Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8j_HxlDEuj4FlBY_94OBx1sA3s0.roa
File: 8j_HxlDEuj4FlBY_94OBx1sA3s0.roa (raw, json)
Hash identifier: V95xbu45iRHjY2CFasWvBJqgEiyrzJtVkDPftXe8vNA=
Subject key identifier: F2:3F:C7:C6:50:C4:BA:3E:05:94:16:3F:F7:83:81:C7:5B:00:DE:CD
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422200FB1A2CFFA9C2612B878867915B4
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8j_HxlDEuj4FlBY_94OBx1sA3s0.roa
Signing time: Wed 01 Jan 2025 13:48:33 +0000
ROA not before: Wed 01 Jan 2025 13:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209824
IP address blocks: 77.90.1.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0f:b1:a2:cf:fa:9c:26:12:b8:78:86:79:15:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f23fc7c650c4ba3e0594163ff78381c75b00decd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f9:e6:7a:65:83:68:cb:7c:4c:da:06:01:9c:
86:bb:34:7e:29:8b:f4:ff:4f:bd:6c:fa:64:dd:b2:
5a:46:ba:22:b1:2b:62:70:43:42:34:1b:df:ca:21:
25:15:04:0f:c7:02:e0:76:8e:12:65:a9:2f:f2:dc:
60:cc:db:4e:a4:44:e8:ca:ed:4d:73:12:fc:42:ab:
24:ff:d3:68:42:5c:49:51:6c:b4:c3:1a:91:b9:d1:
66:d7:a8:e1:be:5b:9c:3e:77:35:09:c1:3b:02:b0:
7c:ba:fc:ee:33:1d:e3:bf:2f:9d:72:f9:74:23:58:
ac:39:1f:5c:ef:30:fa:97:b3:ff:33:7f:2b:42:ce:
8c:c6:10:43:b7:f2:3e:bf:3e:d1:50:1f:15:c3:60:
7d:a7:42:f2:78:b1:ba:b3:dd:22:5c:01:b8:de:b6:
48:64:46:99:29:d8:be:17:92:1e:3f:04:3a:9f:9b:
c4:f6:7b:87:15:c5:be:c6:79:c7:d4:62:5b:c3:c4:
6d:5a:f0:50:17:56:83:5f:0a:b9:dc:7b:d1:6a:21:
8f:1c:aa:02:83:9d:fb:10:cf:aa:c0:28:20:7f:c4:
1c:b0:3b:aa:8c:df:2c:e7:6c:39:e2:5d:eb:af:2c:
d4:92:0c:bf:59:39:60:e3:8c:16:6e:92:da:5b:69:
27:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3F:C7:C6:50:C4:BA:3E:05:94:16:3F:F7:83:81:C7:5B:00:DE:CD
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8j_HxlDEuj4FlBY_94OBx1sA3s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.1.0/24
77.90.29.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3f:e3:b3:38:d0:df:65:38:57:fb:3e:2c:0d:20:e0:fc:50:
c7:3d:04:63:90:f3:db:74:2e:78:54:da:fc:01:6d:53:69:ad:
c4:0a:28:3b:b4:28:85:5c:64:67:83:76:da:90:57:b4:d6:13:
cb:82:f9:a4:5c:90:c7:79:40:9c:57:bb:09:8c:3c:09:12:0d:
1d:6d:5e:0c:7a:d9:00:1d:44:f9:43:ab:90:6e:d8:1f:60:0b:
06:4b:6b:02:ed:2b:69:65:0e:4d:ca:24:07:9c:b5:05:bf:f4:
f5:43:25:f4:1f:99:2f:e9:b8:75:71:44:8e:66:59:1d:54:bd:
82:0a:1b:6e:97:14:76:5b:5c:24:0c:ab:ce:1b:f2:d4:23:30:
4c:97:8d:0d:1e:d5:41:48:a2:f4:be:b5:70:2b:7d:63:fc:cb:
ba:9c:9a:6c:db:25:b7:19:93:37:fd:f9:09:c3:cc:cf:5e:61:
68:c2:e4:85:49:6d:56:f5:5b:ff:49:45:21:92:47:4e:2e:f0:
31:6d:cc:d8:d7:04:0d:cd:d0:5e:9a:b9:c6:0e:65:b3:04:b9:
07:40:04:93:89:f3:43:9c:96:37:ea:47:e8:c5:47:26:12:b1:
de:61:45:11:17:06:01:fc:b9:3b:3d:67:51:d5:97:fe:55:fb:
3a:64:4a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:20 2025 by rpki-client