk3CRHWlVAxASmP5OowxZ
hUXBW2EMMmfp//mxAmCQSzQABoazafK+jIL0CHR6uP4OqvhDxGJX01u8Qc2tFZOW
cy9QisROtgH52avwOom2VdYX0xXphZb5vy8b4KmFDc7lPrlEJ4+lvxv57X5rKtBw
wbMCUMzIe+Vh5qfcgCvJ4H6olQV5DPWdrP0lE+T57h+ahzT5aTmHbPW52QIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFA3yQM3/UNy+LRJlj0u6qig5pYCtMB8GA1UdIwQY
MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt
NDUwZmUzMzU5NWQxLzEvRGZKQXpmOVEzTDR0RW1XUFM3cXFLRG1sZ0swLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx
LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCT61AAwQA
T61NAwQET61QAwQEXvPAAwQCXvPsMA0GCSqGSIb3DQEBCwUAA4IBAQCKseXzjRo5
sjFsICKT+SP2H8TeKhEp6CgcJWxuH6Zs3XQd9MVgRBBO6pwhGztf3/gSmCC83DMO
DjAswrLwQbg2bgRklUbi78HYQXuDw7pt3mw7MW2V+fZ3PjUH6nsDr55dMTV6FYwX
uTRPpny5iJFh+HxsMhf3rJaBxpGyk5Zk4r3JI6ELdrv2xB1EILYsyK+lqAQSYtQQ
/ZuE5sYOGM/+STq7l86WQ2+HrNA+3gLqKt70uKlV5J/u3LoajznqkKTYMNOuDh0w
d8fWlDXBZSY37qGmMkES4U0bmjlBCshdyu8Le1VYxoVIUbO5Le2EWJ7YG34qrzSd
RAuI1S1rb0kL
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net