Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/hWcSbzfDGlM24LksvcC_koM4ym4.roa
File: hWcSbzfDGlM24LksvcC_koM4ym4.roa (raw, json)
Hash identifier: AfpY1SzkCCvNJjLxAsRIAvcZIWqg20zwrNG0Aj2T7ls=
Subject key identifier: 85:67:12:6F:37:C3:1A:53:36:E0:B9:2C:BD:C0:BF:92:83:38:CA:6E
Certificate issuer: /CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Certificate serial: 018CC86FF160CFD1B4E77D01714ED7454151
Authority key identifier: 0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/hWcSbzfDGlM24LksvcC_koM4ym4.roa
Signing time: Tue 02 Jan 2024 04:30:28 +0000
ROA not before: Tue 02 Jan 2024 04:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16003
IP address blocks: 77.83.56.0/22 maxlen: 24
2a09:7380::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:f1:60:cf:d1:b4:e7:7d:01:71:4e:d7:45:41:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Validity
Not Before: Jan 2 04:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8567126f37c31a5336e0b92cbdc0bf928338ca6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:96:a2:02:36:a6:12:83:6f:f3:30:39:05:8b:
05:b6:a3:5a:df:64:64:ce:9e:7f:fa:b4:ef:d1:2b:
c3:d7:46:df:07:17:29:06:e2:c5:24:5a:f4:c6:58:
e4:f7:77:c9:61:93:2b:9a:a1:51:32:69:44:8f:e9:
a2:b5:fd:32:db:20:06:33:ba:be:80:2b:fd:f2:70:
2d:2e:85:76:f8:33:4f:e6:db:97:62:40:ed:26:52:
94:29:36:69:b3:c1:e8:c2:43:c8:46:c1:94:00:cd:
7a:e1:05:69:84:3a:12:75:f9:05:7b:8d:0a:4a:33:
bb:06:1e:57:13:b1:54:c6:cf:2d:1c:97:c0:a6:c1:
15:57:c4:9e:41:14:c8:11:9c:ff:fd:c6:91:35:e2:
f1:cd:e5:d0:10:8a:0e:10:aa:cf:fc:1e:4a:d2:0d:
91:3f:73:3f:a6:9a:eb:c9:2f:07:e7:02:43:07:59:
c4:8c:2c:fa:91:1b:ce:38:61:7d:bd:f4:33:9c:83:
83:ac:1d:2e:28:2e:58:d4:19:d2:1d:bc:9e:28:8c:
26:aa:11:6c:4c:86:be:fc:22:40:78:ec:e9:d5:8d:
6f:bc:65:4a:da:d4:03:34:a1:86:b7:57:8e:ac:0f:
57:24:fd:aa:68:3f:5c:13:fc:da:2e:f8:86:cc:90:
ee:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:67:12:6F:37:C3:1A:53:36:E0:B9:2C:BD:C0:BF:92:83:38:CA:6E
X509v3 Authority Key Identifier:
keyid:0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/hWcSbzfDGlM24LksvcC_koM4ym4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.56.0/22
IPv6:
2a09:7380::/29
Signature Algorithm: sha256WithRSAEncryption
88:f7:ac:fc:f3:98:5d:d7:ff:62:30:d1:6b:73:60:24:6e:51:
b6:33:da:40:db:02:51:6f:7a:f0:7e:38:21:69:9e:8c:a1:a4:
3d:5a:5e:51:d7:d9:d7:03:da:c3:52:fd:c8:1f:f0:47:c3:b5:
29:53:fb:7f:a0:ee:e1:40:03:14:b8:0c:3e:71:41:94:ae:f9:
c1:cb:f7:fa:33:4b:85:87:aa:e0:67:aa:0e:43:0c:45:4d:91:
82:46:4d:33:34:8e:26:fd:f7:19:89:86:2a:6e:af:1c:6b:dc:
a9:f8:2c:d3:01:f8:b0:42:2f:3f:d3:ed:1b:af:80:04:68:d6:
e7:1e:a6:e2:e9:05:8d:aa:29:ca:ee:4b:1e:7a:5c:9b:c4:10:
93:f0:e2:e8:9f:a0:92:03:c2:2b:0f:e0:93:12:91:1e:32:73:
b0:2f:7a:c9:55:82:16:e2:dd:47:cd:1f:1d:9f:5a:21:a0:60:
89:a9:bc:95:e0:25:f7:21:42:09:c8:9b:6b:b5:3c:ff:d4:1d:
fd:f4:33:0f:fd:82:c1:6a:ac:fe:cc:0e:94:ff:21:d6:60:1b:
90:56:01:13:13:ff:9b:aa:1a:ba:02:e7:4e:7e:64:3a:51:07:
74:b7:46:1a:79:04:d8:08:bf:29:4e:9d:2a:6e:02:81:26:00:
e6:06:34:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:41 2025 by rpki-client