Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/5AFCqiH4hzK6LVYwariXBC-AfDY.roa
File: 5AFCqiH4hzK6LVYwariXBC-AfDY.roa (raw, json)
Hash identifier: rxE/uBAf9DiZEQXzDdVAnTZiAZGG6+o0wkaEwYg/JVw=
Subject key identifier: E4:01:42:AA:21:F8:87:32:BA:2D:56:30:6A:B8:97:04:2F:80:7C:36
Certificate issuer: /CN=79cf8b7942917e960f17297dc61747bcb0768e11
Certificate serial: 019425FC9572B89C30AA5A7010C94354F33F
Authority key identifier: 79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/5AFCqiH4hzK6LVYwariXBC-AfDY.roa
Signing time: Thu 02 Jan 2025 07:48:17 +0000
ROA not before: Thu 02 Jan 2025 07:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50673
IP address blocks: 217.18.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:95:72:b8:9c:30:aa:5a:70:10:c9:43:54:f3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79cf8b7942917e960f17297dc61747bcb0768e11
Validity
Not Before: Jan 2 07:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e40142aa21f88732ba2d56306ab897042f807c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:ad:35:ae:81:f8:a1:41:bb:6d:a3:8f:bd:
0d:70:c6:7f:63:c9:65:90:27:68:7f:0d:1d:7f:7b:
7d:15:a3:fc:9d:3d:aa:c4:66:ac:0b:7b:77:91:7c:
b2:8e:29:07:a0:8b:46:a6:c0:f4:ad:93:7d:b1:20:
e4:4d:30:fe:44:4b:58:7d:8f:65:bc:02:76:1e:58:
92:7b:05:bc:06:88:6e:9d:88:c4:53:47:24:02:af:
c7:ed:80:d2:77:6e:1e:03:b6:60:fe:37:47:01:49:
11:37:a7:79:68:cd:4d:fb:b4:4c:4d:83:2c:19:23:
81:c5:05:a2:82:30:f9:d3:10:1b:2b:1a:68:07:40:
3e:ae:e7:40:75:15:12:bf:1d:e0:f9:e2:24:d0:13:
08:b6:25:3f:df:b3:9a:d7:29:6b:ea:d2:1e:5c:52:
05:77:09:fc:ca:db:98:f5:00:9a:6c:87:c2:fe:d8:
26:d0:79:e2:16:75:24:cf:82:7d:bb:75:c5:79:fc:
d4:14:cf:1e:b8:77:a1:8f:d0:d6:21:3a:4d:ed:53:
ea:b0:70:9d:02:64:ab:c4:8d:a4:25:b3:c6:dd:16:
02:91:10:85:86:ff:4c:ae:0c:4e:a5:db:22:32:ed:
0a:d3:69:e1:53:92:c8:e7:ae:41:b2:8f:e7:0b:3e:
d4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:01:42:AA:21:F8:87:32:BA:2D:56:30:6A:B8:97:04:2F:80:7C:36
X509v3 Authority Key Identifier:
keyid:79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/5AFCqiH4hzK6LVYwariXBC-AfDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/ec-LeUKRfpYPFyl9xhdHvLB2jhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.90.0/24
Signature Algorithm: sha256WithRSAEncryption
98:9e:6e:43:b0:a3:27:74:10:b5:7f:48:af:b1:4e:60:d5:97:
ac:a7:ae:04:b6:44:51:a2:00:75:61:c8:61:34:f8:64:cb:3f:
dd:e0:cc:45:89:5d:70:bc:92:3a:5d:57:df:74:3a:dc:b2:27:
32:e7:37:08:a9:50:d1:a2:21:d2:46:03:44:39:d1:59:88:52:
77:3a:63:4d:37:a1:7a:57:7a:b8:f1:2d:b3:00:d1:58:a1:1a:
f3:38:be:3c:4c:cf:dd:b8:ca:89:5d:ec:f3:c2:b8:a4:d1:d3:
bf:c4:15:0a:79:df:bd:58:3a:7b:d0:94:8d:4e:70:4a:48:15:
7d:3a:b6:c4:3a:0f:79:d7:2a:52:39:d7:97:28:cd:1f:00:04:
f5:7f:c2:c5:ed:3d:f5:3e:47:1b:1f:b4:f3:80:4e:7b:eb:b0:
49:3d:e8:c0:73:12:a3:4f:b0:96:07:d1:3c:60:f1:39:d4:08:
0d:a4:b8:ee:26:8c:ee:96:b3:b8:fb:e9:12:5a:e5:38:b1:bd:
01:84:1d:db:c1:e3:67:93:09:ba:8e:db:a1:e4:15:73:95:5a:
41:4a:8a:99:0e:7a:8a:86:09:43:cf:60:c8:12:25:50:03:3d:
21:08:a9:90:ba:6e:f0:c9:46:6c:f9:d4:d9:c2:8c:25:af:d0:
98:ea:eb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:55:43 2025 by rpki-client on console.sobornost.net