Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/lzphi4MxBp9BaUcphSOwLVmwZEE.roa
File: lzphi4MxBp9BaUcphSOwLVmwZEE.roa (raw, json)
Hash identifier: P65ZeDMhywEETdGJgUa5vU1aMaDLOyoDprfHHXlTBBM=
Subject key identifier: 97:3A:61:8B:83:31:06:9F:41:69:47:29:85:23:B0:2D:59:B0:64:41
Certificate issuer: /CN=ebbc0d60bd3a90bd5e31509deadf447076b078d8
Certificate serial: 019421446A4BCC6D13CCD23E710497174B67
Authority key identifier: EB:BC:0D:60:BD:3A:90:BD:5E:31:50:9D:EA:DF:44:70:76:B0:78:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67wNYL06kL1eMVCd6t9EcHaweNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/lzphi4MxBp9BaUcphSOwLVmwZEE.roa
Signing time: Wed 01 Jan 2025 09:48:39 +0000
ROA not before: Wed 01 Jan 2025 09:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41017
IP address blocks: 79.134.56.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:6a:4b:cc:6d:13:cc:d2:3e:71:04:97:17:4b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbc0d60bd3a90bd5e31509deadf447076b078d8
Validity
Not Before: Jan 1 09:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=973a618b8331069f416947298523b02d59b06441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ae:83:f7:db:0d:c6:42:c1:ce:dc:b9:42:fb:
bd:94:56:ab:7a:e1:07:a8:70:87:f2:bf:9a:ed:c2:
05:ba:8a:c5:62:92:4b:ac:4b:d3:a8:fa:35:6e:dd:
25:a8:95:86:44:ac:52:a0:7e:31:5d:30:62:29:7e:
2e:91:f6:f6:6c:fd:e1:85:01:19:9c:85:43:57:8b:
d6:ac:28:22:4b:52:8c:be:54:45:a2:6d:f8:23:32:
c0:52:c8:52:86:89:01:ba:96:7a:93:bf:f7:97:fb:
c8:f0:49:8f:5b:67:f5:01:f8:cc:3a:67:64:ab:b3:
30:9e:d1:d7:db:bd:b0:b6:1c:e8:b4:28:93:e8:c2:
42:cb:57:6f:89:97:56:e4:49:8c:99:8b:03:d3:ca:
46:5e:c0:f4:5f:63:74:c3:e3:0e:35:04:d3:87:5e:
44:36:72:ee:10:f0:b0:a3:36:b5:46:c7:21:90:77:
9b:bb:95:6d:93:c0:3c:58:b6:6c:9a:61:81:e0:1c:
b4:de:f1:a4:19:1d:9a:1a:28:1a:05:9d:13:63:59:
98:12:08:86:0a:87:94:53:75:cc:e3:1d:11:a6:5e:
57:17:40:fe:6c:9c:1c:2f:60:69:e3:81:65:29:5d:
fc:ae:c9:cb:8b:c1:73:9d:57:cd:da:8b:2f:28:5d:
e1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3A:61:8B:83:31:06:9F:41:69:47:29:85:23:B0:2D:59:B0:64:41
X509v3 Authority Key Identifier:
keyid:EB:BC:0D:60:BD:3A:90:BD:5E:31:50:9D:EA:DF:44:70:76:B0:78:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67wNYL06kL1eMVCd6t9EcHaweNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/lzphi4MxBp9BaUcphSOwLVmwZEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/080af6-8dc4-48e6-9c63-a6b95991cd2c/1/67wNYL06kL1eMVCd6t9EcHaweNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.134.56.0/23
Signature Algorithm: sha256WithRSAEncryption
50:d9:c0:5e:be:2a:63:c8:11:a4:d5:b5:01:aa:1c:a0:49:bf:
4d:81:4a:39:be:32:dd:9a:90:52:ed:34:a6:59:4f:76:50:e3:
67:83:39:f0:15:e6:79:36:33:90:eb:3b:77:fa:fb:d0:0b:e1:
e1:84:40:c8:0f:c0:0e:59:97:22:3f:8c:9c:a6:87:c6:aa:c5:
0f:30:23:a0:03:f2:96:ba:0d:97:44:44:29:15:2a:cc:e3:9c:
a7:20:9e:be:b4:57:e2:dc:88:aa:19:76:67:13:82:9a:26:8c:
07:8c:ce:ce:fe:61:8b:90:a6:17:4c:3c:e4:b5:a4:67:4e:6d:
e3:67:bf:43:32:64:0c:19:39:0f:ab:77:8f:11:9f:69:04:7d:
9b:dc:b6:d2:1d:62:dd:25:84:53:b5:17:55:ee:0d:b8:7f:08:
ae:e7:d9:dc:17:24:1b:ff:6b:83:8f:a4:ab:69:90:8e:04:39:
28:57:45:51:a1:a7:4f:63:06:14:dd:f7:98:46:a4:1b:48:46:
72:22:8e:1c:a0:3a:be:94:1e:58:4a:2f:99:9d:0c:92:00:49:
0b:52:16:39:14:1a:6a:b4:10:f5:47:8f:b2:59:43:19:26:dc:
14:3c:2f:23:00:3d:71:45:bd:8e:cd:d9:32:b2:12:03:7a:ec:
ef:df:0d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:59 2025 by rpki-client on console.sobornost.net