Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/hWDPC5V6bDQ_Ywxma73TBS7unOY.roa
File: hWDPC5V6bDQ_Ywxma73TBS7unOY.roa (raw, json)
Hash identifier: 5pFnUgVfQ6XF4IlRf99N1SOcJIDVpMu9qNqYtF4/7Dg=
Subject key identifier: 85:60:CF:0B:95:7A:6C:34:3F:63:0C:66:6B:BD:D3:05:2E:EE:9C:E6
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0194228D986A2634E5885AA418C9AA7FFEFB
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/hWDPC5V6bDQ_Ywxma73TBS7unOY.roa
Signing time: Wed 01 Jan 2025 15:48:12 +0000
ROA not before: Wed 01 Jan 2025 15:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49699
IP address blocks: 77.77.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:98:6a:26:34:e5:88:5a:a4:18:c9:aa:7f:fe:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8560cf0b957a6c343f630c666bbdd3052eee9ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:68:4e:fe:68:c4:21:71:8c:e1:5d:36:70:11:
47:c7:ce:bd:dd:c3:73:9b:a5:2b:0b:df:1f:e6:34:
ff:4b:9e:c3:7e:9c:05:b9:75:3f:0a:dd:e5:49:c7:
5e:72:8a:b4:d4:de:b8:28:09:75:ea:54:5a:42:71:
16:2f:87:58:9f:72:0e:4a:c7:98:bf:5d:82:1a:92:
67:2a:3d:02:d7:ef:a5:6a:65:28:f2:85:bb:82:07:
6f:75:39:72:f6:2a:12:a9:f7:50:11:81:4b:03:3c:
24:f3:4e:14:3e:d2:2e:91:a3:9c:5c:bd:8a:bd:b4:
27:53:b1:c0:3e:7e:12:42:6b:93:0a:1b:7d:32:f1:
8f:b0:7b:a2:a7:d7:61:01:2c:67:d0:f9:89:62:00:
89:f6:07:51:07:2d:7f:1e:81:8d:3d:fa:60:fb:ef:
a5:63:da:01:34:0b:eb:b6:bd:b9:a6:d3:63:4d:eb:
8a:cc:6b:be:f6:e3:49:83:26:ae:3a:b5:b8:4c:60:
c6:2a:e2:64:bc:d7:f0:bc:64:12:fa:18:ad:b8:de:
62:f9:2d:c9:b5:24:65:50:aa:9a:99:94:58:f6:80:
6c:8d:df:a6:54:0d:e6:a4:90:22:c9:4b:a2:fc:69:
72:73:ba:46:30:3d:fb:44:4a:c0:f6:3d:d7:ec:9f:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:60:CF:0B:95:7A:6C:34:3F:63:0C:66:6B:BD:D3:05:2E:EE:9C:E6
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/hWDPC5V6bDQ_Ywxma73TBS7unOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.77.148.0/22
Signature Algorithm: sha256WithRSAEncryption
64:a9:88:98:0c:c9:f6:79:e8:cc:65:22:99:c5:84:ec:45:fb:
ce:73:c9:03:a1:4f:26:3d:02:0e:8a:32:37:d1:ad:1d:83:48:
31:da:8e:d7:69:98:71:c7:a4:02:79:b8:6d:1f:85:91:53:c8:
c8:4b:a1:37:be:1b:c7:2f:1a:09:8d:10:d3:7c:1f:1b:a1:77:
8e:11:79:21:c1:20:d9:4a:02:31:fa:66:3c:e9:c4:51:87:51:
f5:6d:28:2b:5e:7c:b7:ee:bb:70:de:29:a7:07:ce:6c:63:46:
75:7b:77:3b:0a:4b:e2:b3:3d:76:d0:74:6b:3e:87:1e:2f:e0:
85:13:fb:3b:59:cc:54:ac:67:74:a7:8b:b0:cf:e2:be:bb:14:
c7:e4:9b:fc:d5:72:64:18:4e:8d:ee:71:72:fa:a1:75:fa:d6:
30:ff:b7:f8:ee:73:e3:b3:3a:db:2a:f6:85:2b:3f:86:63:76:
fc:37:ae:7b:97:52:98:03:70:8f:10:65:5f:cb:1f:48:d8:1c:
6b:99:db:39:c2:c7:bb:3c:1c:70:77:2e:cd:93:7f:9d:1c:e6:
78:ed:04:0c:5e:a8:4b:26:4f:39:f5:5e:ac:b8:f9:72:36:c0:
00:3d:bd:16:4c:de:1a:c2:ea:02:3e:e4:51:72:9d:60:ad:c6:
a1:96:85:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:48 2025 by rpki-client