Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/ygLOihYHM7gJ3rSFVN3LJpiGtQ4.roa
File: ygLOihYHM7gJ3rSFVN3LJpiGtQ4.roa (raw, json)
Hash identifier: xFg7fuHU1vNC4l0tPbZC5UH6gTJpVnWGzj/J7kMyjr0=
Subject key identifier: CA:02:CE:8A:16:07:33:B8:09:DE:B4:85:54:DD:CB:26:98:86:B5:0E
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 0184A5A683357BC003EF5DF28C2C65BE21CA
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/ygLOihYHM7gJ3rSFVN3LJpiGtQ4.roa
Signing time: Wed 23 Nov 2022 18:01:03 +0000
ROA not before: Wed 23 Nov 2022 18:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 77.37.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:a6:83:35:7b:c0:03:ef:5d:f2:8c:2c:65:be:21:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Nov 23 18:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca02ce8a160733b809deb48554ddcb269886b50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b6:2e:79:ab:a1:2f:05:2d:7e:6a:90:5f:2e:
e2:d2:5e:d5:7f:df:59:47:c9:69:1c:73:3b:66:ef:
47:3b:c8:ed:16:8b:95:09:bb:0c:7c:d4:06:e9:f6:
7a:0d:ce:b7:46:4e:19:48:40:54:11:e6:cc:3f:ac:
6b:73:41:ca:8b:ef:5f:24:ff:8c:0a:85:75:ff:32:
71:a8:ef:2c:81:42:a3:11:42:e0:a5:1b:5b:a3:5f:
5e:4e:77:2f:e0:fb:c6:04:8f:6e:43:7a:06:52:54:
e1:36:3e:67:12:02:52:7b:01:6b:7d:ed:d0:e3:7b:
ce:ef:1e:81:e6:d2:f5:45:88:cd:a6:4b:9c:24:fd:
36:e6:b6:22:d2:cb:17:64:02:2f:81:65:21:19:20:
fb:0a:4b:90:0a:f2:fa:bc:ca:b2:8d:50:2f:b9:8e:
ce:c4:f6:71:cf:ef:f1:b9:7f:dd:cd:e0:b6:3f:ee:
d7:a8:9b:d1:31:9c:3a:e7:7a:f8:3b:62:6d:e0:df:
4c:87:18:6e:d5:a8:cf:97:db:6d:31:04:44:47:69:
86:23:f5:87:a4:85:06:71:63:d6:86:25:4b:00:4c:
5d:c2:5b:5e:96:27:0e:e7:0d:8e:ff:16:5a:c8:65:
bb:2c:96:91:f9:13:cd:7f:ba:ed:59:9f:ad:c1:85:
20:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:02:CE:8A:16:07:33:B8:09:DE:B4:85:54:DD:CB:26:98:86:B5:0E
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/ygLOihYHM7gJ3rSFVN3LJpiGtQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.39.0/24
Signature Algorithm: sha256WithRSAEncryption
08:1d:68:4a:20:4f:cc:44:a3:b1:b5:50:62:bc:82:9d:34:70:
cc:35:d7:71:f4:21:46:aa:af:44:c1:92:8b:8e:e6:a5:70:1c:
67:38:e3:13:f3:1e:22:95:8a:74:87:e6:d3:ef:1b:7b:b6:e0:
18:84:a3:83:2a:22:6b:16:6c:64:41:7b:ce:e0:c6:e8:ae:1f:
91:ab:aa:ec:27:31:8c:69:b8:83:7a:5e:b5:b0:93:67:43:e0:
c9:be:ea:b6:ee:11:c1:b2:9b:31:14:44:82:13:6c:52:1f:74:
f5:eb:3a:ed:24:08:d1:26:5e:a4:17:1f:df:12:d5:b2:27:7e:
45:c5:6b:43:ba:2c:78:1f:56:08:e0:39:c9:f5:9b:65:8c:f7:
32:b4:e8:9d:e4:49:b0:9c:02:ac:41:3d:d0:12:00:d6:b4:0f:
bb:fa:89:5c:1b:ce:02:6d:87:3e:30:4a:5d:ac:be:44:cb:05:
31:76:e5:a1:1d:d0:ac:a8:4b:fe:77:59:b8:00:ab:9e:8a:1e:
72:14:f9:75:fd:87:f2:9b:8c:ee:62:50:6c:4a:3a:15:65:33:
cd:dd:3c:a2:88:8e:e8:c2:f4:f5:56:f2:ce:18:24:3d:33:30:
e2:b4:b9:2b:b9:b6:7a:c7:61:8c:97:b1:4b:02:54:be:c6:68:
46:30:9c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:38:43 2025 by rpki-client