Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/67sIQdtLhFmE4MCaAblgguOFsIE.roa
File: 67sIQdtLhFmE4MCaAblgguOFsIE.roa (raw, json)
Hash identifier: TJrzMCPWjsJz6r+tk4nzCYx9TSssvfx4qqmWq3oaEpU=
Subject key identifier: EB:BB:08:41:DB:4B:84:59:84:E0:C0:9A:01:B9:60:82:E3:85:B0:81
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 0185707057534C67828D1F0222BB314FBCDC
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/67sIQdtLhFmE4MCaAblgguOFsIE.roa
Signing time: Mon 02 Jan 2023 03:04:48 +0000
ROA not before: Mon 02 Jan 2023 03:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31736
IP address blocks: 77.37.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:57:53:4c:67:82:8d:1f:02:22:bb:31:4f:bc:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 2 03:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebbb0841db4b845984e0c09a01b96082e385b081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:43:3f:83:a9:46:1b:7f:44:46:d0:ec:ef:e7:
24:61:11:ee:7e:0b:41:60:c4:1f:94:d3:95:dc:80:
82:72:55:63:2f:56:fd:67:e7:10:ee:b3:84:f7:98:
0d:29:ad:3f:d8:84:59:22:cf:c4:39:0d:1a:ee:cf:
76:db:5b:ee:ee:33:16:ec:3c:0c:92:eb:39:ac:02:
5f:ea:d9:63:74:8c:e4:51:b3:07:84:01:8e:9c:62:
db:22:9a:01:73:e8:e4:7e:1e:cf:07:97:d3:cc:e7:
03:6a:11:b2:07:7b:81:a6:63:bb:19:2a:7b:0e:10:
85:c3:22:1e:5a:18:85:5d:0a:ac:b1:7d:96:13:bc:
2a:30:f1:39:10:15:50:97:36:c5:a4:b6:ed:32:04:
bc:f1:69:64:f2:2c:01:9f:69:9c:89:f7:7c:97:6d:
01:dd:7a:9a:7d:e8:7f:1a:60:68:2a:2e:96:59:10:
f1:8b:eb:61:01:ab:9e:e9:20:31:2c:9a:a7:7f:21:
ad:e6:c0:ac:83:95:5a:91:73:85:e8:e9:ce:5d:7e:
81:4d:97:f1:fd:3a:e7:01:c8:0b:5f:1d:dc:5a:5f:
0c:96:01:80:ef:41:84:10:14:a9:29:24:bb:8b:3f:
62:fc:4f:6f:84:50:bc:36:81:70:5d:ed:4d:c3:97:
68:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BB:08:41:DB:4B:84:59:84:E0:C0:9A:01:B9:60:82:E3:85:B0:81
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/67sIQdtLhFmE4MCaAblgguOFsIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:34:25:9e:76:67:16:f2:c7:31:f6:0b:43:e9:6d:d4:c1:aa:
a7:22:ec:82:20:e9:32:6a:6d:f1:6a:a2:35:e0:eb:16:de:21:
8f:e8:7f:fa:cd:00:83:a7:f7:ad:53:a7:ec:d9:0f:ba:cb:fe:
2b:e6:71:0e:1b:7c:67:8c:ed:c8:c8:6d:87:e6:9f:15:e0:f8:
c0:24:d2:6b:32:4b:d8:c1:6d:aa:85:05:25:7e:c2:8a:a3:bd:
4c:08:9e:d5:fe:2e:a5:75:68:27:66:b3:f1:f5:5b:79:ad:a0:
b9:c8:67:df:1e:40:4c:3a:aa:04:ea:3f:14:ce:91:51:ce:7f:
c3:c4:78:4a:50:d3:9f:d8:83:26:10:94:62:62:b2:b2:aa:b1:
27:c7:58:ba:6b:78:58:58:f2:2b:64:6a:59:ac:f6:87:6a:34:
b0:c7:24:be:80:08:06:c3:c0:bd:e0:3f:59:6e:88:f0:81:69:
75:0d:45:de:e8:e8:f5:da:01:db:4a:66:e0:0e:48:14:eb:bb:
2a:76:0e:1e:92:8f:1a:ff:b5:ad:3c:10:6b:a0:ac:a9:0b:4a:
ee:5e:b0:40:af:0c:10:c6:5a:b6:66:cb:d8:48:f2:45:95:44:
bc:fe:81:d1:85:56:7a:af:e9:22:bc:00:58:df:d6:8b:2a:71:
37:f2:4a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:37:57 2025 by rpki-client