Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/tfcI96HYGRf5GQ2bB8COjBYLdUQ.roa
File: tfcI96HYGRf5GQ2bB8COjBYLdUQ.roa (raw, json)
Hash identifier: TrgrDqQXriqLm4qlMfISeHZWAMtYQBeQJnDLH6tGFGI=
Subject key identifier: B5:F7:08:F7:A1:D8:19:17:F9:19:0D:9B:07:C0:8E:8C:16:0B:75:44
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01942748427EFC02024E96150410E821F5A8
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/tfcI96HYGRf5GQ2bB8COjBYLdUQ.roa
Signing time: Thu 02 Jan 2025 13:50:34 +0000
ROA not before: Thu 02 Jan 2025 13:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207033
IP address blocks: 78.159.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:42:7e:fc:02:02:4e:96:15:04:10:e8:21:f5:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5f708f7a1d81917f9190d9b07c08e8c160b7544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d0:3b:78:04:54:19:ee:7b:d5:43:54:44:b7:
f4:b7:d1:d9:cc:b5:15:78:70:89:8d:17:86:de:fb:
9d:6e:d9:21:d8:08:25:fb:9d:ef:54:71:58:a4:f9:
1c:49:58:8d:69:14:80:c1:a7:60:83:8c:ed:b2:95:
c8:94:e0:26:46:c1:14:37:4b:d7:1e:0f:dd:42:59:
68:51:ab:64:a8:bc:b6:aa:b0:7a:34:48:23:29:65:
52:6d:f6:dc:dd:29:ca:5b:da:43:bb:9b:05:ce:9d:
82:2b:2f:e3:db:30:62:5b:aa:63:7c:a7:92:ec:7b:
f0:11:91:70:2a:64:c3:1e:2e:26:ec:51:5a:e9:b4:
8f:ef:34:da:83:9e:d5:b5:bc:00:ac:b0:4f:e8:e2:
b6:84:b7:be:59:1d:16:3e:87:92:7e:17:a5:ab:14:
ee:91:fa:8c:0c:7b:e7:b9:81:01:ab:fa:04:c9:43:
72:bf:06:06:9f:47:53:1a:3d:f6:91:4f:e2:48:8a:
74:23:80:a9:61:62:2d:c3:1e:d1:da:75:70:04:d1:
89:8c:15:c9:cc:78:43:76:96:87:0e:2e:c9:37:e3:
ef:c1:8f:30:e4:13:c9:09:6c:9a:5a:17:75:09:86:
1d:97:8e:b7:01:7a:e1:4c:fe:72:53:a0:19:56:e5:
38:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F7:08:F7:A1:D8:19:17:F9:19:0D:9B:07:C0:8E:8C:16:0B:75:44
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/tfcI96HYGRf5GQ2bB8COjBYLdUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.84.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:39:bc:2d:92:f2:e4:54:48:8d:e5:c4:9a:65:e9:a0:9b:73:
02:4f:23:a2:aa:0b:68:85:80:77:01:83:23:6f:73:78:ec:82:
03:8f:48:01:25:d5:51:04:58:cf:ed:e5:be:6f:8f:e9:aa:43:
95:a6:42:4e:e7:a3:00:19:f6:1b:de:08:1b:b3:70:e1:f7:2d:
88:77:09:de:47:ab:1a:c4:a9:f7:ff:f1:e2:d4:ea:39:9f:3b:
30:44:62:a4:c4:39:7a:ca:b3:17:ac:0e:24:76:a6:1f:07:54:
5c:c5:86:3a:68:55:93:ed:ef:a9:62:d8:09:42:8d:29:18:fb:
16:b1:34:0b:f4:7f:b2:13:21:2b:59:5c:ac:73:47:32:c8:e5:
5e:30:b5:7c:c0:15:fb:f3:a2:55:50:15:39:58:03:cd:e3:09:
0d:8d:10:9f:3a:14:4b:aa:be:64:cd:da:36:f2:88:6c:39:60:
f6:d0:d6:26:84:e8:50:2b:23:f3:9a:f8:ed:48:3b:e6:1b:1e:
f3:3d:53:40:a2:3c:35:6a:94:ac:92:de:f1:18:73:2d:4f:e6:
e9:43:72:d6:0a:dc:30:2a:ad:7d:09:95:17:ac:16:5c:a9:2f:
91:c1:c2:e6:b6:73:06:a2:76:9f:8e:ca:fb:ba:1f:43:01:ee:
3e:01:ff:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net