Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/bOqF6zejTjck28ZGDBiLvdIZxu8.roa
File: bOqF6zejTjck28ZGDBiLvdIZxu8.roa (raw, json)
Hash identifier: 7KAq1vvi6i+PZTElv2bBoxEwS3lQOHiHZl1t3DUmxhA=
Subject key identifier: 6C:EA:85:EB:37:A3:4E:37:24:DB:C6:46:0C:18:8B:BD:D2:19:C6:EF
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 33B210D0
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/bOqF6zejTjck28ZGDBiLvdIZxu8.roa
Signing time: Sat 01 Jan 2022 14:55:15 +0000
ROA not before: Sat 01 Jan 2022 14:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207464
IP address blocks: 77.37.112.0/21 maxlen: 21
77.37.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867307728 (0x33b210d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 1 14:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cea85eb37a34e3724dbc6460c188bbdd219c6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:70:ac:62:ff:46:4b:e0:23:b9:0b:c2:45:
44:9d:7b:31:6b:e9:58:6d:f7:43:ec:4b:47:f2:97:
b6:bc:92:2d:89:04:8f:77:68:56:b5:6b:20:7d:34:
f6:cd:34:9b:d7:8b:fd:f9:36:00:5c:17:70:25:ec:
14:ca:4a:40:ca:bf:6a:ff:eb:66:8b:0e:fc:13:57:
d7:9e:aa:a3:a6:cb:74:3c:d5:34:a1:91:69:48:8d:
e6:80:f7:3b:26:7a:d0:90:ed:73:48:24:e1:04:1e:
af:44:7a:ff:d6:dc:ad:d9:e4:07:70:c7:c0:26:e3:
98:7d:8f:e6:a9:73:d8:2f:63:f0:c8:e0:a7:3c:b0:
79:f0:54:ad:f3:77:20:56:d9:18:69:ad:a9:6b:1f:
b9:40:f0:e9:85:ea:a7:61:c9:b3:fa:49:ce:6f:bf:
0b:e9:3f:cd:1e:65:9a:b8:23:a0:2c:b0:61:3f:84:
91:cf:7b:8f:38:1b:b8:a7:75:62:80:3d:fe:ea:4f:
be:2a:8b:a5:c4:91:88:a0:27:45:0e:7e:9e:ed:d3:
ca:93:2e:ed:c7:a8:e3:9f:7d:94:10:20:eb:2d:74:
b3:57:63:f8:72:71:71:39:6a:11:d7:59:a9:22:1a:
2d:50:88:0c:9f:01:06:13:87:73:07:63:4a:00:33:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EA:85:EB:37:A3:4E:37:24:DB:C6:46:0C:18:8B:BD:D2:19:C6:EF
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/bOqF6zejTjck28ZGDBiLvdIZxu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.112.0/20
Signature Algorithm: sha256WithRSAEncryption
53:64:61:d8:a4:1c:71:df:5d:1f:98:88:6c:ef:5e:d4:25:54:
20:a4:80:46:83:c8:4b:2f:00:17:12:27:3f:0f:e1:3f:6e:43:
5d:ca:76:fd:c6:06:af:10:4c:75:20:72:d3:8d:bf:05:25:b1:
22:17:e3:4b:12:73:a5:6b:86:4a:9b:77:d9:c9:c1:43:a0:69:
1b:10:74:d9:0a:9f:b6:3c:d1:3f:96:dc:c1:57:34:00:7d:a8:
b0:6c:63:2e:9d:4f:c4:52:fe:a1:b3:0e:83:f4:43:eb:60:2a:
f3:7e:bd:c3:af:8c:8c:63:ec:ac:de:a1:35:6e:e5:97:fe:5d:
2b:a3:03:4b:26:3b:a5:6d:f6:8e:f2:68:a2:6c:30:78:fa:91:
fe:94:94:59:54:ba:20:fe:0a:4b:54:8b:55:ee:e6:40:44:7b:
2b:d4:23:89:c7:9b:a3:c3:55:b2:49:33:9d:37:b6:cf:f3:e2:
03:b6:8a:0a:df:4e:bf:71:fb:96:c6:16:a0:d4:d8:59:d1:53:
9c:18:90:00:c3:39:61:93:a0:f5:14:29:9c:44:09:b3:c8:90:
82:fc:07:72:1d:ca:06:80:d9:be:7d:21:7e:f2:57:d9:bb:fa:
cd:5f:6e:db:02:16:eb:76:42:1d:58:de:11:22:94:66:d6:c3:
14:ad:3d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:38:37 2025 by rpki-client