Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/MjgDjCYUYM2shyE3RkW_GQpsQCk.roa
File: MjgDjCYUYM2shyE3RkW_GQpsQCk.roa (raw, json)
Hash identifier: XfV2aC2j7bGGA1IjFkVwHlm2IeWdc9KU8gbhxH2q8TI=
Subject key identifier: 32:38:03:8C:26:14:60:CD:AC:87:21:37:46:45:BF:19:0A:6C:40:29
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 090211CF
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/MjgDjCYUYM2shyE3RkW_GQpsQCk.roa
Signing time: Sat 01 Jan 2022 15:03:01 +0000
ROA not before: Sat 01 Jan 2022 15:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20940
IP address blocks: 77.67.85.0/24 maxlen: 24
77.67.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151130575 (0x90211cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3238038c261460cdac8721374645bf190a6c4029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d6:87:55:aa:b3:df:86:5e:d6:4c:8f:20:17:
ae:d4:8b:61:d6:ba:99:f4:97:0c:94:e4:df:20:74:
1e:db:69:9c:90:7f:4b:09:00:4a:7c:bf:78:24:79:
17:43:a8:66:5f:cc:94:73:25:3a:4e:4b:0c:9b:19:
8e:3f:31:9d:1c:35:23:64:fe:b9:53:c7:9e:2c:77:
f7:c2:18:24:6a:7e:6b:71:cf:ca:ef:1c:3c:8c:ab:
64:a1:e8:0b:12:4c:05:da:fe:d5:98:77:6f:a1:b7:
6a:db:ae:b5:e0:e0:11:a9:80:12:84:d6:06:75:9f:
47:7e:fa:41:ed:c5:67:d0:2f:ae:58:0a:1f:2f:04:
e3:ea:db:a4:b7:e6:8e:39:2b:88:21:d3:26:23:a1:
c7:58:eb:f7:7f:75:92:cd:d1:ca:cb:4b:1b:c6:15:
cc:c9:9d:c5:9d:2d:85:10:ab:3f:15:c3:49:d6:22:
28:b2:db:f3:84:51:c4:2d:a1:50:8e:52:21:df:3c:
30:0b:f0:00:43:80:4b:fc:78:31:d0:bc:11:a0:d5:
22:1f:e2:39:21:16:1b:e4:32:b7:81:c2:89:b8:0a:
e6:53:7a:8f:9e:49:b4:bc:ca:98:6c:de:62:9f:3f:
f4:1d:2e:a6:45:0d:19:7f:30:b5:69:2c:eb:b9:87:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:38:03:8C:26:14:60:CD:AC:87:21:37:46:45:BF:19:0A:6C:40:29
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/MjgDjCYUYM2shyE3RkW_GQpsQCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.67.85.0/24
77.67.126.0/24
Signature Algorithm: sha256WithRSAEncryption
97:56:74:f4:78:8a:db:1a:f5:20:f1:4c:71:a9:63:76:d7:d8:
52:b4:cd:b6:32:fa:3e:8e:ad:87:0d:17:e2:61:03:20:aa:99:
72:2a:84:10:24:9a:51:60:f8:17:93:fd:75:c0:4f:6e:4d:b3:
09:65:00:e3:67:02:f5:4f:ec:91:e4:ea:37:94:ca:14:07:46:
6c:38:46:e1:95:6b:b5:68:50:db:12:00:29:2c:c0:64:31:a8:
66:73:d3:2a:62:80:da:d4:72:76:1d:6d:4f:de:3a:8f:1b:b0:
92:24:5f:d2:aa:62:29:e4:12:2a:91:d3:c3:bc:62:ae:61:d0:
02:7b:82:62:5c:02:7f:06:72:3b:f6:ed:29:cf:c5:13:ad:a5:
df:e3:7c:ae:ec:0e:19:69:6c:d8:59:6f:17:34:8c:93:bf:2f:
d9:da:74:c2:f0:14:e9:65:7b:19:da:87:6b:41:b2:cb:fe:53:
87:5a:e6:c4:1c:7a:50:72:bf:31:48:dc:1a:11:1b:42:34:15:
a6:a0:e4:07:58:fc:f6:2a:62:b4:7f:8c:86:43:1d:fa:2a:fb:
0c:f4:52:36:9b:90:37:6f:5f:68:79:bf:ed:50:16:09:af:f1:
32:a5:7e:18:33:a3:6d:8c:75:d0:82:28:4b:7c:75:15:ff:1d:
62:95:c9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:19 2025 by rpki-client