Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/Z6xYi2-XgfLWR_YeMb8DtJ9Z_U8.roa
File: Z6xYi2-XgfLWR_YeMb8DtJ9Z_U8.roa (raw, json)
Hash identifier: OFUwULXqjEiUY58SyVxr8aUJCMUjmDJuIrUr3mWe24g=
Subject key identifier: 67:AC:58:8B:6F:97:81:F2:D6:47:F6:1E:31:BF:03:B4:9F:59:FD:4F
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 018570705FBB0FE320505FB4E780A5F74CA9
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/Z6xYi2-XgfLWR_YeMb8DtJ9Z_U8.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213202
IP address blocks: 77.37.96.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5f:bb:0f:e3:20:50:5f:b4:e7:80:a5:f7:4c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ac588b6f9781f2d647f61e31bf03b49f59fd4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3f:1c:2c:41:df:be:29:d9:84:f6:79:df:d9:
83:d1:51:1f:6b:10:6b:b0:1b:dc:11:fa:ae:fa:65:
98:a4:e6:3b:28:6f:8a:99:64:3c:13:37:11:79:7e:
56:ab:7f:5a:85:f4:73:71:5a:01:d5:e5:b1:e5:82:
96:7e:8e:2c:7a:d9:6d:69:ed:c8:6f:a8:46:d7:c7:
76:ad:3d:a8:ae:be:a1:84:62:19:b0:95:03:04:93:
dd:9a:e1:80:42:5c:32:99:12:96:98:b9:a3:84:4a:
ef:98:70:09:b1:07:98:ee:fd:7a:2e:13:c0:7e:ea:
83:56:40:c4:07:69:43:9f:81:1b:01:76:c6:e7:d0:
81:1f:49:08:be:61:2c:36:50:ce:31:ca:55:51:67:
eb:a1:e6:13:c0:eb:91:13:5e:3d:6f:e2:92:7e:50:
81:1a:aa:6a:77:a4:21:a6:eb:04:37:e3:ee:a1:5b:
82:30:d6:2d:1c:02:f4:ec:e3:de:75:e2:17:80:47:
c9:d3:ee:75:84:39:d3:5a:ec:e9:c6:5a:77:f2:a0:
b7:dc:27:15:ba:51:80:92:3f:9e:c7:b1:ba:e4:c5:
c4:fa:8e:9a:96:18:37:16:50:57:51:ee:fd:00:ee:
c4:3a:a7:9c:9a:0d:96:7f:24:39:0e:fd:98:ba:d8:
77:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AC:58:8B:6F:97:81:F2:D6:47:F6:1E:31:BF:03:B4:9F:59:FD:4F
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/Z6xYi2-XgfLWR_YeMb8DtJ9Z_U8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.96.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:f4:c5:2e:fd:d8:1e:29:40:db:bb:3d:fe:d7:1f:81:b3:c9:
07:f6:14:79:3b:66:57:b7:ca:4b:cb:4c:be:1d:8f:28:f4:7a:
23:ac:61:71:bf:23:dc:90:db:7d:c6:10:5d:a9:85:a4:d9:ef:
14:89:ab:1f:5d:9d:3b:7f:6d:f4:62:8b:39:ec:b6:77:29:a6:
bc:08:1c:d8:54:2b:2c:7d:6b:ee:df:c9:9f:38:34:20:e0:01:
2f:6f:f7:4a:95:db:48:ca:94:c2:bb:91:0c:3d:e3:20:81:c4:
d4:05:cb:f4:bc:85:df:7f:2f:01:d3:94:47:5f:f4:5e:76:61:
15:6f:91:0a:cd:00:7e:6b:ec:89:5c:bb:a9:45:6f:80:08:58:
f9:ec:7c:40:90:45:b9:87:b1:5f:06:f3:cf:69:03:2e:1f:35:
6d:5d:9d:18:72:90:0b:c0:45:89:a7:16:2d:76:c5:b2:e6:00:
06:18:38:27:7e:40:7c:bf:12:01:55:9c:d3:6a:6e:68:06:1f:
66:e0:d4:a8:21:e4:d4:15:79:24:71:86:74:fe:ba:e6:5b:a1:
80:77:9f:e8:c4:59:75:ed:d0:8c:49:08:2b:b9:e3:e6:e4:eb:
65:4d:56:1d:3a:9f:53:ef:2a:68:be:d5:b1:40:08:63:5e:6e:
2e:f6:f1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:36:40 2025 by rpki-client