Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/3bo1_VmMil_ykLbPMkJbRag9ebw.roa
File: 3bo1_VmMil_ykLbPMkJbRag9ebw.roa (raw, json)
Hash identifier: 7RqP40Y7gY2KH0eL1Md3M9TCvHi+FVAYp4Z84nyqF5I=
Subject key identifier: DD:BA:35:FD:59:8C:8A:5F:F2:90:B6:CF:32:42:5B:45:A8:3D:79:BC
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 0194266BB51205FEBF90A2193F4623829226
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/3bo1_VmMil_ykLbPMkJbRag9ebw.roa
Signing time: Thu 02 Jan 2025 09:49:40 +0000
ROA not before: Thu 02 Jan 2025 09:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206804
IP address blocks: 37.77.56.0/24 maxlen: 24
37.77.60.0/24 maxlen: 24
37.77.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:b5:12:05:fe:bf:90:a2:19:3f:46:23:82:92:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 2 09:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ddba35fd598c8a5ff290b6cf32425b45a83d79bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:7e:99:d4:74:2b:0f:5a:25:b7:8b:29:23:
07:66:7e:74:d5:95:c7:26:da:14:99:85:89:f5:47:
69:57:11:8b:6f:0f:ff:b0:ee:59:04:32:7b:20:cd:
3b:a4:66:09:80:dd:5d:c5:94:17:51:9e:be:db:47:
55:cd:26:13:b8:84:60:13:3a:5d:24:60:36:76:a8:
de:91:0c:be:89:d2:d3:ed:41:d2:e5:5c:53:45:7d:
e8:b9:9d:6d:ab:39:9e:e1:4b:21:41:69:5e:9b:43:
d5:e0:14:0c:52:58:75:7a:78:ea:3a:5e:04:d4:26:
44:f0:d2:58:d7:06:32:8b:7e:f6:d9:6b:b5:9a:d1:
d5:6c:8b:a2:b8:67:b1:a7:90:8b:a4:06:fe:38:5d:
90:3e:ee:c9:4f:cd:74:e3:69:bc:c8:7b:ec:fd:dc:
8f:37:dd:f4:86:4f:ce:2b:a4:5d:22:58:66:2f:11:
5d:2c:72:c5:c7:9e:d6:3e:d7:bb:e4:b1:da:c3:ce:
e1:b2:e5:7b:25:79:a0:78:f8:fa:06:0f:2e:b3:9a:
c3:2d:70:a9:28:fe:b3:57:33:83:af:a5:82:bf:2b:
9d:61:9c:90:a5:6f:59:80:b8:75:8c:99:bf:a9:5f:
48:dc:28:0f:63:34:23:36:99:c6:72:ea:28:a9:cb:
13:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BA:35:FD:59:8C:8A:5F:F2:90:B6:CF:32:42:5B:45:A8:3D:79:BC
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/3bo1_VmMil_ykLbPMkJbRag9ebw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.56.0/24
37.77.60.0/24
37.77.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:c8:78:15:0d:15:7d:2f:d9:08:6b:50:91:ea:56:ba:77:ac:
32:66:1c:42:76:aa:37:c9:41:7f:49:93:fc:3f:1b:b3:4b:b6:
63:1e:70:f5:bc:d5:07:9d:53:bc:57:9c:01:54:26:b6:24:11:
37:3e:c5:38:53:8f:23:15:9d:8e:58:ab:9c:b3:8a:31:3e:27:
7c:8f:42:fd:0f:e1:93:17:64:38:c1:c1:1d:ff:ce:74:00:3c:
e2:a9:54:03:7d:12:cf:52:05:a5:ef:7b:33:50:2c:63:d7:0c:
48:10:a8:a2:07:55:9b:a3:23:36:61:98:ac:fd:4c:f2:fc:57:
fc:77:17:f8:78:bc:46:cb:c1:72:d5:d9:c3:dc:a3:e4:dd:61:
37:46:5c:49:ab:f8:a7:c9:34:ba:63:d7:19:c1:ce:aa:87:8d:
88:87:ce:30:4e:73:5f:e5:47:9d:19:14:67:2e:aa:bf:7f:bc:
12:2d:ee:a6:26:67:69:f2:bd:5b:55:94:9c:fc:cb:5e:19:7a:
b1:c2:6e:28:65:92:23:4c:a8:4f:ce:90:58:c2:db:5e:60:9f:
fc:d2:78:c8:08:aa:16:b6:22:8d:8d:3a:20:c9:fd:42:78:a0:
ad:1c:e1:6b:09:95:46:95:8a:54:8c:42:00:18:91:ec:09:b8:
90:f3:d4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:38 2025 by rpki-client