Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/TvKoIdh_pFuNCi4F6pf5cSv6gks.roa
File: TvKoIdh_pFuNCi4F6pf5cSv6gks.roa (raw, json)
Hash identifier: QbjgUo7TYw9nP1rCNV4PYXsS/4ppeG5WbHvf9ZOs79o=
Subject key identifier: 4E:F2:A8:21:D8:7F:A4:5B:8D:0A:2E:05:EA:97:F9:71:2B:FA:82:4B
Certificate issuer: /CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Certificate serial: 01515E9A
Authority key identifier: 86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/TvKoIdh_pFuNCi4F6pf5cSv6gks.roa
Signing time: Sat 01 Jan 2022 06:53:35 +0000
ROA not before: Sat 01 Jan 2022 06:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9910
IP address blocks: 77.72.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22109850 (0x1515e9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866d6a188305a4dc18401aa20d4ce266fd30475e
Validity
Not Before: Jan 1 06:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ef2a821d87fa45b8d0a2e05ea97f9712bfa824b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:a2:0c:81:00:2e:d0:c5:6b:ba:3d:8e:60:
56:fa:e9:66:48:aa:60:fb:05:89:2f:ed:5e:ce:26:
09:62:a0:de:4b:7e:41:55:53:ad:83:3e:bc:08:39:
ea:d2:86:ad:92:ba:1b:a0:1c:53:37:91:1c:7a:44:
19:13:cc:d0:f7:41:bf:a3:de:14:6e:fa:86:85:0c:
d7:37:21:64:cf:ca:5f:cb:f0:b3:1b:93:9c:a0:cd:
b1:83:0b:dc:63:ed:5a:52:9a:19:3d:dc:49:8e:f3:
2a:56:f4:e8:87:2b:f9:7e:62:e7:22:ff:20:ce:bd:
24:91:8f:ff:8e:28:ea:f2:1b:98:ba:d2:7b:ef:72:
9d:79:88:81:9c:be:6d:53:63:c5:ea:e7:bc:46:dc:
45:e5:63:16:ab:36:fe:cf:f9:04:ce:22:56:d7:e7:
ed:83:de:6d:57:35:45:e2:6f:d0:ca:64:4e:a3:95:
15:d5:73:24:2a:21:85:5d:00:00:8f:d1:e1:95:ff:
ca:44:32:69:dc:95:97:fa:22:78:50:b9:a3:b4:13:
47:56:f5:60:4b:47:67:81:5d:48:05:d2:1c:79:6d:
dc:ab:e1:13:f7:1a:2c:b4:00:57:1f:a9:f8:f4:9e:
6c:c7:b1:c1:0e:73:1a:28:8b:9e:72:0c:3c:df:ff:
3c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F2:A8:21:D8:7F:A4:5B:8D:0A:2E:05:EA:97:F9:71:2B:FA:82:4B
X509v3 Authority Key Identifier:
keyid:86:6D:6A:18:83:05:A4:DC:18:40:1A:A2:0D:4C:E2:66:FD:30:47:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hm1qGIMFpNwYQBqiDUziZv0wR14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/TvKoIdh_pFuNCi4F6pf5cSv6gks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56a650-da30-4fe6-ac71-5e01194597db/1/hm1qGIMFpNwYQBqiDUziZv0wR14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.80.0/24
Signature Algorithm: sha256WithRSAEncryption
62:3e:58:d4:fc:f8:dc:f9:e5:c9:85:0b:01:89:3d:64:d0:3a:
fa:bf:f4:65:10:0a:eb:57:0c:0d:6e:e2:77:b4:b5:30:9d:da:
b5:16:ed:08:a1:d2:88:4c:b0:00:f7:9b:1c:79:04:20:7b:6d:
7a:5c:6d:68:d2:83:ac:0d:7e:f9:1c:41:cf:85:03:2b:c7:f9:
a5:13:ac:d9:ea:09:2f:f0:72:d8:8e:1f:77:c2:1c:7f:c1:a9:
6b:d8:93:8f:2e:2f:22:d6:b2:b0:d8:cc:b4:be:89:25:71:4c:
df:a9:06:34:0b:7b:da:30:56:8e:84:89:33:ac:e9:8c:16:e7:
07:45:46:65:2a:c5:de:31:76:2e:f2:50:d1:03:c6:cb:4d:d9:
ba:94:ca:60:b3:c4:a5:30:90:9b:31:60:f2:4c:e8:ad:26:58:
3b:47:26:b5:fd:fc:24:d9:97:09:ff:f6:ed:c3:9a:1d:a1:7e:
1f:f9:da:16:68:a4:9c:b7:3d:ea:22:ce:3a:64:8a:e7:42:89:
6b:54:fe:8d:c5:9b:07:8d:a8:74:5e:f9:d6:45:95:7b:80:4c:
34:c3:2b:46:d0:01:73:7f:15:55:3e:57:6c:86:95:4a:7e:37:
22:0f:f3:49:cd:cb:73:32:87:2f:f7:99:bc:7c:c7:70:56:67:
cf:c1:0f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:25 2025 by rpki-client