Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/1POVdypKcSUbh9SprWdLSqIj9Cg.roa
File: 1POVdypKcSUbh9SprWdLSqIj9Cg.roa (raw, json)
Hash identifier: Q7kMDjlbGxKI/U9QHQ0xOpX/2HeWFdzEbkl+Zf5QloM=
Subject key identifier: D4:F3:95:77:2A:4A:71:25:1B:87:D4:A9:AD:67:4B:4A:A2:23:F4:28
Certificate issuer: /CN=7669943165d59f25265fb97cb77a6c7cbf8b5077
Certificate serial: 01865687E9396CD5FD4BC2E2065D5D542E63
Authority key identifier: 76:69:94:31:65:D5:9F:25:26:5F:B9:7C:B7:7A:6C:7C:BF:8B:50:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmmUMWXVnyUmX7l8t3psfL-LUHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/1POVdypKcSUbh9SprWdLSqIj9Cg.roa
Signing time: Wed 15 Feb 2023 19:23:13 +0000
ROA not before: Wed 15 Feb 2023 19:23:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50225
IP address blocks: 37.72.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:56:87:e9:39:6c:d5:fd:4b:c2:e2:06:5d:5d:54:2e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7669943165d59f25265fb97cb77a6c7cbf8b5077
Validity
Not Before: Feb 15 19:23:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4f395772a4a71251b87d4a9ad674b4aa223f428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:da:b9:32:5e:21:3f:64:d3:66:94:72:ca:18:
30:fc:d4:7a:3c:05:6a:fc:0e:25:fc:e5:95:39:ab:
87:8b:a3:99:07:3a:e3:27:0f:07:79:6e:6b:0a:b9:
ad:c5:95:5d:c5:7c:6f:c8:e3:72:94:40:1b:39:eb:
aa:e2:a8:cf:f7:5a:57:1a:f4:dd:73:ae:8f:15:71:
9e:cb:2c:88:35:f1:0e:90:01:f7:0e:f6:61:e8:fe:
8b:54:df:aa:2e:87:1c:10:70:01:b8:08:a5:7a:12:
a7:3b:07:e7:22:4e:bc:85:45:e8:15:d5:63:16:f0:
74:96:04:4d:ca:ae:82:fe:f4:05:c6:6b:63:25:53:
c3:6f:5a:2e:9c:6b:d5:8f:bc:00:dc:1f:49:e2:a2:
d4:70:98:81:55:bb:3a:4a:41:1a:e3:cb:b7:d0:86:
f1:14:83:57:30:6b:25:c9:24:19:1b:e8:bc:8a:a7:
8d:82:4f:63:be:8f:6d:65:0a:e6:04:91:6b:a1:26:
d6:bc:df:db:53:af:90:0e:70:3c:b5:45:a3:dc:b2:
09:b3:14:4c:bb:79:8a:d4:b9:a1:2d:7e:54:46:6e:
66:5f:e4:15:57:db:3a:32:03:b0:1b:4c:09:ea:12:
6c:5c:c5:7d:ff:1a:8f:3f:dd:b6:93:e4:22:1b:ae:
8b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:F3:95:77:2A:4A:71:25:1B:87:D4:A9:AD:67:4B:4A:A2:23:F4:28
X509v3 Authority Key Identifier:
keyid:76:69:94:31:65:D5:9F:25:26:5F:B9:7C:B7:7A:6C:7C:BF:8B:50:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmmUMWXVnyUmX7l8t3psfL-LUHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/1POVdypKcSUbh9SprWdLSqIj9Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7cef9c-7aff-4727-afa7-c48ea85a75bc/1/dmmUMWXVnyUmX7l8t3psfL-LUHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.135.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:31:e6:8c:09:5f:e4:62:26:55:a9:1e:8e:c2:8a:a2:3f:38:
97:59:67:ab:54:cc:c3:51:8d:28:c8:2b:b2:35:2b:1b:1e:cf:
5f:fd:21:14:00:48:73:ab:88:28:4d:f7:6d:94:28:70:20:fa:
83:e6:d7:b3:4d:5b:13:d1:3f:19:1e:aa:84:4c:0c:0c:32:44:
23:02:23:d3:fe:5a:5a:f4:d7:12:42:bb:e5:76:21:a2:3d:1d:
60:57:c5:b3:ee:05:a3:19:66:08:72:49:12:76:bf:99:7d:33:
55:29:c9:e8:fd:b5:1d:56:ef:ed:e5:94:dd:2a:a3:f9:b1:c0:
41:db:32:e2:88:7f:78:da:e2:20:0a:4d:79:11:10:a9:30:ae:
55:77:c4:02:0c:24:7b:71:66:1e:30:3c:41:2b:61:a5:c5:5e:
c6:12:b6:9a:45:aa:07:d5:6d:bb:53:94:b2:19:52:70:f6:5f:
a7:d9:0c:68:a2:98:1b:28:dc:01:a5:16:4c:d0:8c:6b:c5:9b:
e3:13:c0:6f:ea:f1:bf:18:9d:49:bf:d2:1d:90:b4:78:55:c1:
e4:29:c6:b8:13:a6:08:70:a1:0b:49:69:df:34:b3:f5:dc:17:
5b:d7:3e:16:13:41:c4:af:66:d2:87:e0:f4:fb:d3:bc:6e:56:
d8:8a:c7:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:54:26 2025 by rpki-client