Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/joSnam83DKEXnWS1_707hCafnZg.roa
File: joSnam83DKEXnWS1_707hCafnZg.roa (raw, json)
Hash identifier: QW7vVA1Gg6RFx9oOC/A/sQFlbcPMUsjhj/dyb2rVtLE=
Subject key identifier: 8E:84:A7:6A:6F:37:0C:A1:17:9D:64:B5:FF:BD:3B:84:26:9F:9D:98
Certificate issuer: /CN=41467c769bf66ada7d5780a69dce1371be9849de
Certificate serial: 36068B2C
Authority key identifier: 41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/joSnam83DKEXnWS1_707hCafnZg.roa
Signing time: Thu 21 Apr 2022 03:46:47 +0000
ROA not before: Thu 21 Apr 2022 03:46:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42031
IP address blocks: 77.105.132.0/24 maxlen: 24
77.105.131.0/24 maxlen: 24
77.105.130.0/24 maxlen: 24
77.105.129.0/24 maxlen: 24
77.105.128.0/24 maxlen: 24
77.105.128.0/20 maxlen: 20
77.105.137.0/24 maxlen: 24
77.105.136.0/24 maxlen: 24
77.105.135.0/24 maxlen: 24
77.105.134.0/24 maxlen: 24
77.105.133.0/24 maxlen: 24
77.105.144.0/24 maxlen: 24
77.105.143.0/24 maxlen: 24
77.105.146.0/24 maxlen: 24
77.105.152.0/23 maxlen: 23
77.105.151.0/24 maxlen: 24
77.105.147.0/24 maxlen: 24
77.105.159.0/24 maxlen: 24
77.105.158.0/24 maxlen: 24
77.105.157.0/24 maxlen: 24
77.105.156.0/24 maxlen: 24
77.105.154.0/23 maxlen: 23
77.105.172.0/22 maxlen: 22
77.105.168.0/21 maxlen: 21
77.105.176.0/21 maxlen: 21
77.105.184.0/22 maxlen: 22
185.225.202.0/23 maxlen: 23
185.225.200.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 906398508 (0x36068b2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41467c769bf66ada7d5780a69dce1371be9849de
Validity
Not Before: Apr 21 03:46:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e84a76a6f370ca1179d64b5ffbd3b84269f9d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4b:e6:f0:77:0f:4a:b9:77:72:e9:a2:29:70:
47:47:d6:43:a5:aa:36:d7:e5:a9:1d:45:43:15:9c:
3d:44:90:17:fa:f6:3c:be:3a:0f:ea:44:36:b3:a5:
6c:04:9a:84:a1:dc:53:c1:b6:b2:55:ca:6b:ae:15:
31:62:5d:b7:57:fd:3d:d3:ad:14:8c:a4:42:38:39:
d2:4f:4c:50:97:b6:a1:2f:00:52:c3:79:45:55:3a:
15:9a:40:96:d9:43:4e:ff:ac:0d:3d:05:ae:99:7e:
94:19:3d:04:d5:b6:4b:d1:bd:96:b6:61:95:74:01:
0b:b1:98:51:84:c5:d6:0a:fc:6e:25:d6:ec:de:5d:
ca:2c:59:70:87:a7:ae:33:34:ae:bc:a7:72:9d:34:
b7:8a:c3:25:2d:86:bd:2c:a4:5b:cb:6d:8e:86:77:
80:90:35:2c:d1:b8:f6:7c:de:e0:ab:72:35:15:c2:
4c:5c:6a:95:23:e8:89:e1:84:11:4f:78:18:80:a5:
69:bd:65:d5:c6:4f:03:9d:5a:61:91:51:cc:c1:6f:
cf:0d:a0:11:61:e7:dc:b7:89:bd:a4:78:b5:8a:8d:
7d:5f:46:03:e5:43:41:16:f8:65:a9:a2:7b:38:ab:
8b:72:6c:67:33:2f:9a:3b:e4:50:ec:08:4f:e8:61:
57:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:84:A7:6A:6F:37:0C:A1:17:9D:64:B5:FF:BD:3B:84:26:9F:9D:98
X509v3 Authority Key Identifier:
keyid:41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/joSnam83DKEXnWS1_707hCafnZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.128.0-77.105.144.255
