Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/HIqyL1_xN65PGGh2pYvXxB9JRnY.roa
File: HIqyL1_xN65PGGh2pYvXxB9JRnY.roa (raw, json)
Hash identifier: WSdWXpJpM+IApu/ksgC0/SIwWBLtodEczT76Ij0oaDM=
Subject key identifier: 1C:8A:B2:2F:5F:F1:37:AE:4F:18:68:76:A5:8B:D7:C4:1F:49:46:76
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 019421B1D67D0C8377D23CC31CF644971CB5
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/HIqyL1_xN65PGGh2pYvXxB9JRnY.roa
Signing time: Wed 01 Jan 2025 11:48:10 +0000
ROA not before: Wed 01 Jan 2025 11:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210342
IP address blocks: 79.133.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d6:7d:0c:83:77:d2:3c:c3:1c:f6:44:97:1c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 11:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c8ab22f5ff137ae4f186876a58bd7c41f494676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:83:4b:53:36:61:8a:48:9f:16:04:27:d7:
f5:5e:44:48:d4:9f:72:ca:04:3a:41:8f:47:e4:4e:
f3:45:dc:16:8f:6f:1c:34:aa:f1:0d:25:7b:fd:fa:
f7:65:b3:c6:72:0a:b3:57:b5:27:9e:3a:fe:6e:20:
c0:98:6a:a5:97:c7:4c:e6:f9:4e:ae:05:21:bc:5e:
39:1e:45:23:56:b0:43:90:7d:de:b3:6c:0a:69:e3:
e3:fe:00:69:c2:43:df:b2:99:0b:e8:fe:4c:1f:80:
84:82:8b:2b:76:7e:72:02:aa:4e:66:a4:33:73:42:
5b:5d:a1:fb:ac:95:fc:43:7f:5c:01:05:c1:de:34:
03:00:31:88:35:3a:3a:90:56:43:55:7b:ae:a1:67:
b8:9d:c3:a9:1b:bb:cc:5a:89:f7:02:23:38:a0:2a:
37:72:86:5f:3f:68:50:de:01:20:44:4f:7e:af:1c:
a3:cf:ae:b1:61:35:a1:f8:c9:c7:6f:93:92:cf:b1:
d9:40:a6:bc:18:7b:79:99:95:a0:95:0c:8a:a7:8a:
07:07:49:28:b7:11:8b:d6:07:38:38:f1:cc:70:0c:
fc:45:05:85:3a:df:36:78:65:00:13:cf:09:42:78:
98:24:00:52:26:ab:df:0f:89:1f:88:9b:2b:91:45:
68:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:8A:B2:2F:5F:F1:37:AE:4F:18:68:76:A5:8B:D7:C4:1F:49:46:76
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/HIqyL1_xN65PGGh2pYvXxB9JRnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.99.0/24
Signature Algorithm: sha256WithRSAEncryption
85:f6:03:00:b2:db:71:ec:3c:03:70:47:15:29:7a:ac:37:02:
9f:65:2d:ac:da:19:ee:53:7a:e2:de:49:f7:17:2b:06:2b:01:
50:97:50:ea:f7:db:15:4f:d5:78:fe:bf:60:bb:3e:bb:85:d9:
2e:f2:18:1e:81:70:92:61:7f:90:f9:90:51:09:6e:9c:9b:0f:
a4:bc:1a:c8:49:eb:89:46:ab:e5:14:b4:fd:c4:11:72:0f:c4:
9d:0e:4d:78:a5:6c:e8:76:ae:d6:f0:df:30:cc:28:50:f5:5d:
8b:63:c0:88:31:c1:db:69:61:6a:0b:72:14:35:b5:a9:17:5e:
cb:26:61:b1:65:8b:95:6b:b3:9b:b3:57:56:df:28:24:97:b5:
af:5b:55:d8:8a:4a:92:eb:80:05:6e:ae:82:3a:56:46:20:8a:
50:a1:3c:f2:ee:3a:be:ae:31:ba:36:ce:f0:1c:f6:81:cf:f9:
cf:e2:d2:67:65:ec:cd:f6:7f:1a:bd:a3:cd:36:61:bf:4a:7a:
1f:85:d6:74:6f:9b:17:c7:4e:4d:11:fd:e2:ce:ce:11:ee:13:
8e:c1:25:4a:58:27:1f:30:7a:b1:5a:08:30:9b:08:8c:72:a6:
99:2d:a7:65:65:57:84:ca:b2:18:12:25:15:99:90:18:c2:33:
c0:41:c2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:56:42 2025 by rpki-client