Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pQWjjtsnL3pSc-r1LKVX06iu580.roa
File: pQWjjtsnL3pSc-r1LKVX06iu580.roa (raw, json)
Hash identifier: 9dXCrwGGk1icu11dHkiGsugs45o5A07SrUWFvF/enBI=
Subject key identifier: A5:05:A3:8E:DB:27:2F:7A:52:73:EA:F5:2C:A5:57:D3:A8:AE:E7:CD
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FFDEAD4D51D5D0A44E91D5EF4FC38
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pQWjjtsnL3pSc-r1LKVX06iu580.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44486
IP address blocks: 77.90.3.0/24 maxlen: 24
77.90.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fd:ea:d4:d5:1d:5d:0a:44:e9:1d:5e:f4:fc:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a505a38edb272f7a5273eaf52ca557d3a8aee7cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:43:6c:c0:e8:de:16:de:f7:e5:30:12:57:
7e:94:54:2d:ea:d7:aa:e9:0c:45:19:11:3d:e4:c4:
4b:84:56:de:0d:e0:0e:ab:46:84:a2:3e:19:9f:fe:
dd:60:d1:50:39:fb:0c:8c:b8:2f:1c:2f:ed:6f:4e:
69:fa:8d:c6:61:3b:7c:11:ac:59:0d:44:54:b9:66:
ec:da:ec:db:81:cc:e4:b4:a8:de:60:8d:c2:26:be:
52:89:85:34:45:92:8a:a2:0c:be:14:22:2b:a4:6f:
ce:3b:db:29:8e:8a:55:b4:ab:01:bc:31:bf:da:b1:
56:55:38:78:34:ae:2b:21:a8:55:45:b9:80:7f:53:
45:7b:0a:ce:a7:7e:94:f8:d6:2b:09:37:63:fe:4e:
eb:14:8c:65:49:db:5b:43:60:f2:4b:2c:63:4e:d2:
4c:9d:27:65:79:fb:61:73:d2:e5:05:5b:6b:50:05:
99:45:35:c6:93:96:c8:0b:ce:a0:8a:d0:e5:3d:db:
1f:85:8c:7e:f0:b2:00:0b:e5:69:d2:b3:3a:9b:47:
42:e3:a2:81:3a:ab:7b:75:e3:00:c2:66:e2:99:7c:
7c:43:1f:7b:98:4b:31:e8:e2:32:c7:73:f4:9f:38:
82:14:c9:2d:a0:27:57:73:57:68:05:d9:34:9f:85:
9e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:05:A3:8E:DB:27:2F:7A:52:73:EA:F5:2C:A5:57:D3:A8:AE:E7:CD
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pQWjjtsnL3pSc-r1LKVX06iu580.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.3.0/24
77.90.28.0/24
Signature Algorithm: sha256WithRSAEncryption
eb:fc:09:d0:75:27:2a:99:08:02:c9:4a:9b:ec:6c:71:a7:f0:
b8:2b:a5:aa:e8:d9:1a:8d:a1:a6:4a:c0:7e:df:2a:59:67:d5:
c9:0c:8a:62:f2:e1:0c:70:1f:84:4b:d8:8f:ae:3b:18:88:39:
68:98:f9:b3:34:2f:04:88:44:bc:b4:83:67:ac:e6:31:06:c8:
5c:bf:0b:ec:03:16:69:46:3c:2b:8f:9a:0f:d0:72:64:09:ab:
5e:4e:e6:9f:dc:cc:47:2c:70:5d:45:42:36:e3:50:c3:5a:0f:
b4:7d:a4:e3:b6:08:4e:c3:00:20:5c:a8:0e:bd:94:46:7c:30:
e9:9f:03:ac:2a:98:0f:bb:e8:e5:44:a1:9c:3d:8b:e8:2e:38:
31:e1:b4:c7:90:c6:c8:45:98:64:48:89:ad:6e:6a:97:da:41:
b5:84:5e:0d:ef:31:5e:67:49:79:43:55:ab:df:9b:a2:3f:40:
95:4b:e9:81:30:8d:9a:43:28:64:80:94:b7:9f:59:3b:0f:72:
38:cb:9e:20:b1:30:6f:19:95:01:d6:98:f4:f5:b0:f2:21:fe:
d6:0b:33:48:e1:0f:18:7b:06:99:12:a6:01:e1:52:a8:10:e9:
a8:fb:7c:4e:9b:1a:ed:b7:f9:9c:fe:68:cd:fe:9f:ca:da:02:
53:3d:9f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:55 2025 by rpki-client