Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/glSibYxaNd12ywjKjvwPWdDM8vg.roa
File: glSibYxaNd12ywjKjvwPWdDM8vg.roa (raw, json)
Hash identifier: 8GFpy+IeQpG2a968XCvP+9YqzbSuzdmpTF+WYEpW75s=
Subject key identifier: 82:54:A2:6D:8C:5A:35:DD:76:CB:08:CA:8E:FC:0F:59:D0:CC:F2:F8
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 34CEC565
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/glSibYxaNd12ywjKjvwPWdDM8vg.roa
Signing time: Wed 04 May 2022 07:06:52 +0000
ROA not before: Wed 04 May 2022 07:06:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213202
IP address blocks: 77.37.96.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 885966181 (0x34cec565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: May 4 07:06:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8254a26d8c5a35dd76cb08ca8efc0f59d0ccf2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:69:8a:66:46:a2:d1:89:87:d1:f4:21:1c:76:
bf:96:6c:8a:f8:06:0a:39:60:10:bc:0f:ce:9e:b2:
67:29:fe:ef:ea:1c:55:39:6a:4b:b1:b0:36:a1:d2:
11:68:37:69:b7:ea:33:cf:f5:72:a2:6a:20:6d:22:
01:7d:f9:fa:86:da:64:df:ff:95:30:d6:9b:c4:ce:
62:0a:f4:86:31:51:66:d8:b7:e5:0a:5f:9c:9a:8d:
69:10:39:13:17:af:fa:25:d8:ea:d5:b3:2a:fc:27:
fe:09:0c:c2:24:de:d3:ba:dc:4e:c6:32:57:03:55:
77:2b:78:3e:5b:c0:bb:0c:5f:44:7a:f6:0b:28:6f:
79:fb:64:69:4d:a7:8f:84:6b:b7:47:65:91:58:7e:
5c:9d:df:1c:c7:43:37:64:05:48:33:c9:f8:b0:79:
be:59:8e:85:a2:bf:5c:7d:f5:fa:bb:f3:6e:9e:40:
cd:56:e2:57:54:e4:49:ed:8a:0c:61:89:17:e3:77:
0f:31:3e:8b:ba:59:e7:e2:f7:67:49:23:9d:db:14:
9e:db:a3:71:c6:1c:5a:fa:d4:0e:d1:78:8a:27:38:
1e:6a:07:7d:71:16:2c:ce:be:8e:6c:e2:76:da:11:
56:d1:3d:de:b6:c9:0c:6b:bc:0b:57:12:34:b9:04:
a2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:54:A2:6D:8C:5A:35:DD:76:CB:08:CA:8E:FC:0F:59:D0:CC:F2:F8
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/glSibYxaNd12ywjKjvwPWdDM8vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.96.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:6e:ea:9f:0c:b0:ba:01:27:f9:3a:1e:d0:24:38:47:66:8b:
87:1c:05:e5:a7:62:cf:a0:c0:d6:ac:b4:f8:be:87:bd:49:02:
04:3b:9e:40:d4:be:bc:3c:9b:4b:03:d5:b7:79:b8:db:4b:4a:
e3:f6:78:5a:e9:90:2d:e0:60:b3:94:0a:a9:08:8e:2b:c5:a3:
e2:81:83:d1:9c:84:7c:a7:dc:e9:a5:55:b2:af:b8:45:78:b6:
46:17:94:e6:69:1d:b3:64:48:6b:39:14:60:7c:43:9a:5d:47:
6f:b4:ff:45:6f:6d:b9:c8:4f:20:ae:75:af:46:b5:d4:16:7c:
65:96:66:3a:54:fc:ee:91:b4:b6:96:23:60:d8:9f:13:f1:9c:
4a:9a:71:ef:05:7c:6a:e9:ad:e9:7c:d4:08:5c:a5:89:98:81:
c8:a6:14:70:77:af:15:16:fb:44:26:c9:26:74:d5:fa:4d:3d:
82:78:63:73:f9:dc:5f:c1:74:80:da:20:ba:ca:a7:ce:cd:39:
f4:92:84:85:8e:27:9a:66:54:13:bc:72:2e:18:8e:21:79:ca:
43:63:1a:46:3c:61:fc:3e:51:3c:5e:07:db:f1:50:b4:3a:e4:
90:4e:d7:9b:fc:87:9b:61:1c:b7:60:45:97:03:67:69:0b:b5:
ad:ca:98:89
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENM7FZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDhkNzM1ZjM0NmM0ZmM0MmE0NzkyY2UzMzgwOGEyMjEwYTgyYmI1MB4XDTIyMDUw
NDA3MDY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODI1NGEyNmQ4YzVh
MzVkZDc2Y2IwOGNhOGVmYzBmNTlkMGNjZjJmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOFpimZGotGJh9H0IRx2v5ZsivgGCjlgELwPzp6yZyn+7+oc
VTlqS7GwNqHSEWg3abfqM8/1cqJqIG0iAX35+obaZN//lTDWm8TOYgr0hjFRZti3
5QpfnJqNaRA5Exev+iXY6tWzKvwn/gkMwiTe07rcTsYyVwNVdyt4PlvAuwxfRHr2
CyhveftkaU2nj4Rrt0dlkVh+XJ3fHMdDN2QFSDPJ+LB5vlmOhaK/XH31+rvzbp5A
zVbiV1TkSe2KDGGJF+N3DzE+i7pZ5+L3Z0kjndsUntujccYcWvrUDtF4iic4HmoH
fXEWLM6+jmzidtoRVtE93rbJDGu8C1cSNLkEonkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCVKJtjFo13XbLCMqO/A9Z0Mzy+DAfBgNVHSMEGDAWgBTAjXNfNGxPxCpH
ks4zgIoiEKgrtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dJMXpYelJzVDhRcVI1TE9NNENLSWhDb0s3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8x
L2dsU2liWXhhTmQxMnl3aktqdndQV2RETTh2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
ZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8xL3dJMXpYelJzVDhR
cVI1TE9NNENLSWhDb0s3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAU0lYDANBgkqhkiG9w0BAQsFAAOC
AQEAS27qnwywugEn+Toe0CQ4R2aLhxwF5adiz6DA1qy0+L6HvUkCBDueQNS+vDyb
SwPVt3m420tK4/Z4WumQLeBgs5QKqQiOK8Wj4oGD0ZyEfKfc6aVVsq+4RXi2RheU
5mkds2RIazkUYHxDml1Hb7T/RW9tuchPIK51r0a11BZ8ZZZmOlT87pG0tpYjYNif
E/GcSppx7wV8aumt6XzUCFyliZiByKYUcHevFRb7RCbJJnTV+k09gnhjc/ncX8F0
gNogusqnzs059JKEhY4nmmZUE7xyLhiOIXnKQ2MaRjxh/D5RPF4H2/FQtDrkkE7X
m/yHm2Ect2BFlwNnaQu1rcqYiQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:40:33 2025 by rpki-client