Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/h0nAm1SrRxnopuSZ5P0tHdd2NEE.roa
File: h0nAm1SrRxnopuSZ5P0tHdd2NEE.roa (raw, json)
Hash identifier: 9C7vv7BiQopMKL6qTi0nd8EE2InTB1zYtNUA4GVQMXU=
Subject key identifier: 87:49:C0:9B:54:AB:47:19:E8:A6:E4:99:E4:FD:2D:1D:D7:76:34:41
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 0183F08DDA5100F220E85A8A85157A7D58F2
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/h0nAm1SrRxnopuSZ5P0tHdd2NEE.roa
Signing time: Wed 19 Oct 2022 14:02:51 +0000
ROA not before: Wed 19 Oct 2022 14:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 77.37.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:8d:da:51:00:f2:20:e8:5a:8a:85:15:7a:7d:58:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Oct 19 14:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8749c09b54ab4719e8a6e499e4fd2d1dd7763441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bd:12:2a:99:04:53:4b:75:25:f3:45:6e:87:
9f:aa:1d:ef:78:e8:d8:85:a8:c2:56:cb:7b:37:a2:
5e:de:7e:15:c7:fd:01:3d:38:bd:4b:fc:ee:cd:c2:
82:fd:0e:02:20:a3:9e:72:d2:4e:14:e1:78:ed:cd:
a9:d8:77:38:f7:62:aa:5a:c1:92:e7:23:dc:e2:f3:
63:51:a3:d5:a6:ce:2e:3d:b5:db:17:17:f6:3d:16:
a8:96:fe:95:5e:0e:46:60:ca:76:bd:42:15:15:4a:
60:c5:18:6c:b2:e5:78:39:ed:0e:2d:9a:c8:4a:5d:
6c:e6:da:28:11:49:28:73:dd:91:f4:c1:29:cc:38:
ee:0e:1b:2f:bd:2b:50:aa:bd:2e:68:53:fe:d6:2f:
c8:30:85:ab:52:ee:ab:2c:3e:d7:6e:d2:a7:e7:ba:
07:89:52:d7:17:90:9a:fa:d4:19:80:a8:3a:35:9e:
24:15:22:76:a5:51:d6:d7:be:53:bb:b5:ce:18:b3:
08:ff:1c:05:02:b2:f0:c5:92:b6:86:10:33:a7:18:
ef:9d:3a:7a:1e:03:79:0d:79:6f:24:de:85:3c:4a:
bf:2b:bf:82:28:4a:86:45:c8:7b:c5:ab:03:d6:15:
b6:53:11:3d:b1:a6:be:06:eb:66:b8:36:3f:62:b8:
78:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:49:C0:9B:54:AB:47:19:E8:A6:E4:99:E4:FD:2D:1D:D7:76:34:41
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/h0nAm1SrRxnopuSZ5P0tHdd2NEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.58.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e2:79:fa:86:2e:7f:58:b3:c6:73:2c:d5:94:06:1d:27:94:
24:ed:b2:88:2f:57:bc:4e:51:5c:3b:0c:be:03:46:d7:0d:a4:
08:fc:3d:04:d4:98:b6:04:05:34:91:31:38:15:75:4e:62:14:
39:ff:6b:fa:66:0b:ab:a2:05:6d:c1:51:27:0b:67:eb:7b:39:
f9:a7:a5:85:13:d3:ec:62:65:ff:40:16:a1:9a:3f:83:a2:6c:
f3:ad:7b:a4:9f:5a:83:ab:a4:2d:7d:38:fa:ad:a2:ec:41:33:
c1:99:af:d0:51:5e:7a:ac:32:71:d1:64:5b:15:78:16:04:bc:
02:c0:fb:20:31:c2:fd:f6:6c:58:3a:48:43:42:c0:f2:fe:ac:
c8:b4:c8:1f:67:05:e1:d1:ee:e9:2e:ba:7e:1c:81:57:66:01:
de:81:ba:a5:73:64:51:ac:8f:bc:be:bc:95:73:fa:20:9b:27:
01:6f:ad:7f:a4:1b:b9:81:de:82:b8:ef:d0:59:23:5a:a6:5a:
05:64:cf:6a:9d:67:27:90:67:54:a7:d9:14:16:7f:1f:5b:14:
09:39:a3:2b:da:c8:d1:d1:9c:de:5c:b8:79:01:8f:22:e4:b7:
60:7e:47:04:4b:64:bf:55:29:f0:e7:96:20:e6:44:87:f0:08:
d4:8d:5b:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPwjdpRAPIg6FqKhRV6fVjyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwOGQ3MzVmMzQ2YzRmYzQyYTQ3OTJjZTMzODA4YTIyMTBh
ODJiYjUwHhcNMjIxMDE5MTQwMjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NzQ5YzA5YjU0YWI0NzE5ZThhNmU0OTllNGZkMmQxZGQ3NzYzNDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtr0SKpkEU0t1JfNFboefqh3veOjY
hajCVst7N6Je3n4Vx/0BPTi9S/zuzcKC/Q4CIKOectJOFOF47c2p2Hc492KqWsGS
5yPc4vNjUaPVps4uPbXbFxf2PRaolv6VXg5GYMp2vUIVFUpgxRhssuV4Oe0OLZrI
Sl1s5tooEUkoc92R9MEpzDjuDhsvvStQqr0uaFP+1i/IMIWrUu6rLD7XbtKn57oH
iVLXF5Ca+tQZgKg6NZ4kFSJ2pVHW175Tu7XOGLMI/xwFArLwxZK2hhAzpxjvnTp6
HgN5DXlvJN6FPEq/K7+CKEqGRch7xasD1hW2UxE9saa+ButmuDY/Yrh4PQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIdJwJtUq0cZ6KbkmeT9LR3XdjRBMB8GA1UdIwQY
MBaAFMCNc180bE/EKkeSzjOAiiIQqCu1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUt
YzNmMjU3ZWIyMGNjLzEvaDBuQW0xU3JSeG5vcHVTWjVQMHRIZGQyTkVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUtYzNmMjU3ZWIyMGNj
LzEvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATSU6MA0G
CSqGSIb3DQEBCwUAA4IBAQAB4nn6hi5/WLPGcyzVlAYdJ5Qk7bKIL1e8TlFcOwy+
A0bXDaQI/D0E1Ji2BAU0kTE4FXVOYhQ5/2v6ZgurogVtwVEnC2frezn5p6WFE9Ps
YmX/QBahmj+DomzzrXukn1qDq6QtfTj6raLsQTPBma/QUV56rDJx0WRbFXgWBLwC
wPsgMcL99mxYOkhDQsDy/qzItMgfZwXh0e7pLrp+HIFXZgHegbqlc2RRrI+8vryV
c/ogmycBb61/pBu5gd6CuO/QWSNaploFZM9qnWcnkGdUp9kUFn8fWxQJOaMr2sjR
0ZzeXLh5AY8i5LdgfkcES2S/VSnw55Yg5kSH8AjUjVv5
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:34:26 2025 by rpki-client