Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/8f2ad8-6a48-423c-be41-138a7117de36/1/oQqfonqU0el_rAbWjPd9zRi9BIE.roa
File: oQqfonqU0el_rAbWjPd9zRi9BIE.roa (raw, json)
Hash identifier: gq7AyKtYP571LisMvLI2KI6H+5wCaPmWunQPHsCsiZE=
Subject key identifier: A1:0A:9F:A2:7A:94:D1:E9:7F:AC:06:D6:8C:F7:7D:CD:18:BD:04:81
Certificate issuer: /CN=8ef8c471e83b14fc6c6cc7cfc96c1ac3e3087eae
Certificate serial: 019598F3CE40D85AA9F7F9A8A0E11A83328D
Authority key identifier: 8E:F8:C4:71:E8:3B:14:FC:6C:6C:C7:CF:C9:6C:1A:C3:E3:08:7E:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvjEceg7FPxsbMfPyWwaw-MIfq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/8f2ad8-6a48-423c-be41-138a7117de36/1/oQqfonqU0el_rAbWjPd9zRi9BIE.roa
Signing time: Sat 15 Mar 2025 08:37:49 +0000
ROA not before: Sat 15 Mar 2025 08:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24631
IP address blocks: 77.95.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:98:f3:ce:40:d8:5a:a9:f7:f9:a8:a0:e1:1a:83:32:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef8c471e83b14fc6c6cc7cfc96c1ac3e3087eae
Validity
Not Before: Mar 15 08:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a10a9fa27a94d1e97fac06d68cf77dcd18bd0481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:68:8a:c3:22:91:7c:4b:83:e8:e0:d3:44:
6a:0b:bd:a0:07:8c:a1:97:73:ac:bf:92:ac:07:22:
99:2b:f5:56:05:c1:c8:d5:1d:16:33:c1:f7:0f:10:
11:33:6e:71:3f:25:b2:bd:bf:b2:6b:11:f6:cb:b2:
5c:4a:64:9c:78:99:4b:ac:43:4e:54:6a:93:9c:7e:
c9:be:34:d7:b5:d8:ed:fe:46:af:a0:e0:f2:26:63:
87:b6:d5:31:80:c0:cb:e7:cb:84:e2:26:55:c9:fb:
12:0d:fe:96:e1:f7:9f:1a:33:bd:1d:10:f6:b9:10:
2f:7a:1f:cf:95:2b:91:aa:a3:35:d4:63:de:7a:a5:
8a:6e:84:06:fc:b8:4a:f2:20:4c:14:da:0d:9f:7b:
ab:9c:89:dc:0a:19:db:76:13:6d:ec:4c:64:02:3b:
07:d1:41:6a:e3:6d:61:28:54:26:c8:c4:7e:27:ee:
5e:85:5a:e3:f7:52:bb:1f:38:a8:f8:65:48:5c:7d:
b2:7d:4f:cb:ac:e1:e2:0b:b5:1f:8c:79:59:72:5c:
c7:d9:e1:50:08:24:42:a9:fc:73:db:5d:8b:e1:86:
2e:b3:74:11:25:a5:06:bd:c4:d4:c0:84:f8:f8:c0:
04:72:e5:32:d7:6d:bf:88:03:13:f1:f8:e9:50:a2:
4a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:0A:9F:A2:7A:94:D1:E9:7F:AC:06:D6:8C:F7:7D:CD:18:BD:04:81
X509v3 Authority Key Identifier:
keyid:8E:F8:C4:71:E8:3B:14:FC:6C:6C:C7:CF:C9:6C:1A:C3:E3:08:7E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvjEceg7FPxsbMfPyWwaw-MIfq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8f2ad8-6a48-423c-be41-138a7117de36/1/oQqfonqU0el_rAbWjPd9zRi9BIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/8f2ad8-6a48-423c-be41-138a7117de36/1/jvjEceg7FPxsbMfPyWwaw-MIfq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.219.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:fd:fc:35:1d:98:bd:bd:78:9b:a9:a7:f0:39:05:9c:95:1a:
83:f0:ae:d0:f0:60:73:97:57:0b:2a:c0:d2:90:06:9b:cb:54:
0a:7d:83:30:84:d9:ab:68:5c:77:ec:58:c5:c1:65:03:63:98:
a2:08:bc:9c:66:6e:0c:4a:c7:96:e0:ba:99:d4:34:18:06:0f:
bc:be:73:66:6a:75:43:dd:c9:09:d0:61:04:02:26:59:c5:e5:
5f:3e:0d:ce:bd:6e:91:65:41:ce:68:20:c8:f7:b0:b8:74:26:
9b:86:54:19:24:a4:a3:08:e2:a2:75:74:4b:62:36:f8:9c:db:
7d:7c:3a:b1:2e:a5:76:1b:ea:21:31:dd:0c:eb:7c:8b:91:51:
b0:1e:2b:c6:25:52:58:56:9d:d4:8e:b6:cc:d1:2c:f2:d0:a7:
f5:5b:5a:09:c6:c3:85:db:f1:8b:d5:f1:e5:4a:a7:2e:d2:7b:
d0:f2:e4:a8:05:05:c0:fa:e7:8f:df:9b:91:51:3e:9a:4e:2e:
bf:c5:4a:5d:33:0f:8a:0a:1d:d9:69:1a:09:c4:0b:8c:4a:eb:
7f:6a:eb:b4:18:43:2a:ea:22:1a:21:eb:77:0e:90:1e:f1:43:
25:4c:85:19:71:f2:4c:b9:dd:c5:eb:15:e1:41:14:fe:b5:86:
90:53:a5:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:01 2025 by rpki-client on console.sobornost.net