Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/eTZvFVUGnDNHwq2npFaevM_pjLg.roa
File: eTZvFVUGnDNHwq2npFaevM_pjLg.roa (raw, json)
Hash identifier: 18cD37AihQlqKhfJw/uFQO048dE0tdQTn3vqNmQm/DI=
Subject key identifier: 79:36:6F:15:55:06:9C:33:47:C2:AD:A7:A4:56:9E:BC:CF:E9:8C:B8
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 0195DC9557EAC58D625D5C0BECE79FFA0C22
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/eTZvFVUGnDNHwq2npFaevM_pjLg.roa
Signing time: Fri 28 Mar 2025 11:48:49 +0000
ROA not before: Fri 28 Mar 2025 11:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57604
IP address blocks: 139.28.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:dc:95:57:ea:c5:8d:62:5d:5c:0b:ec:e7:9f:fa:0c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Mar 28 11:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79366f1555069c3347c2ada7a4569ebccfe98cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d1:95:b9:25:f9:bd:e4:65:f1:91:0d:90:f8:
b2:c0:04:cf:d3:17:2d:2a:f9:5b:6c:71:11:d0:0f:
4e:e2:aa:5f:ae:e4:8b:5c:10:61:30:99:c2:6d:e3:
39:5f:12:ef:07:2e:1b:78:2f:4c:d5:0a:59:43:04:
c2:60:29:b2:f0:52:91:56:cc:21:3a:c7:14:30:f1:
68:57:d1:70:a7:51:ad:cc:48:eb:29:8c:13:94:81:
be:ff:53:b6:e8:b7:89:73:a1:7e:dc:c3:d9:72:dd:
b6:cd:14:2e:b7:0c:a0:33:31:0d:d8:28:16:9c:1f:
bd:68:d3:f7:f1:a1:9e:0e:c0:65:5c:99:2f:48:84:
51:c9:0b:ce:6a:ef:ff:ce:fc:7d:fb:ff:1a:ec:da:
72:2a:1e:bc:65:9d:63:cd:24:f5:9a:6b:69:61:f8:
d4:6f:28:49:9d:48:64:0e:93:a1:68:42:c3:20:66:
a7:1a:ff:58:89:93:3a:4c:23:c0:ed:1a:97:60:ad:
2c:24:0e:8c:9c:df:63:62:d8:6e:59:ba:42:28:ec:
d4:61:d2:f0:d2:06:16:75:cb:bc:7d:7c:12:b7:27:
25:c6:1b:3f:29:c4:ef:75:02:82:eb:d7:87:10:51:
cd:69:14:13:2f:e3:3a:74:cd:9e:a9:f4:81:7f:80:
2d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:36:6F:15:55:06:9C:33:47:C2:AD:A7:A4:56:9E:BC:CF:E9:8C:B8
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/eTZvFVUGnDNHwq2npFaevM_pjLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
26:12:39:96:ff:1b:ad:59:1e:2f:a9:d5:4a:3f:b1:6b:58:be:
5f:25:25:a6:49:0a:4a:25:58:36:2c:d4:05:2e:d0:bd:9a:84:
a0:35:2d:16:fb:cf:ee:14:fa:d9:9b:cd:b6:a7:45:2d:de:65:
4b:4c:f8:9d:9e:e4:2f:bf:dc:24:23:f9:b0:36:49:43:75:5e:
2c:ef:47:38:92:52:f7:1f:2b:35:41:80:2a:5c:40:8f:be:5d:
06:00:46:30:3c:41:a6:9c:6d:26:f1:b4:34:ea:60:e1:dc:11:
44:58:44:f4:53:58:7d:72:00:35:df:21:be:14:20:ba:11:4e:
66:3f:cc:bd:f3:da:cd:7d:b4:bf:18:97:ce:f7:b7:7d:15:6b:
91:86:ad:7f:5e:10:ec:ef:38:a9:ca:a1:56:17:03:fa:e0:ef:
5b:90:dc:58:50:4f:70:5a:98:c1:12:6b:42:2e:99:fd:48:1b:
c2:cf:b3:4c:f7:c8:5c:64:f2:17:a7:75:b2:e1:30:e3:e3:c2:
c7:f5:ab:9a:18:3d:a4:16:34:84:77:2d:62:fa:06:ba:b9:f2:
84:0a:0a:83:7d:6b:48:9f:6e:9f:22:98:31:1b:4d:0b:e4:f1:
df:97:c3:3c:af:b3:72:ef:02:26:e4:7a:2a:85:f8:e8:d0:41:
73:5b:9b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net