Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/rVSBtBZCrH1-ozjLs4EWsLxZEKw.roa
File: rVSBtBZCrH1-ozjLs4EWsLxZEKw.roa (raw, json)
Hash identifier: qYE3kOU/oBIWRjp9IVavev7WPsnGehT5UmTJ3lg1M9g=
Subject key identifier: AD:54:81:B4:16:42:AC:7D:7E:A3:38:CB:B3:81:16:B0:BC:59:10:AC
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 01942825B1762A58254A14E37C5691989BEF
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/rVSBtBZCrH1-ozjLs4EWsLxZEKw.roa
Signing time: Thu 02 Jan 2025 17:52:26 +0000
ROA not before: Thu 02 Jan 2025 17:52:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20750
IP address blocks: 77.76.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:b1:76:2a:58:25:4a:14:e3:7c:56:91:98:9b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 2 17:52:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad5481b41642ac7d7ea338cbb38116b0bc5910ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6d:1b:08:38:d1:3e:7a:42:86:d5:8a:ce:21:
6b:7e:f5:79:8f:98:aa:91:63:64:4a:83:a0:91:8c:
3e:f1:4d:f6:34:17:c8:85:92:35:d7:e0:20:1c:8e:
d0:5e:ca:60:2f:fd:4d:b5:5c:a3:02:82:66:af:fa:
5d:ce:9f:af:39:f0:c1:70:74:a8:cd:a2:09:43:23:
b3:92:62:0f:78:c5:f9:36:6e:97:8f:13:9b:7b:75:
eb:4b:44:67:3f:89:76:54:d9:e9:45:12:36:ca:35:
a9:54:4c:55:46:00:b2:db:14:a9:ed:f1:f3:fd:3b:
4f:35:e2:42:77:8e:8c:66:b4:ea:22:69:63:42:38:
3d:54:02:54:16:24:e8:5e:08:2c:93:80:64:65:ab:
4d:bd:9b:87:a6:c0:2f:a2:76:14:9c:60:62:22:d0:
c2:b8:e8:78:a5:43:4a:15:f5:28:a4:60:ff:19:56:
1b:2e:25:ef:66:e6:55:99:64:36:8e:76:4d:64:83:
26:15:c2:89:2d:36:d5:09:c2:f4:4d:93:dc:bb:16:
c9:ba:73:48:4c:1b:01:5c:8a:e7:ec:aa:85:6b:e1:
e8:79:d0:b5:60:b1:fa:cd:62:f7:58:b8:c5:64:2a:
a1:8a:85:72:c8:15:f8:c2:9a:86:ec:bf:3f:25:e9:
30:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:54:81:B4:16:42:AC:7D:7E:A3:38:CB:B3:81:16:B0:BC:59:10:AC
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/rVSBtBZCrH1-ozjLs4EWsLxZEKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.136.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b3:e3:1a:14:51:5b:61:d8:33:3d:12:f0:35:20:34:f2:9e:
f4:f7:6c:4c:46:0a:6d:31:24:05:ff:4e:29:5e:01:73:1c:72:
dd:76:50:b4:38:21:16:d2:87:eb:02:33:bf:93:a5:fb:72:b6:
79:8f:7b:fa:c3:4f:2e:3c:a4:9d:35:59:91:38:e2:45:8c:c5:
98:2f:ae:f4:dd:32:47:58:23:9d:10:2e:18:b1:4b:47:d8:6e:
5c:4c:f1:47:0e:39:11:ae:c7:6c:cc:f3:6c:b1:9e:f1:07:43:
ff:cd:ad:a7:28:f7:0e:fa:f3:a1:fb:a9:fa:65:36:e2:44:d1:
4b:46:23:13:cb:59:66:bc:53:fe:68:0d:cd:89:ca:70:09:09:
fd:d1:c7:b3:51:93:80:69:20:49:a3:59:e4:86:3b:0d:72:4f:
2c:49:fe:c3:e4:10:76:e0:6b:26:ce:db:64:3d:78:37:21:a1:
2c:e3:99:69:c9:98:68:45:48:93:a2:bd:85:3c:43:a7:b4:c3:
39:52:32:64:5e:7e:a3:25:5c:38:58:ba:ea:d7:ff:a3:96:66:
70:8d:fb:ed:ac:a7:35:dd:c6:4f:6a:c8:a3:9a:0d:a0:01:4c:
ef:38:a0:af:c9:ca:a7:da:81:89:2a:56:c7:7c:52:84:67:9d:
b0:8e:d2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:46:38 2025 by rpki-client