Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dtAZzPmZ9CkQObu0dXtpIjFWjj8.roa
File: dtAZzPmZ9CkQObu0dXtpIjFWjj8.roa (raw, json)
Hash identifier: z3jctRFzm+rG4dxEeDPhIx6Gaw7lJ6AFhEowwGq/nVM=
Subject key identifier: 76:D0:19:CC:F9:99:F4:29:10:39:BB:B4:75:7B:69:22:31:56:8E:3F
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266C0164F2878142FF89D5DEA19CBC83
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dtAZzPmZ9CkQObu0dXtpIjFWjj8.roa
Signing time: Thu 02 Jan 2025 09:49:59 +0000
ROA not before: Thu 02 Jan 2025 09:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211516
IP address blocks: 77.65.220.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:01:64:f2:87:81:42:ff:89:d5:de:a1:9c:bc:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76d019ccf999f4291039bbb4757b692231568e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e9:fd:47:9e:b5:ac:fd:be:6e:f4:f7:de:a8:
03:13:eb:8a:ce:db:0d:11:47:18:74:2f:df:b8:ff:
62:12:65:3f:ba:7a:cf:88:f6:9a:94:7c:81:1f:ce:
63:72:d3:96:29:e9:b6:24:3d:f5:42:9e:04:76:53:
94:8d:a9:93:b2:e7:96:ea:f6:d8:07:b2:50:55:7b:
87:d7:c7:fa:d3:75:34:67:58:0c:aa:78:92:74:d6:
f8:e8:d0:8f:bd:cb:74:d2:3a:ac:76:b2:19:ea:58:
3f:f9:61:9b:c3:1a:6f:7e:db:0e:b9:eb:60:c2:93:
22:2c:38:bd:35:0d:ea:ad:f4:7a:f1:0a:d1:d4:b5:
33:2f:1f:3d:89:dc:ff:bb:7e:03:a5:f6:00:11:16:
18:1d:66:22:7a:13:4d:ac:19:e6:e1:3e:0a:54:c9:
41:87:2f:a3:de:ce:ec:c8:33:13:75:d2:fe:ce:eb:
28:8a:7d:24:a9:52:9e:71:a3:29:87:69:7a:11:d1:
19:83:fe:23:1b:fc:47:6b:a9:45:de:80:39:8c:9b:
62:f3:ce:76:4d:30:1d:13:66:22:1b:34:0d:14:53:
ad:56:69:ed:0f:0d:ca:f5:d0:27:09:cf:82:a8:d0:
d6:a0:23:61:d3:f9:a3:74:4b:02:a9:1e:f2:db:a0:
8a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D0:19:CC:F9:99:F4:29:10:39:BB:B4:75:7B:69:22:31:56:8E:3F
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dtAZzPmZ9CkQObu0dXtpIjFWjj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.220.0/23
Signature Algorithm: sha256WithRSAEncryption
66:49:9c:91:c2:19:09:f6:e9:eb:07:43:00:5b:73:dc:0f:b8:
74:65:7a:17:53:11:05:3d:24:91:1d:02:df:ed:ff:04:1f:89:
5c:8f:ec:a5:77:1f:e0:7d:61:e4:50:5b:22:d0:b3:bf:80:06:
01:96:7a:45:6b:4a:7f:5d:32:2e:58:50:34:d4:d2:ca:5a:f2:
41:3c:57:e2:d2:0b:d9:94:f6:35:1e:95:33:7b:52:8a:a0:ca:
8a:49:c3:3e:e5:b2:d6:6f:76:ad:7f:58:d2:23:bc:1e:aa:e1:
9d:e8:f1:da:4a:95:a5:b7:21:32:7b:4e:f1:c2:6d:88:3f:8a:
6d:84:52:f1:b6:b3:d6:6d:84:1a:91:2c:2e:da:bd:98:c8:bc:
cc:0e:48:a4:fe:6f:18:ff:58:40:9f:f9:1f:ec:dc:0c:bb:33:
12:f5:df:e7:02:0a:5c:43:31:61:63:64:93:03:0a:3d:6c:63:
39:52:4f:78:a9:da:dd:32:40:92:4a:c1:80:c7:4e:5c:4e:95:
6d:38:55:2a:d3:1d:72:a7:60:43:6a:d3:b3:ca:93:08:52:42:
32:29:23:fb:a5:0c:36:ac:96:1e:36:4a:0f:b9:93:7a:d1:2a:
5b:05:ab:93:47:54:0d:58:76:3a:e0:03:bc:6f:a1:73:20:6e:
48:a1:9b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:34:28 2025 by rpki-client