Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/drQvOj9TpOHRytlyOo6kxATgZOw.roa
File: drQvOj9TpOHRytlyOo6kxATgZOw.roa (raw, json)
Hash identifier: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=
Subject key identifier: 76:B4:2F:3A:3F:53:A4:E1:D1:CA:D9:72:3A:8E:A4:C4:04:E0:64:EC
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019426D99F3422A883434D7353109B4F5BDB
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/drQvOj9TpOHRytlyOo6kxATgZOw.roa
Signing time: Thu 02 Jan 2025 11:49:43 +0000
ROA not before: Thu 02 Jan 2025 11:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50741
IP address blocks: 79.173.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:9f:34:22:a8:83:43:4d:73:53:10:9b:4f:5b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jan 2 11:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76b42f3a3f53a4e1d1cad9723a8ea4c404e064ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:64:03:89:31:16:5d:bd:ec:61:25:f8:9b:47:
be:61:14:5b:1c:a5:e7:6c:eb:83:db:7d:e1:36:a2:
72:4a:a3:5a:5e:df:5b:7c:3f:49:a1:27:38:85:d8:
c5:10:d4:de:05:46:04:97:0d:fd:ea:f6:69:da:a6:
c5:ac:4f:5d:4e:7d:d8:3a:91:1a:4b:f4:ce:f6:92:
89:69:2a:60:fc:51:c0:92:0a:a9:fa:97:01:c4:a9:
d2:a9:d0:2f:d9:59:15:e3:6d:6f:05:4e:8f:7c:d0:
0e:69:bd:29:89:44:a7:46:05:99:85:77:66:8e:ae:
21:60:ce:6a:f4:4e:0d:50:1b:40:36:cc:55:4b:6d:
b4:01:40:8a:d2:80:8d:60:f5:49:f7:f4:b2:9b:91:
4d:89:7c:2a:9b:23:a2:a8:26:24:91:60:d5:1e:b3:
9f:b7:39:03:12:d0:ab:d1:2b:69:1a:6d:d8:08:4d:
b3:ff:90:1c:f2:07:93:60:35:11:ec:11:2c:5f:c6:
e7:7f:e8:87:bd:bb:1d:e6:8c:37:23:4a:82:d4:b8:
c2:16:cb:d0:82:5d:c9:5f:86:c7:7d:e4:ee:f0:15:
a3:03:30:b4:c7:04:4f:51:82:06:af:0e:34:14:34:
d0:f6:2e:a7:26:7e:d5:db:41:01:ad:0f:68:f4:e2:
dd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B4:2F:3A:3F:53:A4:E1:D1:CA:D9:72:3A:8E:A4:C4:04:E0:64:EC
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/drQvOj9TpOHRytlyOo6kxATgZOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.173.79.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:92:86:a4:fc:a8:2e:40:9d:16:b5:71:08:a0:8b:e9:f0:e4:
a9:31:e4:27:ea:c2:c7:a6:ee:f9:10:6b:3a:3a:ec:76:fa:16:
64:b1:d1:11:0d:52:78:29:88:77:22:4d:24:a8:e9:db:f9:69:
00:77:05:7c:11:6f:a8:b6:5b:24:f0:69:eb:b2:60:1f:38:cb:
90:df:50:e0:61:3c:1a:a4:0b:34:72:80:e0:0a:b5:7b:f8:ae:
6b:20:bd:4c:be:b1:38:e9:13:f1:4e:96:76:97:c5:6c:6c:68:
9e:f8:7c:dd:ee:67:ce:ba:82:62:c5:95:c2:e4:86:0e:55:ce:
f9:c0:6e:a6:bc:2e:2a:3f:41:e3:e3:46:17:01:9e:47:76:e6:
a4:e2:b7:f3:31:e8:fb:97:03:29:2e:75:69:2d:d8:c0:08:16:
ae:5b:39:7d:d8:52:04:2b:9e:d2:2a:7e:f3:8b:76:e8:7d:56:
be:81:97:0c:58:a7:c3:a2:df:7e:e7:c0:0b:1d:50:7c:3c:1b:
f8:24:19:c3:50:16:0c:11:a8:17:ca:e8:a2:f5:8f:e9:ce:f7:
a6:16:31:7b:df:ed:0b:f9:f4:17:09:8a:ca:15:61:3b:8e:fc:
45:c7:db:b8:91:8a:c3:0a:c3:04:00:0c:43:e3:db:f0:dc:da:
b5:d2:7a:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2Z80IqiDQ01zUxCbT1vbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx
Y2YxMTMwHhcNMjUwMTAyMTE0OTQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmI0MmYzYTNmNTNhNGUxZDFjYWQ5NzIzYThlYTRjNDA0ZTA2NGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGQDiTEWXb3sYSX4m0e+YRRbHKXn
bOuD233hNqJySqNaXt9bfD9JoSc4hdjFENTeBUYElw396vZp2qbFrE9dTn3YOpEa
S/TO9pKJaSpg/FHAkgqp+pcBxKnSqdAv2VkV421vBU6PfNAOab0piUSnRgWZhXdm
jq4hYM5q9E4NUBtANsxVS220AUCK0oCNYPVJ9/Sym5FNiXwqmyOiqCYkkWDVHrOf
tzkDEtCr0StpGm3YCE2z/5Ac8geTYDUR7BEsX8bnf+iHvbsd5ow3I0qC1LjCFsvQ
gl3JX4bHfeTu8BWjAzC0xwRPUYIGrw40FDTQ9i6nJn7V20EBrQ9o9OLd/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHa0Lzo/U6Th0crZcjqOpMQE4GTsMB8GA1UdIwQY
MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt
NDUwZmUzMzU5NWQxLzEvZHJRdk9qOVRwT0hSeXRseU9vNmt4QVRnWk93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx
LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT61PMA0G
CSqGSIb3DQEBCwUAA4IBAQBOkoak/KguQJ0WtXEIoIvp8OSpMeQn6sLHpu75EGs6
Oux2+hZksdERDVJ4KYh3Ik0kqOnb+WkAdwV8EW+otlsk8GnrsmAfOMuQ31DgYTwa
pAs0coDgCrV7+K5rIL1MvrE46RPxTpZ2l8VsbGie+Hzd7mfOuoJixZXC5IYOVc75
wG6mvC4qP0Hj40YXAZ5Hduak4rfzMej7lwMpLnVpLdjACBauWzl92FIEK57SKn7z
i3bofVa+gZcMWKfDot9+58ALHVB8PBv4JBnDUBYMEagXyuii9Y/pzvemFjF73+0L
+fQXCYrKFWE7jvxFx9u4kYrDCsMEAAxD49vw3Nq10nqc
-----END CERTIFICATE-----
Generated at Tue Apr 29 01:18:13 2025 by rpki-client