Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/OJ0Ea8MAtm0vkDi2FG3lo9X6cRI.roa
File: OJ0Ea8MAtm0vkDi2FG3lo9X6cRI.roa (raw, json)
Hash identifier: q8ux1iCf0KA9SrdmsvdA7tcm8bgtmy+qQYHD92uVeqc=
Subject key identifier: 38:9D:04:6B:C3:00:B6:6D:2F:90:38:B6:14:6D:E5:A3:D5:FA:71:12
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 0194282407296CCD25443CEB37F6D5F00A3B
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/OJ0Ea8MAtm0vkDi2FG3lo9X6cRI.roa
Signing time: Thu 02 Jan 2025 17:50:37 +0000
ROA not before: Thu 02 Jan 2025 17:50:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209007
IP address blocks: 79.110.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:07:29:6c:cd:25:44:3c:eb:37:f6:d5:f0:0a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Jan 2 17:50:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=389d046bc300b66d2f9038b6146de5a3d5fa7112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ea:00:d9:6c:f3:ca:27:07:e1:f9:92:5d:4f:
6d:62:1c:bc:8a:84:5d:4e:13:b1:b4:c7:78:8f:04:
b3:dc:de:fc:22:68:64:9c:d7:8d:0f:4f:e4:65:5f:
78:7d:92:ba:01:69:5e:7a:d3:4e:64:23:a0:16:77:
ee:3f:7a:b6:30:ee:9d:3e:db:00:cb:cc:d3:b4:75:
0a:bb:51:e4:34:c3:38:51:9f:ca:2b:89:52:d0:26:
30:8c:dc:88:ad:83:5c:fd:70:6a:38:7e:f1:11:9a:
b5:5f:1e:72:79:e3:0e:c1:a2:10:c9:81:64:cd:0c:
d3:2a:52:cb:fe:61:64:24:99:25:53:f0:1f:f0:f6:
24:24:af:d6:c8:c4:82:30:9d:b7:6c:87:8c:9c:9b:
7c:1c:e0:6e:ff:aa:53:15:b4:29:2f:be:d8:79:80:
23:24:a1:93:bd:99:c9:ed:5e:45:ff:15:d2:ca:ff:
c1:be:25:3e:ff:2a:02:3f:49:b3:f1:2e:3d:9f:1c:
20:90:77:e6:88:1f:25:55:ae:ae:f5:67:e4:17:ae:
5f:fc:f6:a5:7e:16:30:91:af:e6:10:e8:01:ad:a4:
b0:2b:83:b1:51:5b:21:fe:da:87:f6:91:e4:a8:bb:
94:61:58:02:26:08:d3:34:4d:39:e0:90:83:51:9e:
5b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9D:04:6B:C3:00:B6:6D:2F:90:38:B6:14:6D:E5:A3:D5:FA:71:12
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/OJ0Ea8MAtm0vkDi2FG3lo9X6cRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.233.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:60:25:eb:a8:8e:77:d6:5d:78:33:64:59:e3:71:b7:ff:0c:
c9:06:2b:3e:35:98:92:76:bf:6c:a1:ef:04:a1:bf:7c:61:1f:
e8:5f:a7:9b:a6:ad:48:e2:af:fd:cd:06:73:8c:f4:f1:9d:15:
50:1f:3d:19:31:03:67:51:41:fc:1e:1c:03:e0:88:87:b3:8b:
76:21:49:f3:3b:79:b2:4b:00:4f:a5:3d:b1:89:87:fe:4f:9f:
26:1a:87:81:91:ed:53:94:95:d6:17:c8:0c:65:6e:fb:e5:74:
73:7f:52:d4:e5:fe:b9:62:92:b1:4d:c2:f2:c3:36:93:c3:dd:
60:5f:16:92:d4:fa:dc:8e:ad:c6:a8:2f:ed:c0:9d:49:bb:4f:
64:ee:5c:b7:44:b3:d2:90:bf:eb:f1:1f:5e:00:52:a2:f8:11:
5c:8b:30:cf:8b:71:fd:30:bb:a0:c1:14:b1:74:b6:87:58:60:
58:fc:31:02:47:f9:2e:93:21:12:68:1e:9e:ff:09:50:b9:ac:
4c:c3:9e:6c:88:0f:bb:42:18:b4:8b:ec:bd:e0:15:40:79:f6:
a0:04:2c:5a:6b:f5:be:e8:61:fc:f1:af:f0:41:f6:5a:91:c5:
98:93:ba:7e:58:f5:98:7d:00:3c:93:06:fe:92:fe:1f:29:80:
c2:21:c3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:37:01 2025 by rpki-client on console.sobornost.net