Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/3ytgB1V8OqDsAY8XvOQbiKo69eo.roa
File: 3ytgB1V8OqDsAY8XvOQbiKo69eo.roa (raw, json)
Hash identifier: ySPAP5W25U5izkMHcbkBeEjxKOUZabHY8o3lNoYse4g=
Subject key identifier: DF:2B:60:07:55:7C:3A:A0:EC:01:8F:17:BC:E4:1B:88:AA:3A:F5:EA
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BFDFA3213433C9124BCD78FA3AD3C
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/3ytgB1V8OqDsAY8XvOQbiKo69eo.roa
Signing time: Thu 02 Jan 2025 09:49:59 +0000
ROA not before: Thu 02 Jan 2025 09:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210406
IP address blocks: 77.65.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fd:fa:32:13:43:3c:91:24:bc:d7:8f:a3:ad:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df2b6007557c3aa0ec018f17bce41b88aa3af5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:9f:ec:56:6a:c1:a5:51:1f:c9:22:dd:2c:
83:ae:79:2e:d3:2b:e9:4c:6a:29:22:e8:5b:7b:81:
37:6d:21:aa:6c:25:36:55:92:ca:1e:df:7d:b4:be:
e8:85:94:1f:77:5f:ac:4f:b1:0f:58:a4:ef:a6:10:
f5:dd:66:64:44:fe:0e:07:8f:d2:73:0e:0b:2d:b0:
98:ec:87:b8:ef:a0:2d:57:21:71:99:01:d3:8a:d3:
68:b2:2c:7e:cd:4f:f1:36:e9:13:ba:4a:cd:50:6d:
7c:3c:69:a0:98:e8:29:15:7a:0f:7c:23:bb:9c:7e:
29:ee:1b:4a:3f:0f:01:c9:d6:25:1d:92:92:4f:d2:
f1:b2:fd:c4:e4:10:2a:98:92:bc:e8:32:55:7d:eb:
bf:39:fe:93:5f:f6:9c:4d:4b:ab:85:ec:a3:03:d7:
99:5b:75:af:4a:86:da:bc:86:75:e3:ee:9b:45:44:
8b:f3:e5:8e:9c:44:13:87:b2:73:0e:da:3a:76:36:
37:da:53:9e:24:50:51:b1:27:e8:03:df:05:e2:83:
7a:12:1f:bd:9e:5a:b7:cc:2b:15:78:0c:20:84:60:
15:56:0b:28:15:1a:17:23:50:6e:b1:6f:ca:69:da:
71:ec:94:1f:60:19:65:b7:21:f0:75:41:0c:c6:39:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2B:60:07:55:7C:3A:A0:EC:01:8F:17:BC:E4:1B:88:AA:3A:F5:EA
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/3ytgB1V8OqDsAY8XvOQbiKo69eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.216.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:75:1c:cf:3f:a3:42:32:93:a7:a5:d6:e2:54:df:58:87:bb:
11:73:03:1e:c3:df:83:41:12:00:5c:8d:34:2c:51:b2:92:3e:
af:dc:0c:07:14:6b:33:c1:72:48:49:3d:d5:fa:9f:ae:08:01:
1f:d6:35:c8:ba:f9:2f:2c:c4:a0:e6:63:96:38:13:48:65:c9:
61:b3:97:6b:e0:d8:70:6f:80:3a:64:cd:19:0d:1d:a2:08:7b:
86:3f:9b:54:47:70:f6:52:17:99:37:a6:09:65:fb:28:34:2e:
a9:69:d7:d9:1c:4c:21:b4:76:ec:49:1f:fb:48:5c:df:b3:e7:
cb:62:77:f1:15:a4:fd:51:80:c0:2d:e3:c7:8a:18:bb:97:ea:
51:19:d4:5c:c9:cc:de:78:d8:9e:53:86:6d:98:ab:f1:99:14:
82:5f:27:db:4e:04:97:89:13:2c:be:96:3d:5a:71:22:98:e6:
79:f4:c0:b1:b4:3d:e0:cc:d0:53:27:4c:6c:c1:1a:3a:fc:85:
dc:fe:ff:fc:8f:87:d1:37:92:3a:6e:96:c8:4a:90:66:3d:ee:
d3:a2:9e:a5:84:bf:d9:7e:14:77:1b:22:65:39:c0:d4:1a:10:
d1:b5:af:fe:88:70:78:6c:2a:4d:10:68:3b:70:f1:1d:7d:06:
0a:bd:0a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:37:08 2025 by rpki-client