Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/O69hN4niTbBsiWK0zS9q-2RHZKs.roa
File: O69hN4niTbBsiWK0zS9q-2RHZKs.roa (raw, json)
Hash identifier: CWTUDEueTe6oTxInXui2qda8pQVo9xyXZfPYOdt7eo8=
Subject key identifier: 3B:AF:61:37:89:E2:4D:B0:6C:89:62:B4:CD:2F:6A:FB:64:47:64:AB
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BDC5E74D0F8333046B80E98C0736B
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/O69hN4niTbBsiWK0zS9q-2RHZKs.roa
Signing time: Thu 02 Jan 2025 09:49:50 +0000
ROA not before: Thu 02 Jan 2025 09:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51769
IP address blocks: 77.65.190.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:dc:5e:74:d0:f8:33:30:46:b8:0e:98:c0:73:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3baf613789e24db06c8962b4cd2f6afb644764ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1e:17:9f:d2:72:4d:c5:be:48:cc:05:7a:35:
ea:97:58:40:bf:2a:a7:ca:8b:5d:49:57:8d:31:37:
f1:15:5b:7f:f8:3b:4d:ae:18:4a:17:59:40:39:fe:
e4:b6:40:39:8d:2f:f6:b8:50:81:56:e1:da:bc:73:
b6:9f:65:67:3b:9a:03:73:9f:03:81:65:37:b6:95:
31:81:15:67:a5:1a:dc:f0:70:3e:25:08:17:3b:ce:
08:9b:3c:98:37:f0:77:a9:f1:c3:4d:68:bb:83:a3:
97:10:b9:68:0d:5c:06:fe:1b:d2:41:8e:69:f4:69:
42:8e:f9:c5:a5:3c:dd:d0:e2:e1:3c:bb:74:a7:8b:
df:cd:1c:a0:0c:e2:4b:fa:1e:27:56:67:34:fd:bf:
50:71:6c:52:f1:b4:ec:a3:9b:35:f5:de:13:b7:9b:
1e:07:83:dd:d8:8d:62:23:74:97:b7:b8:23:32:82:
0e:1d:cb:05:ce:3c:e0:63:b7:9e:11:00:0b:6d:0e:
d7:92:d8:1b:71:74:33:ca:f0:a6:9f:b6:a9:48:76:
79:ca:c1:b9:aa:ec:14:18:71:db:e1:4e:35:1a:96:
a7:b6:09:dc:c5:03:a9:d1:2c:24:d7:2b:19:34:51:
30:d8:c9:16:69:91:9a:bf:c2:28:be:f0:b3:47:98:
23:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AF:61:37:89:E2:4D:B0:6C:89:62:B4:CD:2F:6A:FB:64:47:64:AB
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/O69hN4niTbBsiWK0zS9q-2RHZKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.190.0/23
Signature Algorithm: sha256WithRSAEncryption
06:8f:2a:4f:6e:76:76:fb:e3:05:fc:50:36:39:d7:7c:0a:51:
47:1a:a9:24:3c:88:87:5c:6f:c6:11:43:34:39:4a:65:a6:79:
e5:e7:9e:2d:31:89:c6:c8:ae:44:f7:8c:cb:55:68:26:15:73:
d8:9f:a7:7f:83:37:51:ef:9e:56:fd:79:2e:27:67:a1:42:e0:
0f:0a:61:66:0d:8a:aa:bd:9e:6f:97:21:45:41:df:af:26:bb:
a4:1d:0c:12:f6:a6:65:5d:90:c0:ad:8f:9b:b5:04:27:55:72:
a4:3b:ab:8b:da:c0:e3:29:bd:6c:db:cb:c3:db:27:d6:6f:66:
2e:0d:0b:a1:fd:c8:57:81:77:58:f4:b4:17:b5:f9:e6:2d:68:
7c:a3:f3:82:ca:26:47:13:c0:72:3d:ff:89:1b:8f:5b:27:ad:
97:b3:13:a5:60:7a:4c:83:77:d5:69:87:f0:62:c9:7b:5a:52:
ae:c3:e3:4c:17:c8:cd:b9:5f:d4:c2:1f:73:de:b9:a7:3c:6b:
84:4c:d1:3d:f7:d0:3c:f6:2b:38:22:d1:19:9f:33:3c:d6:c6:
70:00:05:73:be:73:55:0d:d1:e9:34:d1:b4:5a:c0:07:bb:28:
04:ad:31:96:5b:af:a4:34:fb:4a:07:3f:4e:4c:9a:3b:ff:9b:
29:1e:56:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:26:12 2025 by rpki-client