Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/SY81gJpFL3O5UNAf48JLyqIodXE.roa
File: SY81gJpFL3O5UNAf48JLyqIodXE.roa (raw, json)
Hash identifier: jLBfqqRL2Al9+uGkQb3qfdiObpqqeOZguvx4px0RKv8=
Subject key identifier: 49:8F:35:80:9A:45:2F:73:B9:50:D0:1F:E3:C2:4B:CA:A2:28:75:71
Certificate issuer: /CN=a6bb3045aea78e8fa7648129714fb736068dc37b
Certificate serial: 019420D5ED71824207662C991468AE4665D2
Authority key identifier: A6:BB:30:45:AE:A7:8E:8F:A7:64:81:29:71:4F:B7:36:06:8D:C3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prswRa6njo-nZIEpcU-3NgaNw3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/SY81gJpFL3O5UNAf48JLyqIodXE.roa
Signing time: Wed 01 Jan 2025 07:47:58 +0000
ROA not before: Wed 01 Jan 2025 07:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 77.111.232.0/22 maxlen: 22
185.184.176.0/22 maxlen: 22
188.227.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:ed:71:82:42:07:66:2c:99:14:68:ae:46:65:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6bb3045aea78e8fa7648129714fb736068dc37b
Validity
Not Before: Jan 1 07:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=498f35809a452f73b950d01fe3c24bcaa2287571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9f:99:30:68:3f:d8:aa:3e:59:3b:3e:bc:e7:
1b:99:4b:d9:56:58:26:fd:03:32:1b:c6:bb:94:0a:
a5:de:61:b0:44:e6:16:8e:24:0c:fc:5b:7b:d9:a1:
aa:40:17:4e:04:00:18:db:27:44:d4:b9:f4:ce:fd:
91:5c:00:7c:5e:e0:81:a2:04:e3:5d:5c:a3:b7:c1:
64:a7:2d:d0:1e:41:cd:2a:c0:ae:f4:34:c7:59:7f:
08:51:09:38:71:9e:19:50:4f:b6:1b:ac:44:ce:1c:
3e:10:f3:04:8c:5b:5b:de:4e:73:5c:59:b4:6e:0a:
ff:b3:cc:c8:a6:dc:d7:42:bd:97:4c:fe:2e:79:f3:
26:d6:fe:98:72:07:a5:d8:74:e2:ed:fe:40:7a:3c:
13:6d:74:81:e9:92:81:04:eb:a8:1d:0a:bd:f6:81:
e3:32:97:a2:dd:e1:f8:ce:5d:4b:b3:58:ab:92:3c:
c1:22:d5:f0:74:3a:db:ee:21:f8:99:e3:a9:c6:14:
02:fa:c2:da:0e:c4:ef:3d:a5:16:11:7e:62:53:70:
0e:84:46:67:92:6b:a8:7c:7e:37:d0:c5:4a:96:41:
cc:ae:de:3c:59:11:b6:ee:bc:e4:11:3b:c0:ac:bc:
c7:16:ec:a3:4a:1a:f5:b9:95:63:24:59:03:56:31:
b8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:35:80:9A:45:2F:73:B9:50:D0:1F:E3:C2:4B:CA:A2:28:75:71
X509v3 Authority Key Identifier:
keyid:A6:BB:30:45:AE:A7:8E:8F:A7:64:81:29:71:4F:B7:36:06:8D:C3:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prswRa6njo-nZIEpcU-3NgaNw3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/SY81gJpFL3O5UNAf48JLyqIodXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/41eaf9-656d-40d9-9f7a-334de3d76fe5/1/prswRa6njo-nZIEpcU-3NgaNw3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.232.0/22
185.184.176.0/22
188.227.200.0/22
Signature Algorithm: sha256WithRSAEncryption
88:44:ed:c4:32:7a:dd:3c:7b:79:31:01:7a:6a:25:56:b9:fa:
be:af:6e:b6:75:66:c3:25:f8:56:c3:50:ab:c1:04:f0:f2:a6:
24:9e:1e:10:83:90:e8:33:55:54:86:e4:d0:2d:03:81:ce:d2:
4f:ea:1a:0f:82:d8:93:aa:ea:74:4c:fd:c4:cb:d7:de:c6:33:
b7:69:a6:2a:a1:05:8c:6c:51:a2:0b:58:f9:e4:0d:de:ce:36:
65:54:4d:7f:3d:e6:db:cb:dd:d2:7a:99:ca:27:2a:2b:c3:41:
6a:f0:ce:0a:c7:83:4a:72:05:38:be:7e:2d:af:78:60:77:d0:
7e:1a:0d:c7:f3:cf:45:a9:86:cf:79:55:a6:4a:18:77:34:42:
f8:4f:e7:4d:0d:5d:00:e2:7f:03:45:65:67:4d:6e:a4:ff:da:
99:8c:39:43:72:87:a4:36:e7:fc:53:4f:a5:df:25:fa:21:b2:
51:1b:97:84:7e:ba:36:d3:19:79:86:59:3c:c0:8c:f3:e4:88:
77:a7:dd:94:aa:4c:dc:f1:e7:88:20:ec:24:11:67:69:d3:56:
2c:c8:54:a6:9d:08:1e:78:df:d0:f9:1d:d2:05:af:21:9c:82:
9e:ef:16:bf:fe:a2:85:12:f3:eb:22:81:1d:73:17:ed:2f:8f:
52:74:0c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:13:02 2025 by rpki-client