Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Brg011d_pUd5Z_L4Yvkx5Z4bBwE.roa
File: Brg011d_pUd5Z_L4Yvkx5Z4bBwE.roa (raw, json)
Hash identifier: h28y4WUYtY4N/7CIe2hoGXeG038e7a2uYr/PpGD45QY=
Subject key identifier: 06:B8:34:D7:57:7F:A5:47:79:67:F2:F8:62:F9:31:E5:9E:1B:07:01
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0195A928FBC3F53EE92FF7E30E348FE43B37
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Brg011d_pUd5Z_L4Yvkx5Z4bBwE.roa
Signing time: Tue 18 Mar 2025 12:09:50 +0000
ROA not before: Tue 18 Mar 2025 12:09:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209618
IP address blocks: 201.77.61.0/24 maxlen: 24
2a0a:e9c2::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:28:fb:c3:f5:3e:e9:2f:f7:e3:0e:34:8f:e4:3b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Mar 18 12:09:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06b834d7577fa5477967f2f862f931e59e1b0701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:94:b6:df:6d:7e:0a:8e:20:12:b8:e6:c2:
83:f6:d7:51:ef:d3:96:d9:36:90:a4:64:ae:ed:1d:
03:21:8f:a5:ed:d0:8e:87:80:4f:9a:c0:76:b1:7a:
3f:f9:0b:b6:19:43:c1:c9:cb:08:73:c0:82:0e:c5:
c6:38:63:52:14:35:1c:7e:e8:cf:29:ed:4b:23:78:
0b:d8:b7:8f:9e:8a:0f:47:06:00:63:ee:d5:42:df:
11:44:af:94:73:5e:d7:a0:e1:45:9f:25:55:d6:1d:
af:41:8c:f1:16:66:26:75:b7:d3:4d:39:dd:e3:1f:
fa:0b:9e:72:f6:82:1c:37:d8:c0:18:ff:22:ff:72:
b4:71:06:83:58:b0:7e:84:23:b2:c8:47:4d:38:9a:
fb:8d:42:f7:71:28:e5:25:6c:43:98:ee:27:47:ab:
89:3c:43:7f:45:e5:e5:72:ed:a3:52:02:8c:b8:8d:
23:55:63:ef:13:3f:09:18:e0:75:49:98:21:37:9d:
e2:9b:73:74:74:60:4f:17:2a:19:99:b6:1b:9c:4f:
24:c0:a5:f8:d1:f2:5a:38:49:9e:93:7c:ae:12:00:
ef:5d:a4:9e:5f:de:9c:d8:b4:d2:31:42:55:ac:00:
89:9d:51:fe:2a:8c:11:5d:aa:ae:01:dc:71:d4:58:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B8:34:D7:57:7F:A5:47:79:67:F2:F8:62:F9:31:E5:9E:1B:07:01
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Brg011d_pUd5Z_L4Yvkx5Z4bBwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.77.61.0/24
IPv6:
2a0a:e9c2::/32
Signature Algorithm: sha256WithRSAEncryption
9e:af:cb:83:15:34:b1:fc:00:64:04:0b:4d:4d:3a:bd:d8:8d:
66:7c:a6:0f:78:29:03:d1:da:62:4d:c9:06:5c:83:50:ad:45:
5a:79:f9:e0:c2:4a:73:72:2e:12:2f:3b:d3:2a:0f:d2:e6:98:
a2:fc:fb:aa:11:67:7c:f1:aa:0d:20:1a:57:52:fa:2d:7d:b8:
a6:15:53:a8:08:53:47:fb:35:ce:26:ae:d5:5b:e0:9d:19:e4:
76:51:22:c2:56:11:36:df:e0:60:95:7a:f8:0e:8c:f0:fc:e6:
a1:c1:76:4f:23:4e:bf:82:82:c4:b2:78:12:40:fc:f1:53:04:
a1:45:93:26:9a:c7:3d:50:b8:f9:a4:08:78:83:68:7d:ae:27:
73:48:24:e1:2a:0c:7d:fb:3b:b6:ec:4d:b3:fe:2e:77:bb:a6:
fd:60:56:0c:25:df:09:76:cc:cf:c1:67:8f:47:98:f4:98:eb:
f5:7c:ca:d3:d8:51:e9:b8:ec:6c:94:41:d7:db:41:c8:c7:eb:
ca:61:ad:01:b6:44:7f:ec:02:71:a5:dd:b6:09:5b:b7:d8:1e:
ee:0c:ec:de:5f:6c:54:b5:2d:10:fb:7b:59:34:d2:36:d1:96:
71:57:21:56:c7:84:a0:21:9b:a2:1e:f2:8f:d0:87:5a:83:53:
a3:36:b6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:08:43 2025 by rpki-client