Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/9BvoWLu3ghqQINVI0q66oGiWIfM.roa
File: 9BvoWLu3ghqQINVI0q66oGiWIfM.roa (raw, json)
Hash identifier: 8Y9QLvAo20t46jqSUF52Le1ymbWX1M/hK0E3iGxl7f0=
Subject key identifier: F4:1B:E8:58:BB:B7:82:1A:90:20:D5:48:D2:AE:BA:A0:68:96:21:F3
Certificate issuer: /CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Certificate serial: 01856D663C272E527E3707EA76DA0A6702AF
Authority key identifier: 86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/9BvoWLu3ghqQINVI0q66oGiWIfM.roa
Signing time: Sun 01 Jan 2023 12:54:54 +0000
ROA not before: Sun 01 Jan 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147001
IP address blocks: 77.72.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:3c:27:2e:52:7e:37:07:ea:76:da:0a:67:02:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Validity
Not Before: Jan 1 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f41be858bbb7821a9020d548d2aebaa0689621f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:64:b3:05:7d:10:05:63:d6:15:be:11:fa:
aa:66:73:a7:5f:80:d0:aa:8d:ef:38:61:1d:76:b3:
e9:54:e6:99:55:1a:e2:5f:18:bf:72:6e:5c:6c:0a:
a6:a0:da:2b:91:dd:70:34:7c:5b:d1:7b:b1:5b:07:
7a:d1:82:37:42:24:dc:68:0a:a2:c8:7e:2c:18:9f:
de:4c:f0:33:01:3d:aa:d2:82:bc:14:44:bd:a2:5f:
27:96:f3:46:d0:4b:f2:e6:22:28:9c:0c:08:8d:49:
26:55:2e:d5:04:b9:56:d8:9e:23:fe:2b:37:cb:0d:
14:95:06:17:df:82:30:61:aa:1b:90:fd:20:87:ee:
dd:1b:7a:89:4c:2c:46:ad:8c:95:bd:29:f0:17:d0:
aa:5c:a3:f5:bc:41:6e:00:a5:b0:10:3e:ba:69:77:
86:26:c9:68:b3:0b:1a:97:ea:e5:a3:8e:68:27:1e:
59:d1:0c:fa:4f:99:4a:23:0f:9f:3c:ae:11:87:ef:
b0:2c:ad:01:b9:99:7d:17:bc:57:5d:b3:0f:4a:66:
f1:e0:66:55:a9:12:c3:91:63:bb:d7:09:cc:d8:12:
da:2e:02:26:5f:bb:05:70:5f:ec:30:fd:92:50:c9:
58:0f:8a:5d:11:52:3f:c4:be:b5:61:8e:fc:a5:f4:
2b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1B:E8:58:BB:B7:82:1A:90:20:D5:48:D2:AE:BA:A0:68:96:21:F3
X509v3 Authority Key Identifier:
keyid:86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/9BvoWLu3ghqQINVI0q66oGiWIfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/hm1qGIMFpNwYQBqiDUziZv0wR14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.80.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6f:74:2d:e2:b4:5e:8f:a3:34:bc:42:5a:2d:37:fa:fb:d8:
4e:17:66:c0:62:56:ef:71:52:79:1d:ad:3e:47:18:44:c4:98:
a7:ba:d0:f6:ad:69:86:1d:f9:5f:dc:40:54:7e:27:72:bc:64:
71:b6:96:67:ab:0b:2d:9f:25:79:9f:67:f7:05:4b:cf:67:0b:
72:3f:7f:e2:02:f4:f2:9a:fd:0c:ef:26:0e:98:e7:bf:27:84:
28:92:87:79:eb:a4:9d:1d:e0:3b:89:d4:e1:c9:2a:2a:f1:c4:
6d:8d:6b:3a:84:30:72:b4:19:84:67:b4:8d:dd:4a:a4:64:67:
f9:4a:44:ae:25:d2:91:39:3e:96:28:c8:d9:4d:2e:51:c0:70:
db:47:de:f6:b8:8a:93:17:98:bc:2a:b3:6e:8a:31:f6:18:db:
3c:c1:49:45:99:2b:80:07:b7:aa:44:2b:91:82:d6:c7:28:ad:
bc:bb:ac:4d:26:d6:67:32:7a:2e:85:ea:2e:ab:3d:a6:c0:ec:
25:b7:1f:24:54:66:2e:ba:ab:ab:ef:f0:d2:2a:ae:45:eb:84:
96:76:d9:44:6e:c3:8f:84:c9:0e:37:d9:36:74:a3:a3:48:a0:
b1:3d:3a:c5:2f:09:49:2e:83:d9:b3:7b:87:a5:e1:d2:94:93:
8b:c1:49:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:39 2024 by rpki-client on console-ams.rpki-client.org