Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1-IsTd4hooBvLb2389RBz55B5bCI.roa
File: 1-IsTd4hooBvLb2389RBz55B5bCI.roa (raw, json)
Hash identifier: 41qkp3xXrDNjOctOTzQ6MWAlNQ6SlJDSg+S7/QsVDvM=
Subject key identifier: F8:8B:13:77:88:68:A0:1B:CB:6F:6D:FC:F5:10:73:E7:90:79:6C:22
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BFEAE8322D9E44D58734951645F76
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1-IsTd4hooBvLb2389RBz55B5bCI.roa
Signing time: Thu 02 Jan 2025 09:49:59 +0000
ROA not before: Thu 02 Jan 2025 09:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210407
IP address blocks: 77.65.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fe:ae:83:22:d9:e4:4d:58:73:49:51:64:5f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f88b13778868a01bcb6f6dfcf51073e790796c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d4:ff:91:bf:ca:25:48:97:fd:f0:5f:0d:22:
01:67:99:95:f0:e1:0b:4a:2d:b1:80:c1:6f:31:f7:
61:38:25:7e:26:ab:7c:5b:71:98:2b:f3:18:0c:d6:
c0:d3:d7:07:3d:b7:33:8d:0c:10:b4:6d:39:98:cc:
af:c0:83:bb:c2:3c:f8:f0:f1:d8:58:64:85:70:51:
97:82:7e:8b:8b:10:76:4a:89:fc:0c:2f:ba:b3:2e:
f0:3a:1c:0e:ea:8f:be:26:47:91:e4:ba:b3:89:14:
49:dd:af:f1:05:6b:68:65:74:77:bd:0d:3f:d0:ed:
a4:ac:ca:1b:5b:ac:79:fc:36:05:8b:05:2c:b8:fe:
1c:49:4d:4f:f1:33:7e:71:6b:28:bd:e2:0d:c8:8c:
ae:85:a5:2e:f1:d9:82:16:5c:7c:8d:b1:56:10:b1:
a3:a1:c3:d5:8d:64:eb:2f:a2:97:05:e1:8b:87:19:
2d:6f:b3:dc:76:ff:0c:44:86:e5:83:31:9e:92:a0:
1a:cf:06:58:91:e8:ef:13:03:04:5b:30:98:db:88:
8e:79:aa:21:73:5a:62:85:fa:92:22:c9:75:c6:37:
32:82:bd:00:1e:81:63:d8:34:64:c4:5a:47:3d:ef:
fe:91:79:cf:85:e5:80:83:5e:b6:02:da:40:3d:98:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8B:13:77:88:68:A0:1B:CB:6F:6D:FC:F5:10:73:E7:90:79:6C:22
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1-IsTd4hooBvLb2389RBz55B5bCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.205.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e4:fa:15:42:a1:58:21:3d:db:bb:a0:52:11:21:02:da:69:
82:b4:99:ac:f8:ec:66:12:b2:de:f4:c1:7a:93:e9:0b:e5:63:
6d:e0:97:fd:e1:28:53:4a:05:20:b9:34:d4:e9:b2:40:3b:d4:
08:3b:b4:9b:4f:90:6c:c1:18:26:9d:bd:3d:c8:10:0f:e2:e4:
0f:88:1d:68:66:86:e8:6d:0b:3d:95:8f:d7:9f:13:c2:63:77:
67:32:f3:79:de:db:a3:96:7d:98:6c:d5:fa:02:de:85:6b:3b:
ae:57:78:88:dc:9a:75:2c:0e:8c:77:c7:8f:29:e4:07:10:89:
71:62:80:fc:d1:89:c9:48:0c:6f:92:af:3e:01:41:fa:2f:80:
f5:82:5d:c5:9a:10:fd:4f:f9:45:17:c1:3d:4e:f1:6a:97:0e:
6d:c8:89:61:0d:bf:2f:5f:10:ec:6c:07:76:5a:ea:8f:e1:ae:
be:2f:f7:64:c3:67:40:1d:0f:4b:85:93:fe:f5:56:e9:46:ef:
77:bf:f4:4b:cd:31:db:56:da:52:38:1f:58:ee:e1:95:f2:4b:
01:b4:1c:ac:88:6c:3a:48:d1:2b:e1:0c:53:f6:65:a8:d1:fb:
c7:1b:09:cb:d1:0c:57:3c:13:77:6f:40:c3:e1:bc:d7:13:8c:
33:23:ab:33
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQma/6ugyLZ5E1Yc0lRZF92MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjUwMTAyMDk0OTU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODhiMTM3Nzg4NjhhMDFiY2I2ZjZkZmNmNTEwNzNlNzkwNzk2YzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNT/kb/KJUiX/fBfDSIBZ5mV8OEL
Si2xgMFvMfdhOCV+Jqt8W3GYK/MYDNbA09cHPbczjQwQtG05mMyvwIO7wjz48PHY
WGSFcFGXgn6LixB2Son8DC+6sy7wOhwO6o++JkeR5LqziRRJ3a/xBWtoZXR3vQ0/
0O2krMobW6x5/DYFiwUsuP4cSU1P8TN+cWsoveINyIyuhaUu8dmCFlx8jbFWELGj
ocPVjWTrL6KXBeGLhxktb7Pcdv8MRIblgzGekqAazwZYkejvEwMEWzCY24iOeaoh
c1pihfqSIsl1xjcygr0AHoFj2DRkxFpHPe/+kXnPheWAg162AtpAPZgAvwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPiLE3eIaKAby29t/PUQc+eQeWwiMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvMS1Jc1RkNGhvb0J2TGIyMzg5UkJ6NTVCNWJDSS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDcvNzg4ODAzLWJlMTItNDMzZi1hOGQwLTAyNGIxNjU1YzI0
Ny8xL3VaVkVtWmR5ZUtkVmNMTkFQMDA2b0FzYk51Zy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1BzTAN
BgkqhkiG9w0BAQsFAAOCAQEAPOT6FUKhWCE927ugUhEhAtppgrSZrPjsZhKy3vTB
epPpC+VjbeCX/eEoU0oFILk01OmyQDvUCDu0m0+QbMEYJp29PcgQD+LkD4gdaGaG
6G0LPZWP158TwmN3ZzLzed7bo5Z9mGzV+gLehWs7rld4iNyadSwOjHfHjynkBxCJ
cWKA/NGJyUgMb5KvPgFB+i+A9YJdxZoQ/U/5RRfBPU7xapcObciJYQ2/L18Q7GwH
dlrqj+Guvi/3ZMNnQB0PS4WT/vVW6Ubvd7/0S80x21baUjgfWO7hlfJLAbQcrIhs
OkjRK+EMU/ZlqNH7xxsJy9EMVzwTd29Aw+G81xOMMyOrMw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:47:55 2025 by rpki-client