Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/RPR2kQqBNtzMWR4wB_2Pal_5Z-w.roa
File: RPR2kQqBNtzMWR4wB_2Pal_5Z-w.roa (raw, json)
Hash identifier: wHNM9r5ENnhwGo0SLn6Nen+8DL+v87FLZeDE8tVVlFU=
Subject key identifier: 44:F4:76:91:0A:81:36:DC:CC:59:1E:30:07:FD:8F:6A:5F:F9:67:EC
Certificate issuer: /CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Certificate serial: 01856ED4A0B5618E057E83449BD0500E4ADD
Authority key identifier: 0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/RPR2kQqBNtzMWR4wB_2Pal_5Z-w.roa
Signing time: Sun 01 Jan 2023 19:35:06 +0000
ROA not before: Sun 01 Jan 2023 19:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16003
IP address blocks: 77.83.56.0/22 maxlen: 24
2a09:7380::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a0:b5:61:8e:05:7e:83:44:9b:d0:50:0e:4a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Validity
Not Before: Jan 1 19:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44f476910a8136dccc591e3007fd8f6a5ff967ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:59:f9:85:77:89:24:ea:fd:29:9e:6f:1f:d8:
62:af:5e:b6:8b:b6:6b:ef:67:4a:fc:03:97:18:0e:
58:c5:dd:1f:d7:84:d5:ce:ea:9d:86:11:97:73:83:
83:49:fd:f8:45:4b:bc:e6:6e:c2:ea:24:72:aa:3c:
ac:89:43:47:a7:ad:9d:2c:6a:f7:2e:55:77:7b:f7:
10:95:12:59:5b:63:08:44:1a:49:75:91:31:79:7c:
8c:fb:a8:26:d0:47:db:22:6b:a5:3b:e9:7d:18:ed:
3b:c9:a8:f1:e4:f3:db:8e:72:8d:9a:06:1f:54:64:
84:c9:9e:e2:77:0e:4e:74:45:4b:b7:10:59:a7:5a:
bf:38:b6:4c:3c:5d:e7:c1:2f:57:2e:8e:41:10:b3:
66:7f:f9:e9:51:f7:b1:86:ff:05:dd:46:5b:f9:a9:
e2:12:79:cf:c2:ec:88:1e:6e:3d:1a:56:5e:40:32:
4c:a3:1e:88:15:3f:c5:9a:41:b8:c7:91:ab:a2:5a:
a7:c2:1d:e8:a3:e0:d7:22:81:62:18:6b:14:68:a4:
60:ea:92:87:2b:03:83:b4:bd:53:90:bf:c1:e0:d0:
43:be:00:4b:ee:58:48:d9:d7:65:a1:6c:fc:0a:58:
7c:dd:b9:fb:bf:0e:7f:27:4a:55:ce:57:6d:36:71:
c4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F4:76:91:0A:81:36:DC:CC:59:1E:30:07:FD:8F:6A:5F:F9:67:EC
X509v3 Authority Key Identifier:
keyid:0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/RPR2kQqBNtzMWR4wB_2Pal_5Z-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.56.0/22
IPv6:
2a09:7380::/29
Signature Algorithm: sha256WithRSAEncryption
11:d0:eb:93:3a:0e:7b:34:b5:db:ba:75:68:58:2f:ca:95:80:
f6:ef:9e:3e:b1:af:13:9d:d0:19:82:df:7c:63:da:66:da:06:
1f:83:6e:30:20:ab:bc:05:58:c8:1f:b1:a4:6a:09:92:76:b9:
63:1d:79:ba:eb:0a:45:a9:43:58:16:11:9d:22:ee:9f:62:f1:
0a:14:69:07:2f:eb:3c:27:c2:43:56:07:39:3c:8c:51:20:60:
dd:92:65:70:d2:75:29:7e:40:e4:ae:6c:f7:ad:97:d1:a0:63:
90:0e:aa:f3:2a:1c:5d:16:ec:40:9c:73:02:80:76:83:46:44:
27:2b:a9:98:b2:52:95:40:d9:2d:71:d7:d9:68:48:f5:ac:a8:
17:0f:60:0c:be:d6:e0:f3:0e:40:9f:13:39:4f:be:f3:d7:20:
d9:d7:9f:3c:ec:84:18:59:e1:8f:de:30:88:98:95:73:df:66:
1d:76:46:d4:3a:0e:cd:1b:38:4c:65:69:87:4e:d6:54:f2:31:
20:93:6c:9e:cc:fb:ef:c4:eb:9c:c9:15:44:c4:15:0b:f2:b9:
9e:5c:c3:98:48:87:f0:12:a8:7f:5e:e9:f4:ed:a6:3d:29:38:
9d:b8:0e:6c:b0:7c:68:56:fd:9c:df:70:30:e3:8e:9a:0f:b4:
9e:1a:62:8d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVu1KC1YY4FfoNEm9BQDkrdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMWZiNjM2MjhmZTNhMTEwNjUxODliZGNmMTM1N2ZiZmMw
NmRhZGUwHhcNMjMwMTAxMTkzNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGY0NzY5MTBhODEzNmRjY2M1OTFlMzAwN2ZkOGY2YTVmZjk2N2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1n5hXeJJOr9KZ5vH9hir162i7Zr
72dK/AOXGA5Yxd0f14TVzuqdhhGXc4ODSf34RUu85m7C6iRyqjysiUNHp62dLGr3
LlV3e/cQlRJZW2MIRBpJdZExeXyM+6gm0EfbImulO+l9GO07yajx5PPbjnKNmgYf
VGSEyZ7idw5OdEVLtxBZp1q/OLZMPF3nwS9XLo5BELNmf/npUfexhv8F3UZb+ani
EnnPwuyIHm49GlZeQDJMox6IFT/FmkG4x5Grolqnwh3oo+DXIoFiGGsUaKRg6pKH
KwODtL1TkL/B4NBDvgBL7lhI2ddloWz8Clh83bn7vw5/J0pVzldtNnHEcQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFET0dpEKgTbczFkeMAf9j2pf+WfsMB8GA1UdIwQY
MBaAFA4ftjYo/joRBlGJvc8TV/v8BtreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGgtMk5pai1PaEVHVVltOXp4TlgtX3dHMnQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8yMDdiNDAtNWZmZi00ZjQzLThiODIt
MTAzYjlmMzI3OTI0LzEvUlBSMmtRcUJOdHpNV1I0d0JfMlBhbF81Wi13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8yMDdiNDAtNWZmZi00ZjQzLThiODItMTAzYjlmMzI3OTI0
LzEvRGgtMk5pai1PaEVHVVltOXp4TlgtX3dHMnQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCTVM4MA0E
AgACMAcDBQMqCXOAMA0GCSqGSIb3DQEBCwUAA4IBAQAR0OuTOg57NLXbunVoWC/K
lYD2754+sa8TndAZgt98Y9pm2gYfg24wIKu8BVjIH7GkagmSdrljHXm66wpFqUNY
FhGdIu6fYvEKFGkHL+s8J8JDVgc5PIxRIGDdkmVw0nUpfkDkrmz3rZfRoGOQDqrz
KhxdFuxAnHMCgHaDRkQnK6mYslKVQNktcdfZaEj1rKgXD2AMvtbg8w5AnxM5T77z
1yDZ15887IQYWeGP3jCImJVz32YddkbUOg7NGzhMZWmHTtZU8jEgk2yezPvvxOuc
yRVExBUL8rmeXMOYSIfwEqh/Xun07aY9KTiduA5ssHxoVv2c33Aw446aD7SeGmKN
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:17 2025 by rpki-client