Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/28FsE4zSktAT8vcRQQhny_ZfheI.roa
File: 28FsE4zSktAT8vcRQQhny_ZfheI.roa (raw, json)
Hash identifier: O/hxzmE4vnaIK81xfT+BCGUpqgMXVyVf65y8a6p2pl4=
Subject key identifier: DB:C1:6C:13:8C:D2:92:D0:13:F2:F7:11:41:08:67:CB:F6:5F:85:E2
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 0195E959C74BF9A557EA8241B60F5DDC889D
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/28FsE4zSktAT8vcRQQhny_ZfheI.roa
Signing time: Sun 30 Mar 2025 23:18:49 +0000
ROA not before: Sun 30 Mar 2025 23:18:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 79.110.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e9:59:c7:4b:f9:a5:57:ea:82:41:b6:0f:5d:dc:88:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Mar 30 23:18:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dbc16c138cd292d013f2f711410867cbf65f85e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:db:0f:93:10:61:3a:5d:ae:96:f8:69:9a:b6:
73:31:d2:12:fa:f4:06:41:40:b8:71:a6:bd:50:e1:
57:d0:45:07:c4:39:fc:7f:dd:11:1d:73:8f:cf:e7:
2a:de:e2:6e:cc:ff:a0:c6:61:a6:13:9e:ee:73:32:
6b:6f:51:cd:35:b2:ed:87:c1:a3:e8:c6:82:8b:4a:
8f:4c:24:c6:d2:9b:c1:49:3b:8a:b4:3e:a9:80:72:
92:9e:95:ad:d3:c2:22:43:0d:e8:9d:1d:e8:ab:9a:
62:07:52:42:48:13:de:98:34:b6:14:d5:85:83:04:
e9:10:a2:c3:14:01:7c:e5:b7:62:e8:13:40:5e:78:
76:78:79:3f:d1:70:6d:65:7f:ba:67:47:37:b3:34:
69:c1:79:01:5e:11:09:70:db:37:e7:3f:e2:07:4a:
3e:8c:82:af:e3:07:1d:e2:e0:bc:9d:fa:79:a1:f9:
44:39:ec:29:81:a0:fe:73:e1:18:b1:e0:de:f5:f7:
7d:fb:80:09:21:db:1c:fa:65:eb:44:4c:30:72:24:
b4:1d:9b:6a:47:79:17:71:12:38:b0:b0:8c:5e:7a:
03:e0:80:03:cd:fc:fb:57:86:9b:53:10:42:f1:8a:
b7:87:88:17:e8:c8:fa:bb:1f:c4:7f:cf:78:df:09:
b7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C1:6C:13:8C:D2:92:D0:13:F2:F7:11:41:08:67:CB:F6:5F:85:E2
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/28FsE4zSktAT8vcRQQhny_ZfheI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.167.0/24
Signature Algorithm: sha256WithRSAEncryption
12:ed:9d:1e:bc:8b:db:36:ac:a2:e9:70:ac:a6:26:6b:aa:a4:
fb:d4:1b:44:d3:fb:1d:96:97:1c:be:10:6a:b9:91:60:0c:e3:
2d:88:35:50:d8:9a:38:f1:a9:f1:72:f2:50:93:1f:ec:ee:a6:
b7:3f:b0:eb:eb:07:14:01:47:f5:aa:1a:6f:fb:aa:17:94:6e:
0d:51:7c:df:ca:98:4d:6a:91:40:5b:6d:64:3d:26:fd:8c:21:
bd:07:16:14:f4:bf:53:18:1e:24:23:81:eb:3c:c1:8e:b7:f3:
08:d7:20:ea:87:fa:f5:f5:19:bb:1d:eb:26:78:25:95:6e:c0:
42:b1:f6:d5:a4:1f:27:28:10:b0:08:f8:5b:5b:c9:fa:6e:32:
d8:1e:02:2b:a4:96:1e:c0:ca:f0:9b:dc:e5:d3:c4:fc:1b:cb:
24:c3:35:50:8c:dc:27:17:25:73:e1:e7:5e:9c:38:d6:c3:d2:
63:1c:87:2a:4f:e0:3f:de:df:52:23:9f:3e:34:05:bf:d5:08:
e5:64:de:6c:72:a7:3c:76:ec:db:cb:3d:70:51:38:18:a4:a2:
d4:b7:2d:ef:18:41:6b:21:53:40:d1:95:fc:b0:5a:3a:45:6d:
85:71:4b:3b:59:2d:3b:77:f8:fd:61:f7:18:5d:ab:08:3e:8a:
c2:f2:c5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 00:24:37 2025 by rpki-client on console.sobornost.net