Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/i61dhTu6F78c-9gxDkt4W06e5Rk.roa
File: i61dhTu6F78c-9gxDkt4W06e5Rk.roa (raw, json)
Hash identifier: FHxsYN6tObg+YcrbZFah6jXhvNp8xOvVAZDMRAF8JH4=
Subject key identifier: 8B:AD:5D:85:3B:BA:17:BF:1C:FB:D8:31:0E:4B:78:5B:4E:9E:E5:19
Certificate issuer: /CN=d4ce2bf0001cd430e9277fb00ed1abe51c0b5c7c
Certificate serial: 0194F917EEC9876143E0E563023C072796DD
Authority key identifier: D4:CE:2B:F0:00:1C:D4:30:E9:27:7F:B0:0E:D1:AB:E5:1C:0B:5C:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/i61dhTu6F78c-9gxDkt4W06e5Rk.roa
Signing time: Wed 12 Feb 2025 07:38:02 +0000
ROA not before: Wed 12 Feb 2025 07:38:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210644
IP address blocks: 77.110.96.0/24 maxlen: 24
77.110.97.0/24 maxlen: 24
77.110.98.0/24 maxlen: 24
77.110.99.0/24 maxlen: 24
77.110.100.0/24 maxlen: 24
77.110.101.0/24 maxlen: 24
77.110.102.0/24 maxlen: 24
77.110.103.0/24 maxlen: 24
77.110.104.0/24 maxlen: 24
77.110.105.0/24 maxlen: 24
77.110.106.0/24 maxlen: 24
77.110.107.0/24 maxlen: 24
77.110.108.0/24 maxlen: 24
77.110.109.0/24 maxlen: 24
77.110.110.0/24 maxlen: 24
77.110.111.0/24 maxlen: 24
77.110.112.0/24 maxlen: 24
77.110.113.0/24 maxlen: 24
77.110.114.0/24 maxlen: 24
77.110.115.0/24 maxlen: 24
77.110.116.0/24 maxlen: 24
77.110.117.0/24 maxlen: 24
77.110.118.0/24 maxlen: 24
77.110.119.0/24 maxlen: 24
77.110.120.0/24 maxlen: 24
77.110.121.0/24 maxlen: 24
77.110.122.0/24 maxlen: 24
77.110.123.0/24 maxlen: 24
77.110.124.0/24 maxlen: 24
77.110.125.0/24 maxlen: 24
77.110.126.0/24 maxlen: 24
77.110.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f9:17:ee:c9:87:61:43:e0:e5:63:02:3c:07:27:96:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ce2bf0001cd430e9277fb00ed1abe51c0b5c7c
Validity
Not Before: Feb 12 07:38:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bad5d853bba17bf1cfbd8310e4b785b4e9ee519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:76:12:c6:20:4c:91:31:6d:91:81:3d:6c:6e:
07:ae:4c:34:3a:23:95:3e:86:6e:70:54:01:6d:0c:
57:8b:55:44:95:2b:81:c3:88:06:d7:0c:da:84:4e:
22:df:18:f9:dd:2f:cd:59:84:8e:23:8b:b5:72:18:
b3:57:4b:94:38:75:5a:bd:64:98:c9:36:a6:48:ee:
65:a4:05:48:d6:52:5b:67:0d:c2:0e:98:53:28:a1:
54:11:21:e2:9a:3c:82:55:54:aa:60:76:51:19:df:
d1:59:cc:5c:5a:1d:c1:00:0e:4c:25:db:cf:4e:01:
2b:24:e9:0c:89:90:a8:e0:36:fe:2b:48:a9:b4:fb:
e6:4a:6f:23:fe:b8:28:d5:50:84:27:eb:14:60:18:
05:27:db:1e:c6:f1:97:00:ba:b0:28:31:20:c5:0f:
65:99:11:ec:c7:da:26:b7:32:c0:49:56:c9:a3:04:
be:51:72:f0:5a:40:ef:30:bf:13:0a:1d:90:40:48:
7e:15:93:a5:a6:8a:d8:61:e8:46:85:2b:45:c3:a9:
8e:cc:8b:b8:f5:6d:f0:6a:c6:9a:2a:eb:11:42:5c:
46:8c:1c:88:cc:0b:04:c4:81:9e:8d:ba:80:43:22:
e6:f7:1f:38:78:dd:dd:4b:63:8a:09:53:59:9f:90:
c0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AD:5D:85:3B:BA:17:BF:1C:FB:D8:31:0E:4B:78:5B:4E:9E:E5:19
X509v3 Authority Key Identifier:
keyid:D4:CE:2B:F0:00:1C:D4:30:E9:27:7F:B0:0E:D1:AB:E5:1C:0B:5C:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/i61dhTu6F78c-9gxDkt4W06e5Rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ba0bd3-b365-4461-8ffa-1f5431e2a5af/1/1M4r8AAc1DDpJ3-wDtGr5RwLXHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.110.96.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:45:df:b4:be:04:10:64:7b:33:c0:b9:84:86:74:8e:e3:f6:
1d:37:ca:b9:03:00:7f:e4:b1:3b:12:79:50:ea:ca:2d:79:dd:
41:f8:e9:93:53:a7:d2:94:41:ca:88:62:cb:0e:85:72:04:b7:
2c:9a:49:eb:7d:e6:50:e3:4d:b6:0b:24:24:89:74:ba:df:78:
b7:da:28:3c:d2:dd:07:d3:33:e9:2b:85:68:ae:b7:86:8c:df:
39:e7:94:50:ff:71:60:e1:8d:0c:ba:e4:b3:b1:28:ea:7f:02:
77:f7:a6:98:7b:67:d8:67:6d:ac:98:9f:2e:d6:04:4d:b7:7e:
06:9a:e4:90:2b:ff:80:e0:79:66:e2:8d:f2:1c:38:85:99:7f:
a8:cc:15:ac:43:82:72:51:87:5c:cf:f1:9a:1a:3d:df:bf:0b:
91:4b:3f:7e:e6:56:b8:4d:98:9f:4b:1d:39:64:bb:92:f0:da:
5e:7a:cc:d9:a2:21:8d:02:85:3d:3f:f7:3c:a9:47:2f:ec:6f:
be:f6:f0:46:96:b0:20:28:9e:a3:b4:b0:0e:67:50:f0:02:df:
60:17:3b:09:7a:15:12:3e:6e:b9:e8:54:c8:b9:ea:9d:93:f3:
ef:99:46:e8:7e:80:5d:f4:bc:7d:a4:33:4b:16:c6:c9:3c:c6:
8b:a9:af:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:10:29 2025 by rpki-client