Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/81UWy7CI5ZKrKPrinZ4dCy4oDH0.roa
File: 81UWy7CI5ZKrKPrinZ4dCy4oDH0.roa (raw, json)
Hash identifier: ks5dCLWRCuG/q4/CuX/57M7GUqb91SMdC9TqzwRWgFs=
Subject key identifier: F3:55:16:CB:B0:88:E5:92:AB:28:FA:E2:9D:9E:1D:0B:2E:28:0C:7D
Certificate issuer: /CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Certificate serial: 0194EC4EE491FDA4D6A5E31F45BF6D914442
Authority key identifier: C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/81UWy7CI5ZKrKPrinZ4dCy4oDH0.roa
Signing time: Sun 09 Feb 2025 20:03:00 +0000
ROA not before: Sun 09 Feb 2025 20:03:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 77.81.79.0/24 maxlen: 24
194.26.2.0/24 maxlen: 24
194.26.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ec:4e:e4:91:fd:a4:d6:a5:e3:1f:45:bf:6d:91:44:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Validity
Not Before: Feb 9 20:03:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f35516cbb088e592ab28fae29d9e1d0b2e280c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:74:00:79:6d:28:67:3e:ce:e8:24:df:8b:ea:
94:ee:41:01:93:8d:8f:73:3d:74:24:66:11:73:56:
4f:dc:fe:f1:f2:10:2e:aa:4d:4b:1b:56:d4:d7:a5:
fc:cb:4c:d6:06:ed:0e:3c:47:04:b1:71:fe:8a:9e:
71:f0:8c:68:88:49:25:86:e6:4e:4c:da:8e:9f:9c:
3c:fc:3c:5a:29:a5:74:29:81:82:5c:56:b7:0e:d1:
30:5a:57:65:83:ec:d3:c9:55:86:95:6c:a5:2d:cb:
06:c1:3d:70:36:94:6f:ef:94:c2:5c:c0:23:53:b9:
18:29:23:ee:76:68:c4:e9:dd:0f:16:05:9d:c9:31:
c3:b6:0e:06:40:ef:35:38:d2:c2:f2:4e:35:56:5f:
ba:79:8d:cd:a6:32:31:d7:71:71:35:4f:11:2d:2e:
9c:7e:cc:85:22:44:dd:96:a9:50:fd:de:64:9d:f9:
8e:6d:81:77:19:5e:8d:cb:a3:1e:e5:19:44:ad:a8:
ca:c5:3a:ba:aa:49:35:6c:bb:68:e0:d9:f4:6c:d2:
21:a1:e8:e2:7c:c5:9e:0c:84:64:72:97:1e:cd:61:
52:f7:7a:f5:cd:05:31:17:c3:29:21:7d:a3:4f:e0:
20:b6:ce:30:23:77:98:b1:1f:af:75:bd:1b:c9:b0:
8c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:55:16:CB:B0:88:E5:92:AB:28:FA:E2:9D:9E:1D:0B:2E:28:0C:7D
X509v3 Authority Key Identifier:
keyid:C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/81UWy7CI5ZKrKPrinZ4dCy4oDH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/xfn1DKHDSjvmEASNE4rzwHU6-Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
194.26.2.0/24
194.26.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:19:7f:e7:a7:66:4d:2f:65:da:7e:f4:f3:8b:6e:15:80:32:
28:9a:5d:e8:6e:20:29:fc:af:f6:a1:9e:ca:e2:3f:69:47:86:
a4:22:54:b5:06:13:cd:76:e9:23:f9:19:38:fd:dc:21:9d:fc:
bc:c7:28:b0:e0:a1:da:88:05:ea:17:8e:d7:77:f5:c8:50:de:
4a:b7:02:38:e3:8b:80:56:d4:13:48:ea:c9:cf:9b:c6:a3:5f:
5a:40:aa:48:2a:9b:da:f5:96:a3:f9:45:36:1b:b4:fa:c9:70:
21:9f:4c:ee:6c:1c:fe:a2:4a:2e:f1:e8:50:4a:b7:17:1c:d0:
e2:0d:ba:7d:d1:62:d5:b3:81:2f:93:40:74:21:f3:d7:06:24:
8c:76:ea:eb:9a:c9:c8:9d:d3:db:eb:c3:02:81:fb:3b:72:a7:
49:c4:74:3b:99:e9:60:9d:f2:cd:5d:95:42:96:2f:4b:76:5b:
ab:5b:86:ca:e9:12:43:f5:65:5e:75:b2:ac:95:e9:f3:8b:bb:
5c:ce:8a:f8:d3:c4:59:54:c3:3e:8a:cb:9c:8b:1a:2a:03:f9:
df:b3:65:73:46:52:2a:cb:13:54:a0:d9:fa:bc:43:bf:50:6b:
8a:49:a6:66:ce:b7:34:46:bb:41:69:23:97:b8:f7:48:1c:58:
34:0a:b0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:41 2025 by rpki-client on console.sobornost.net