77.105.146.0/23
77.105.151.0-77.105.159.255
77.105.168.0-77.105.187.255
185.225.200.0/22
Signature Algorithm: sha256WithRSAEncryption
88:4f:4f:9f:42:4d:5e:b6:ee:84:43:94:be:01:d8:c6:e8:86:
fc:85:b7:78:72:61:9d:e1:d7:3f:78:0a:14:39:72:ae:d8:40:
e7:ff:c5:f5:57:97:9e:76:32:29:fe:97:47:83:b4:5a:eb:ec:
28:09:a9:1c:b3:76:84:a4:ba:65:55:56:2e:db:65:6c:4c:29:
f3:5f:16:96:6b:89:25:5a:ec:60:a9:9e:db:aa:11:b6:a4:2f:
6c:83:57:4e:85:a7:31:11:26:e8:2c:22:39:a8:61:3d:83:a0:
19:77:52:7b:d3:26:bf:0e:3e:c2:a2:24:4b:f9:65:aa:48:76:
ec:ec:6f:1a:a2:73:6a:66:0d:36:79:2f:2b:50:f1:b3:36:1f:
fe:85:6e:72:4f:68:1a:ac:7b:9b:8e:7e:ff:d4:5f:c1:36:8a:
fa:c0:68:7b:98:5f:ce:20:5c:6c:17:6a:9b:9f:6b:48:3b:db:
7a:fb:bc:e9:6f:bc:75:d9:82:f4:a2:9f:80:34:4a:99:a3:b4:
8e:4b:12:ce:7e:ed:26:63:72:c2:b4:46:13:d9:66:b2:06:ae:
34:5d:7e:50:f8:a7:dd:2c:8d:6b:bb:81:35:c3:79:61:af:af:
f1:1c:e6:0e:23:62:01:df:5c:b0:1c:37:fb:43:5f:a9:d7:57:
b4:ac:85:b2
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgIENgaLLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTQ2N2M3NjliZjY2YWRhN2Q1NzgwYTY5ZGNlMTM3MWJlOTg0OWRlMB4XDTIyMDQy
MTAzNDY0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGU4NGE3NmE2ZjM3
MGNhMTE3OWQ2NGI1ZmZiZDNiODQyNjlmOWQ5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANlL5vB3D0q5d3LpoilwR0fWQ6WqNtflqR1FQxWcPUSQF/r2
PL46D+pENrOlbASahKHcU8G2slXKa64VMWJdt1f9PdOtFIykQjg50k9MUJe2oS8A
UsN5RVU6FZpAltlDTv+sDT0Frpl+lBk9BNW2S9G9lrZhlXQBC7GYUYTF1gr8biXW
7N5dyixZcIenrjM0rryncp00t4rDJS2GvSykW8ttjoZ3gJA1LNG49nze4KtyNRXC
TFxqlSPoieGEEU94GIClab1l1cZPA51aYZFRzMFvzw2gEWHn3LeJvaR4tYqNfV9G
A+VDQRb4Zamieziri3JsZzMvmjvkUOwIT+hhV6ECAwEAAaOCAjkwggI1MB0GA1Ud
DgQWBBSOhKdqbzcMoRedZLX/vTuEJp+dmDAfBgNVHSMEGDAWgBRBRnx2m/Zq2n1X
gKadzhNxvphJ3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FVWjhkcHYyYXRwOVY0Q21uYzRUY2I2WVNkNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvNWNmM2ZkLWU3N2QtNGM4Mi1iNGM3LTUyMTU1NmJlODEzYS8x
L2pvU25hbTgzREtFWG5XUzFfNzA3aENhZm5aZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
NWNmM2ZkLWU3N2QtNGM4Mi1iNGM3LTUyMTU1NmJlODEzYS8xL1FVWjhkcHYyYXRw
OVY0Q21uYzRUY2I2WVNkNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBP
BggrBgEFBQcBBwEB/wRAMD4wPAQCAAEwNjAMAwQHTWmAAwQATWmQAwQBTWmSMAwD
BABNaZcDBAVNaYAwDAMEA01pqAMEAk1puAMEArnhyDANBgkqhkiG9w0BAQsFAAOC
AQEAiE9Pn0JNXrbuhEOUvgHYxuiG/IW3eHJhneHXP3gKFDlyrthA5//F9VeXnnYy
Kf6XR4O0WuvsKAmpHLN2hKS6ZVVWLttlbEwp818WlmuJJVrsYKme26oRtqQvbINX
ToWnMREm6CwiOahhPYOgGXdSe9Mmvw4+wqIkS/llqkh27OxvGqJzamYNNnkvK1Dx
szYf/oVuck9oGqx7m45+/9RfwTaK+sBoe5hfziBcbBdqm59rSDvbevu86W+8ddmC
9KKfgDRKmaO0jksSzn7tJmNywrRGE9lmsgauNF1+UPin3SyNa7uBNcN5Ya+v8Rzm
DiNiAd9csBw3+0NfqddXtKyFsg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:30 2024 by rpki-client on console-ams.rpki-client.org