Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/HGLfNFEmq1zoGMYRZBEFVC-KI2E.roa
File: HGLfNFEmq1zoGMYRZBEFVC-KI2E.roa (raw, json)
Hash identifier: FKMG8ZBG6AFoA3ZFzEjcDqb09W6tPLhjGkfNe7kPOX4=
Subject key identifier: 1C:62:DF:34:51:26:AB:5C:E8:18:C6:11:64:11:05:54:2F:8A:23:61
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 0194244579C8B97D14A1DC0A456DE9FCA82F
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/HGLfNFEmq1zoGMYRZBEFVC-KI2E.roa
Signing time: Wed 01 Jan 2025 23:48:40 +0000
ROA not before: Wed 01 Jan 2025 23:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 54103
IP address blocks: 79.143.129.0/24 maxlen: 24
79.143.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:79:c8:b9:7d:14:a1:dc:0a:45:6d:e9:fc:a8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Jan 1 23:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c62df345126ab5ce818c611641105542f8a2361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:26:f1:ba:cc:07:33:9c:83:f5:3b:03:97:
a6:4e:f9:53:88:53:97:27:ff:89:68:99:1c:f8:fc:
f3:d1:f8:3e:d2:8d:55:4a:e6:e5:1a:8e:ed:10:a7:
27:bf:1e:e2:9b:ea:28:d6:e5:8b:49:a6:d3:9d:00:
79:76:c1:d9:97:91:84:69:a2:d0:60:1d:69:47:88:
bb:74:0f:5f:46:a6:07:24:69:83:80:01:1b:91:49:
8d:d0:88:0d:4f:9b:f1:b6:ca:41:c3:08:d5:2c:00:
88:33:83:ea:3c:6d:b6:ff:93:56:62:f0:b6:c1:c8:
60:c2:22:1d:95:99:ac:14:7d:b4:a7:50:7a:32:a7:
c1:cd:6a:fc:e2:59:1e:b0:53:7b:c2:e7:11:a8:cb:
49:a6:46:b0:c9:6f:6d:8e:2e:1f:3a:3b:f0:15:fa:
2b:50:05:87:91:f9:de:0e:00:ae:f5:43:9b:ed:93:
c9:91:32:d1:ad:a0:b6:00:c1:6a:60:8e:f7:e3:d7:
95:0e:d4:86:df:03:0e:31:57:dc:cc:d1:1a:5e:aa:
31:50:fb:2b:9a:fe:c8:87:53:d8:9c:aa:fd:af:05:
fd:d3:d5:ce:fc:46:a5:8b:f6:a9:3c:58:0c:58:6d:
96:03:9e:db:01:2b:43:8d:9f:6a:ca:7f:6f:1a:fa:
e2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:62:DF:34:51:26:AB:5C:E8:18:C6:11:64:11:05:54:2F:8A:23:61
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/HGLfNFEmq1zoGMYRZBEFVC-KI2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.129.0/24
79.143.131.0/24
Signature Algorithm: sha256WithRSAEncryption
33:df:dc:2a:3b:05:2a:02:ea:2b:97:f4:8d:39:73:9d:51:d7:
6e:b2:28:40:bf:82:42:cd:dc:73:78:33:da:84:16:1a:c3:bb:
ff:50:15:e2:2f:28:4b:a9:f0:20:c0:4f:c8:e4:a1:bd:e8:7f:
e8:fa:53:e2:bf:ed:24:a7:fc:e2:a9:23:d0:db:12:41:3a:9a:
66:ae:2b:da:41:13:b4:a1:62:81:df:2f:44:aa:45:2e:50:32:
4c:88:4a:f5:5d:8d:5b:1e:f1:74:7e:5c:a3:ea:96:c7:36:7c:
4e:cb:e1:49:91:ef:f5:c8:35:56:6d:cf:0e:8e:3f:c3:05:69:
28:bb:06:87:6a:70:dd:98:32:6a:b3:1f:ff:a0:e5:e0:ec:89:
7d:ea:b0:55:46:50:96:0f:8d:ef:fb:d5:f0:ea:78:29:a0:e0:
bb:0a:6a:3f:b6:3b:6f:b4:e7:34:89:91:e7:af:e4:5a:3f:ac:
48:b1:e3:79:90:5f:25:9c:3d:b5:9b:93:46:7c:40:85:90:72:
93:8d:20:7d:e2:8d:68:d9:ca:e5:94:19:f8:eb:7c:75:93:82:
35:e4:6c:33:47:72:72:16:f5:7b:ea:ae:d2:f8:c8:77:eb:e0:
a0:12:9a:1c:60:b7:3f:d5:40:a8:b4:37:4a:10:17:2a:af:9d:
98:d7:f3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net