Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/754749-393a-4560-9e51-dff2c371ab35/1/LuCyMxHP6B6LaUYE7yv8FxZp1kQ.roa
File: LuCyMxHP6B6LaUYE7yv8FxZp1kQ.roa (raw, json)
Hash identifier: oPBJcph5PCJpNv4Uo7fa4e+cqYqocAKss5DM9uWJBgE=
Subject key identifier: 2E:E0:B2:33:11:CF:E8:1E:8B:69:46:04:EF:2B:FC:17:16:69:D6:44
Certificate issuer: /CN=c4934a004228d4958065609f31824f0732188f81
Certificate serial: 02A8D531
Authority key identifier: C4:93:4A:00:42:28:D4:95:80:65:60:9F:31:82:4F:07:32:18:8F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJNKAEIo1JWAZWCfMYJPBzIYj4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/754749-393a-4560-9e51-dff2c371ab35/1/LuCyMxHP6B6LaUYE7yv8FxZp1kQ.roa
Signing time: Wed 02 Mar 2022 20:49:53 +0000
ROA not before: Wed 02 Mar 2022 20:49:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 77.241.72.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44619057 (0x2a8d531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4934a004228d4958065609f31824f0732188f81
Validity
Not Before: Mar 2 20:49:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ee0b23311cfe81e8b694604ef2bfc171669d644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:04:88:5d:9a:06:0b:1b:0b:37:76:97:8a:43:
83:d4:9b:a7:e7:98:20:f6:66:96:c5:73:81:d7:a0:
29:b9:cb:f7:33:f0:b3:e9:98:bf:89:7b:1b:30:2b:
1c:0a:dd:e7:81:f9:6c:6a:27:5d:3a:7f:d2:eb:1c:
8e:ba:5a:fe:a1:81:fe:be:4c:7d:b9:e3:62:05:00:
4e:a8:c9:1c:f9:6d:ac:ae:42:8b:f4:ed:91:fc:8a:
c0:fe:9a:cd:17:b5:6e:f5:61:3b:a3:6b:ec:60:01:
be:ba:52:20:05:d7:86:2d:a4:35:7f:b2:cd:ee:eb:
04:b7:57:27:35:af:e3:2a:36:c4:ed:c1:e8:da:5a:
a2:ca:22:d7:8e:d5:4a:b6:ea:a8:58:9d:64:b0:57:
e5:0e:87:e8:66:30:cc:3c:47:8e:5d:23:58:51:fb:
3f:d0:41:30:cc:68:c8:26:dd:92:dc:e6:fa:aa:79:
f5:26:02:94:29:f9:fe:87:ba:94:0f:73:71:23:39:
7c:37:25:23:8a:53:74:b1:d9:c2:31:59:d6:54:9c:
19:d2:dc:0a:52:42:9a:04:3e:ac:e3:f1:00:6c:e6:
2f:ea:ca:a7:aa:35:7b:34:47:79:04:6d:40:ef:d5:
74:96:bd:5b:3e:aa:87:94:41:f4:8f:2c:36:38:1d:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E0:B2:33:11:CF:E8:1E:8B:69:46:04:EF:2B:FC:17:16:69:D6:44
X509v3 Authority Key Identifier:
keyid:C4:93:4A:00:42:28:D4:95:80:65:60:9F:31:82:4F:07:32:18:8F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJNKAEIo1JWAZWCfMYJPBzIYj4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/754749-393a-4560-9e51-dff2c371ab35/1/LuCyMxHP6B6LaUYE7yv8FxZp1kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/754749-393a-4560-9e51-dff2c371ab35/1/xJNKAEIo1JWAZWCfMYJPBzIYj4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.72.0/22
