Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/lsLcveQpDK6_M97PC59O9jY_Mn0.roa
File: lsLcveQpDK6_M97PC59O9jY_Mn0.roa (raw, json)
Hash identifier: ymXevK/nbRh5h28kJcEd3t9OjF1YdLZjWlDyNpO0ilU=
Subject key identifier: 96:C2:DC:BD:E4:29:0C:AE:BF:33:DE:CF:0B:9F:4E:F6:36:3F:32:7D
Certificate issuer: /CN=ec72427cb2faf8bd9b6dd9ae137c4d4914a8e810
Certificate serial: 01941F8CA096FF96971E01750CDB85BEF121
Authority key identifier: EC:72:42:7C:B2:FA:F8:BD:9B:6D:D9:AE:13:7C:4D:49:14:A8:E8:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HJCfLL6-L2bbdmuE3xNSRSo6BA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/lsLcveQpDK6_M97PC59O9jY_Mn0.roa
Signing time: Wed 01 Jan 2025 01:48:17 +0000
ROA not before: Wed 01 Jan 2025 01:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203206
IP address blocks: 185.78.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a0:96:ff:96:97:1e:01:75:0c:db:85:be:f1:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec72427cb2faf8bd9b6dd9ae137c4d4914a8e810
Validity
Not Before: Jan 1 01:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96c2dcbde4290caebf33decf0b9f4ef6363f327d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cc:93:44:c2:2e:d0:e8:fd:77:0c:2c:4d:27:
16:82:d0:2e:21:9e:42:54:82:fe:04:ac:a5:2f:b2:
5b:6f:9b:53:bb:bd:40:7a:2e:5b:1b:33:b5:a3:ac:
4e:b7:1e:b1:9e:06:43:b4:74:97:73:12:fc:93:82:
25:48:61:fe:41:68:a9:15:64:e5:e8:cd:e7:4a:26:
f5:73:ef:74:c5:d5:51:32:fe:67:a3:83:98:93:bf:
b7:bf:6d:60:ba:1b:5b:ff:85:da:26:a2:d4:3b:15:
61:7b:61:3b:53:8f:b3:c0:38:fa:4f:ea:22:c8:2a:
69:cb:a9:65:ad:41:85:c6:8b:bb:8e:b3:b4:a0:33:
41:0a:36:06:27:92:59:ce:0c:25:3e:cc:a9:46:3d:
0c:3e:b4:8c:1b:7e:36:45:cb:fc:3d:35:d5:d2:4f:
01:2c:9b:bc:a0:9f:51:e7:58:a6:b8:9f:75:14:bc:
e5:01:b9:db:74:66:a6:c3:b9:c7:ee:78:03:cf:6b:
cb:d1:73:59:a5:94:92:85:ab:a4:8f:90:b1:6e:f0:
72:f4:22:8a:fa:ca:cd:12:0b:53:5d:78:eb:eb:ec:
3b:5e:af:79:04:ca:ae:1a:6b:db:28:cb:0b:6c:51:
46:64:bb:86:b3:de:b1:bc:3c:3b:61:fe:b6:45:50:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C2:DC:BD:E4:29:0C:AE:BF:33:DE:CF:0B:9F:4E:F6:36:3F:32:7D
X509v3 Authority Key Identifier:
keyid:EC:72:42:7C:B2:FA:F8:BD:9B:6D:D9:AE:13:7C:4D:49:14:A8:E8:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HJCfLL6-L2bbdmuE3xNSRSo6BA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/lsLcveQpDK6_M97PC59O9jY_Mn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/7HJCfLL6-L2bbdmuE3xNSRSo6BA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.129.0/24
Signature Algorithm: sha256WithRSAEncryption
99:8f:5b:2f:a7:c5:7d:33:11:35:06:61:6e:13:53:a5:95:ff:
5c:75:e4:69:10:a6:4d:42:4d:95:c2:0f:f5:64:de:66:10:c0:
4d:9f:01:5a:80:36:8a:26:a0:b2:e8:2d:92:55:e6:b8:a1:ff:
ab:87:b2:cb:1f:23:a1:cb:24:4a:e1:60:a8:73:0a:f1:0d:9e:
68:98:a2:a1:2b:28:2e:0f:f6:4e:3a:4f:d5:10:de:2f:28:5c:
b6:6d:2b:9c:c4:d7:e8:c2:a4:d1:7b:9a:fc:7c:60:17:d7:a5:
55:48:80:7c:d4:2d:84:27:91:62:00:ef:b8:d4:54:08:11:a9:
25:3b:fe:2f:08:eb:14:2b:4e:1c:0e:ba:a3:9f:90:38:31:c4:
29:75:5d:76:7f:bb:78:bb:d8:11:46:1d:72:71:87:41:4a:21:
c3:ce:4a:e4:16:06:51:df:85:36:20:58:6d:db:62:9c:18:21:
b2:0e:a2:05:1f:4f:ff:e2:6f:69:48:ba:a9:c6:a1:33:b9:d2:
88:13:31:f5:bd:fc:06:50:a9:0e:60:a9:d7:e2:45:d9:99:c6:
2c:81:03:b9:75:8f:90:87:61:f9:52:e9:f8:77:58:63:3a:5f:
22:19:a2:48:49:1e:cd:1f:30:74:38:1f:c9:79:f1:58:58:b0:
b3:ed:27:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net