Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/2sRit1HkpegSVZ93lQZh_r4sGH8.roa
File: 2sRit1HkpegSVZ93lQZh_r4sGH8.roa (raw, json)
Hash identifier: WjR0xWj31dChbabct4M4jjr+gsq2p4cJ6G9KZptb3BE=
Subject key identifier: DA:C4:62:B7:51:E4:A5:E8:12:55:9F:77:95:06:61:FE:BE:2C:18:7F
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 01942143BA3493DF066B2FFE9C1152C00BA7
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/2sRit1HkpegSVZ93lQZh_r4sGH8.roa
Signing time: Wed 01 Jan 2025 09:47:54 +0000
ROA not before: Wed 01 Jan 2025 09:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 32787
IP address blocks: 77.232.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ba:34:93:df:06:6b:2f:fe:9c:11:52:c0:0b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Jan 1 09:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dac462b751e4a5e812559f77950661febe2c187f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:9a:af:68:8c:ba:cb:3f:e3:c5:8e:d3:65:
8d:a9:33:eb:14:18:c3:b0:0d:cb:af:ee:3c:3b:dd:
5e:02:44:b5:a4:d1:94:ff:13:85:80:99:9e:f7:1a:
0a:19:c9:5a:f3:3c:52:13:a4:1c:0e:b5:62:3b:4c:
77:74:89:bd:37:07:4d:db:04:d4:5f:30:32:db:49:
40:21:ad:82:9b:ab:98:fb:ee:62:75:18:b4:a9:29:
ad:b1:8c:57:57:a0:fa:60:52:02:f4:90:cf:fc:92:
9d:75:97:07:da:a8:e0:c4:11:df:06:09:46:ac:9e:
ad:a9:28:3a:d2:c8:ed:a8:1f:7f:ea:ce:24:20:46:
55:56:47:39:55:55:31:88:6f:9d:4c:38:05:fe:ff:
05:32:45:e5:10:16:97:41:05:31:11:80:e1:bf:de:
a2:3b:e8:66:af:a7:21:2c:63:b6:73:40:7c:e4:2c:
4a:59:ac:54:1f:9a:1c:9e:30:1a:08:82:10:65:6b:
15:53:ff:0d:63:b7:8d:e5:9d:9a:69:d4:b9:c8:20:
7c:ea:ff:d4:b1:b4:1c:fc:69:e7:1f:dc:60:0c:eb:
b1:ec:54:9c:43:ab:8e:b9:0e:83:75:2b:4b:1a:13:
fb:b1:2b:29:dd:5f:50:66:3b:fc:17:18:44:bb:05:
64:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C4:62:B7:51:E4:A5:E8:12:55:9F:77:95:06:61:FE:BE:2C:18:7F
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/2sRit1HkpegSVZ93lQZh_r4sGH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.97.0/24
Signature Algorithm: sha256WithRSAEncryption
10:49:56:00:9c:e5:97:04:2a:e3:19:8f:4e:a4:2e:3e:85:1e:
28:3f:75:31:4d:60:27:4a:0d:85:11:c2:c5:78:e7:eb:22:49:
2c:c5:da:28:c8:14:7b:c7:98:6e:22:87:48:f2:75:39:30:a9:
c8:ae:ec:35:8b:a8:06:56:27:46:94:b0:a4:c7:1b:fb:96:12:
11:9a:76:94:1e:8d:d3:ce:29:67:b0:b0:ed:82:33:d3:90:2e:
33:d0:10:b0:73:97:41:a3:d2:83:f8:aa:80:54:1a:df:a8:85:
8c:4b:4a:15:c8:6f:75:cb:56:29:3a:91:81:02:6c:a2:35:e6:
fb:de:51:df:b2:88:63:60:4f:9b:a0:fd:89:d8:e3:46:35:6c:
72:49:53:d9:76:a5:ef:17:79:99:44:0b:21:18:92:25:5a:be:
6f:8e:56:ac:ed:08:81:2f:e4:89:79:c3:76:08:ee:89:e0:69:
22:3d:2b:6c:e4:33:9d:40:b5:b4:ea:0d:de:f8:89:d8:66:62:
26:37:cc:5c:ad:ad:95:2f:6e:41:f7:76:78:13:67:e2:89:17:
d2:9a:e1:82:fa:1e:b1:2d:f6:56:e3:5a:f2:bc:23:d8:6e:01:
e8:84:33:f6:80:09:4c:59:13:2d:d0:6c:c0:0e:c5:1d:42:dd:
e4:ee:84:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:16:51 2025 by rpki-client