Signature Algorithm: sha256WithRSAEncryption
97:9f:a9:f5:00:c3:e7:18:30:93:ff:b6:a4:87:4e:6a:fb:a2:
46:77:cd:1d:cf:58:19:86:f5:ea:0b:29:9d:78:93:38:dc:eb:
67:2e:74:82:dc:07:1b:d0:b6:f4:f8:66:3d:77:b1:f7:b2:21:
b0:b7:71:66:a5:1b:8a:d2:70:27:d4:a8:3b:92:fc:42:df:29:
c6:c8:16:5c:62:85:d6:bf:c9:09:fe:37:93:04:cb:da:10:b5:
d0:82:14:17:21:9d:6a:8e:b8:c6:04:1e:6f:55:c8:c4:87:ae:
8a:2d:4a:70:a5:bf:a4:df:50:35:d5:3b:8a:ca:8b:0e:36:a8:
ab:7c:52:d3:d1:fa:95:5b:dc:a5:3a:6c:fe:ea:98:b9:03:43:
db:14:22:0c:9b:0a:0e:3a:f8:ff:4e:29:cc:0f:6a:b6:6a:aa:
1e:3b:11:0c:3e:66:cb:21:2e:d4:3c:50:ad:a3:c9:8e:36:55:
15:18:ff:99:38:64:6e:4f:1a:95:8c:32:74:7b:e1:cc:15:42:
fb:9c:a7:e3:2d:20:6c:8f:f7:2d:dc:cc:13:50:cb:1f:af:68:
2d:03:0d:12:71:21:3a:38:2e:34:b3:36:37:ea:44:54:53:35:
c6:a3:7d:91:72:f4:f5:3f:d9:7e:3b:9e:18:bc:9a:06:fd:10:
f9:1a:7d:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAqjVMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDkzNGEwMDQyMjhkNDk1ODA2NTYwOWYzMTgyNGYwNzMyMTg4ZjgxMB4XDTIyMDMw
MjIwNDk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmVlMGIyMzMxMWNm
ZTgxZThiNjk0NjA0ZWYyYmZjMTcxNjY5ZDY0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMkEiF2aBgsbCzd2l4pDg9Sbp+eYIPZmlsVzgdegKbnL9zPw
s+mYv4l7GzArHArd54H5bGonXTp/0uscjrpa/qGB/r5MfbnjYgUATqjJHPltrK5C
i/TtkfyKwP6azRe1bvVhO6Nr7GABvrpSIAXXhi2kNX+yze7rBLdXJzWv4yo2xO3B
6Npaosoi147VSrbqqFidZLBX5Q6H6GYwzDxHjl0jWFH7P9BBMMxoyCbdktzm+qp5
9SYClCn5/oe6lA9zcSM5fDclI4pTdLHZwjFZ1lScGdLcClJCmgQ+rOPxAGzmL+rK
p6o1ezRHeQRtQO/VdJa9Wz6qh5RB9I8sNjgdpFMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQu4LIzEc/oHotpRgTvK/wXFmnWRDAfBgNVHSMEGDAWgBTEk0oAQijUlYBl
YJ8xgk8HMhiPgTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hKTktBRUlvMUpXQVpXQ2ZNWUpQQnpJWWo0RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvNzU0NzQ5LTM5M2EtNDU2MC05ZTUxLWRmZjJjMzcxYWIzNS8x
L0x1Q3lNeEhQNkI2TGFVWUU3eXY4RnhacDFrUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
NzU0NzQ5LTM5M2EtNDU2MC05ZTUxLWRmZjJjMzcxYWIzNS8xL3hKTktBRUlvMUpX
QVpXQ2ZNWUpQQnpJWWo0RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAk3xSDANBgkqhkiG9w0BAQsFAAOC
AQEAl5+p9QDD5xgwk/+2pIdOavuiRnfNHc9YGYb16gspnXiTONzrZy50gtwHG9C2
9PhmPXex97IhsLdxZqUbitJwJ9SoO5L8Qt8pxsgWXGKF1r/JCf43kwTL2hC10IIU
FyGdao64xgQeb1XIxIeuii1KcKW/pN9QNdU7isqLDjaoq3xS09H6lVvcpTps/uqY
uQND2xQiDJsKDjr4/04pzA9qtmqqHjsRDD5myyEu1DxQraPJjjZVFRj/mThkbk8a
lYwydHvhzBVC+5yn4y0gbI/3LdzME1DLH69oLQMNEnEhOjguNLM2N+pEVFM1xqN9
kXL09T/ZfjueGLyaBv0Q+Rp96w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:04 2025 by rpki-client