Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/OIP3rv3_pN_U9x_S7RXXHrc5yFk.roa
File: OIP3rv3_pN_U9x_S7RXXHrc5yFk.roa (raw, json)
Hash identifier: A/jnwqkDEg4aaIFobius+QOnIeZ0Qod9dnVUOMHVf8g=
Subject key identifier: 38:83:F7:AE:FD:FF:A4:DF:D4:F7:1F:D2:ED:15:D7:1E:B7:39:C8:59
Certificate issuer: /CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Certificate serial: 022CE3AA
Authority key identifier: 86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/OIP3rv3_pN_U9x_S7RXXHrc5yFk.roa
Signing time: Thu 07 Apr 2022 01:41:29 +0000
ROA not before: Thu 07 Apr 2022 01:41:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 77.72.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36496298 (0x22ce3aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Validity
Not Before: Apr 7 01:41:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3883f7aefdffa4dfd4f71fd2ed15d71eb739c859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:54:11:a4:49:43:07:e9:99:7d:de:af:65:f6:
b7:81:c8:c5:35:63:56:ed:6c:7f:13:ba:72:26:e9:
e2:4d:76:fc:0c:31:b3:64:82:93:7e:bc:c8:1c:f9:
9c:cc:32:94:7a:b3:71:51:0d:08:a9:ff:b0:2b:6f:
72:23:2e:b8:b8:2e:28:6c:db:ec:8d:22:b6:d0:13:
30:f9:b8:b2:0d:38:38:64:37:f7:88:0e:30:9c:be:
c7:ec:4c:f8:9d:99:15:23:74:b2:90:4e:68:d7:12:
4a:c4:72:ee:a3:d2:73:b5:7f:8c:f5:2f:64:73:b1:
7b:2e:88:b3:a5:7a:cd:ae:0e:e8:7f:8e:73:a3:40:
14:fe:c1:7f:fd:96:a7:02:17:e3:ad:dd:3f:eb:cf:
e4:32:27:b1:14:f7:07:ee:a8:f6:d1:d6:da:9b:3e:
97:6b:98:2c:25:47:13:27:ad:7f:b2:e6:c2:50:44:
3b:d6:3e:14:8b:3d:19:3a:01:a8:7c:09:e1:19:d6:
b6:52:9f:af:1a:ff:e8:e8:5f:6f:7f:cd:5b:c6:99:
0d:63:61:64:92:b3:7b:98:e9:80:dd:e7:c6:cf:1c:
eb:02:49:bd:a0:15:ae:73:8f:e6:65:28:56:5f:ae:
75:9a:20:98:ed:c3:98:3e:f7:26:21:af:d8:aa:40:
84:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:83:F7:AE:FD:FF:A4:DF:D4:F7:1F:D2:ED:15:D7:1E:B7:39:C8:59
X509v3 Authority Key Identifier:
keyid:86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/OIP3rv3_pN_U9x_S7RXXHrc5yFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/hm1qGIMFpNwYQBqiDUziZv0wR14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.80.0/24
Signature Algorithm: sha256WithRSAEncryption
67:b2:78:d6:1b:b0:c8:fb:53:34:52:93:2d:0d:47:14:d1:5f:
8c:75:84:7c:04:ce:aa:03:d3:f3:11:4e:60:6e:98:2d:76:18:
b3:c0:b3:12:fa:bd:10:23:69:5c:77:55:97:d4:98:8f:fa:cd:
9f:c0:14:f1:12:22:d5:9c:1b:45:23:76:46:3a:47:93:a5:5c:
6a:67:74:be:a4:eb:cd:47:6e:45:20:ac:6d:0c:47:2e:dc:a4:
dd:75:72:58:e9:d4:97:94:90:a5:ea:3f:47:f6:71:01:61:62:
76:1c:e1:66:6d:97:ce:d3:42:8f:e2:60:89:0a:8b:c5:be:09:
a9:b4:ec:3b:45:79:d8:00:bd:cd:ad:4a:d3:df:e1:57:be:c9:
14:66:0b:9e:fa:e1:f8:ef:c2:03:0a:bc:de:60:c5:fb:e1:5a:
1d:2f:22:87:8c:ad:55:91:8e:66:02:18:40:17:d4:89:2b:f9:
01:9d:4f:1f:75:20:a6:54:dd:27:53:8e:f5:35:44:0e:b2:ad:
6d:42:72:ba:94:30:3c:c3:bb:d2:57:4a:f0:23:5f:0e:2b:57:
5f:33:d8:aa:54:99:9c:5a:9f:6d:36:06:cc:45:db:5c:87:d2:
de:57:0e:41:58:08:da:75:f3:6b:ed:9c:9a:66:3e:c8:14:13:
e8:38:28:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:13:07 2025 by rpki-client