Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/cb0683-bd45-4d03-b891-64f223f06599/1/hyz7yaEZoTWJgdBnc74DS6Mi9NY.roa
File: hyz7yaEZoTWJgdBnc74DS6Mi9NY.roa (raw, json)
Hash identifier: yEaoDvLHDF7jTelkXchifWj/tVCgxgJEZnVn1Z7gXBY=
Subject key identifier: 87:2C:FB:C9:A1:19:A1:35:89:81:D0:67:73:BE:03:4B:A3:22:F4:D6
Certificate issuer: /CN=e06ebea64c464dff30177b57d6028b67d1ee862e
Certificate serial: 01828760C2DB1A063D8D8F5114D47900A88D
Authority key identifier: E0:6E:BE:A6:4C:46:4D:FF:30:17:7B:57:D6:02:8B:67:D1:EE:86:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4G6-pkxGTf8wF3tX1gKLZ9Huhi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/cb0683-bd45-4d03-b891-64f223f06599/1/hyz7yaEZoTWJgdBnc74DS6Mi9NY.roa
Signing time: Wed 10 Aug 2022 10:50:41 +0000
ROA not before: Wed 10 Aug 2022 10:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55331
IP address blocks: 37.77.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:60:c2:db:1a:06:3d:8d:8f:51:14:d4:79:00:a8:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e06ebea64c464dff30177b57d6028b67d1ee862e
Validity
Not Before: Aug 10 10:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=872cfbc9a119a1358981d06773be034ba322f4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:aa:32:55:eb:f8:ce:ff:27:99:44:0c:5d:7a:
cf:6e:ca:34:dc:06:28:83:be:31:99:30:0c:fd:38:
79:c1:57:45:27:84:75:fa:d6:fe:da:bd:60:9f:e2:
cc:f7:74:ab:29:d4:eb:63:ba:91:1c:6c:2e:78:c9:
f6:c0:0a:95:9b:9f:24:85:6e:97:99:34:88:f7:18:
85:5f:76:59:9a:c4:03:0d:73:19:93:a5:87:9a:77:
40:f7:d6:06:52:57:55:40:87:87:61:72:90:b4:d2:
0b:53:9a:1c:97:fd:35:21:df:26:a1:ff:ca:da:ee:
6f:6e:44:c8:e5:76:8e:37:8a:e7:c7:1c:e2:b4:85:
07:68:a3:04:0e:81:96:54:80:77:a2:c9:9e:65:9f:
97:9d:98:8d:47:af:1a:8d:d0:d8:4f:b9:aa:53:89:
82:f7:e4:84:79:71:de:d4:2d:0e:af:6e:08:f9:59:
20:bc:85:53:48:4a:5d:d1:e0:c8:47:d7:82:d8:d2:
b7:ae:6a:c5:2e:11:46:be:42:70:67:e0:75:54:3f:
30:56:bf:20:1d:d5:2e:4d:d3:8b:3b:6e:ee:30:24:
aa:56:6d:84:91:c6:dc:79:66:a6:83:2c:12:2f:d3:
a8:30:e9:91:4a:c1:5c:ca:42:71:22:b6:6c:77:20:
a8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2C:FB:C9:A1:19:A1:35:89:81:D0:67:73:BE:03:4B:A3:22:F4:D6
X509v3 Authority Key Identifier:
keyid:E0:6E:BE:A6:4C:46:4D:FF:30:17:7B:57:D6:02:8B:67:D1:EE:86:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4G6-pkxGTf8wF3tX1gKLZ9Huhi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/cb0683-bd45-4d03-b891-64f223f06599/1/hyz7yaEZoTWJgdBnc74DS6Mi9NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/cb0683-bd45-4d03-b891-64f223f06599/1/4G6-pkxGTf8wF3tX1gKLZ9Huhi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.149.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b0:c1:f3:f5:30:22:1e:7b:ae:00:f5:cf:e9:fd:a8:15:60:
b8:d8:19:39:99:73:4c:22:bf:4a:c3:b2:5b:cd:47:2a:36:dd:
b1:9e:e7:2e:ee:e5:b3:1a:45:9a:bf:20:1f:0b:1b:7e:11:f3:
ff:09:93:b6:e0:a2:f1:e3:b5:76:f3:a1:dd:2f:c6:99:e4:b3:
c8:75:70:05:d4:ec:4a:be:96:21:11:a9:07:f6:33:c7:15:68:
72:24:75:12:9b:1a:3d:2f:e3:2f:13:b7:d9:f0:f4:87:98:61:
23:36:75:c7:2e:86:35:0d:a0:15:48:4e:cd:b5:80:06:f2:24:
bd:66:e1:91:ee:6e:80:8c:16:28:f1:45:a5:a1:da:0a:c8:d8:
1a:8f:33:5a:a3:cc:fd:3e:37:5d:06:b1:de:2f:4d:eb:08:84:
3b:82:22:a3:5c:69:e0:6c:f8:03:d5:7c:43:9d:c7:a6:b4:c3:
40:82:55:5f:d2:cc:63:13:f7:19:b7:e3:27:b9:ca:1f:bd:a1:
0c:e8:ce:34:93:a1:f6:a2:3d:3a:7e:86:4a:77:e9:e1:33:3e:
cd:32:bd:4f:ef:58:53:a4:91:2c:d4:a6:5c:6a:34:7a:e6:40:
5b:5e:9d:87:8a:37:72:46:ab:62:13:cb:e8:f4:d6:02:5f:12:
38:89:cd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:47 2025 by rpki-client