Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/cec311-8989-4f41-a499-b695a4ba0cb6/1/NpYHT7I0cy5reN8uHR3Q7qovC6E.roa
File: NpYHT7I0cy5reN8uHR3Q7qovC6E.roa (raw, json)
Hash identifier: jfDe4PtIeovLYx34pZ71DZh8oTod64KYFNf/kgANyNs=
Subject key identifier: 36:96:07:4F:B2:34:73:2E:6B:78:DF:2E:1D:1D:D0:EE:AA:2F:0B:A1
Certificate issuer: /CN=80340326822530f943859c73e7df3d3655168b70
Certificate serial: 01867FA974AB23CDFE333FCD92B0221636DC
Authority key identifier: 80:34:03:26:82:25:30:F9:43:85:9C:73:E7:DF:3D:36:55:16:8B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gDQDJoIlMPlDhZxz5989NlUWi3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/cec311-8989-4f41-a499-b695a4ba0cb6/1/NpYHT7I0cy5reN8uHR3Q7qovC6E.roa
Signing time: Thu 23 Feb 2023 19:04:17 +0000
ROA not before: Thu 23 Feb 2023 19:04:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 77.75.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:a9:74:ab:23:cd:fe:33:3f:cd:92:b0:22:16:36:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80340326822530f943859c73e7df3d3655168b70
Validity
Not Before: Feb 23 19:04:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3696074fb234732e6b78df2e1d1dd0eeaa2f0ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:76:a8:47:33:7e:63:e6:54:ae:d7:2d:87:b9:
6d:b7:f2:76:60:dc:51:e6:bd:63:c4:31:85:1c:2e:
02:6f:4b:9e:98:fb:6a:f3:f1:a3:88:d9:51:2b:70:
97:12:d5:45:5a:17:f7:94:1f:a7:8b:b5:fd:9a:c2:
d5:1a:d0:16:3f:98:10:28:25:84:50:d8:6f:65:37:
0b:a4:6d:cf:bb:cd:7f:55:38:9d:1d:9f:f2:c7:31:
80:40:4d:86:cc:bc:c8:d7:f2:0b:ca:b6:2e:00:70:
3c:f2:21:2a:19:67:8f:28:d8:cc:8d:fb:c9:70:a5:
7e:44:c4:66:ac:14:19:de:3c:cc:e4:4a:e1:f1:3d:
d0:cb:9e:ca:3c:7c:49:72:12:b8:0d:33:91:81:8e:
b4:05:6c:af:b7:db:56:5d:27:f9:2f:d3:3a:eb:60:
9b:86:93:bd:3b:75:05:86:1e:e4:90:f2:ed:9f:18:
db:96:a0:f3:51:69:f4:03:0b:aa:66:4b:0a:eb:63:
87:4e:e6:cc:dc:ab:91:8e:18:f0:74:b3:67:31:ec:
ae:ac:68:3a:06:de:9d:08:24:5d:7e:28:97:2c:d3:
f4:1d:70:6d:64:3c:51:2f:82:c0:2d:57:d8:36:08:
2f:1c:a2:8f:ce:e2:4c:37:f6:d5:e0:08:c5:83:8d:
f4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:96:07:4F:B2:34:73:2E:6B:78:DF:2E:1D:1D:D0:EE:AA:2F:0B:A1
X509v3 Authority Key Identifier:
keyid:80:34:03:26:82:25:30:F9:43:85:9C:73:E7:DF:3D:36:55:16:8B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gDQDJoIlMPlDhZxz5989NlUWi3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cec311-8989-4f41-a499-b695a4ba0cb6/1/NpYHT7I0cy5reN8uHR3Q7qovC6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/cec311-8989-4f41-a499-b695a4ba0cb6/1/gDQDJoIlMPlDhZxz5989NlUWi3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.229.0/24
Signature Algorithm: sha256WithRSAEncryption
72:25:6f:7c:fe:2b:82:dd:af:da:78:63:14:02:ce:c8:23:1c:
82:92:fc:b5:9e:97:c2:4e:57:93:86:8a:9c:7b:21:88:8e:7e:
e8:e8:8b:f8:b9:30:f8:44:71:40:9b:b4:97:00:64:ab:0d:73:
4c:fb:b5:41:2b:59:d6:40:4b:b1:17:a1:e4:0b:dd:9a:4d:ef:
26:54:82:0e:79:b5:8b:6c:11:00:f0:8a:da:3b:cf:4e:e2:a2:
17:8f:34:cd:c2:97:07:a3:cc:05:11:95:0c:4b:fb:e6:6f:d8:
e6:b3:8c:fa:49:86:42:54:c6:8f:0e:08:be:6f:3f:54:62:2d:
bb:95:44:a6:7e:04:0f:fd:d2:6a:22:ee:4e:76:32:56:c0:aa:
2d:3a:13:2f:92:98:7f:1c:a2:50:c1:8a:02:a9:00:01:dc:9d:
c4:96:98:ba:83:8d:a0:5a:5a:b4:ff:01:d6:5d:d1:87:f0:20:
c8:61:56:56:62:27:9a:2a:be:23:4b:32:81:fb:d7:45:fb:96:
01:d8:ab:35:ed:f2:6c:21:66:05:3f:c3:d9:11:f6:13:f2:44:
0b:37:2e:95:2f:23:23:39:05:2d:7d:11:a1:45:70:e7:8f:fd:
22:19:ee:9e:c0:56:3d:c1:8a:eb:11:47:7b:8a:d8:c3:71:c3:
f3:84:db:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:23 2025 by rpki-client