Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/fda92d-51e3-43b1-ab83-3ed1980c6dfb/1/2Kiy1WSmV7Dq7Td8J-n4FcvSsGw.roa
File: 2Kiy1WSmV7Dq7Td8J-n4FcvSsGw.roa (raw, json)
Hash identifier: tttUJTGAYC3RqzU1RifXgNxBAkg2TTjNtVno15vDMZM=
Subject key identifier: D8:A8:B2:D5:64:A6:57:B0:EA:ED:37:7C:27:E9:F8:15:CB:D2:B0:6C
Certificate issuer: /CN=216ab1726cb6283e2393918bfe914bb0761a54f1
Certificate serial: 018964C04ED7B9BAD04FDCE95FD8C25F66B9
Authority key identifier: 21:6A:B1:72:6C:B6:28:3E:23:93:91:8B:FE:91:4B:B0:76:1A:54:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWqxcmy2KD4jk5GL_pFLsHYaVPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/fda92d-51e3-43b1-ab83-3ed1980c6dfb/1/2Kiy1WSmV7Dq7Td8J-n4FcvSsGw.roa
Signing time: Mon 17 Jul 2023 16:47:51 +0000
ROA not before: Mon 17 Jul 2023 16:47:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 77.72.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:4e:d7:b9:ba:d0:4f:dc:e9:5f:d8:c2:5f:66:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=216ab1726cb6283e2393918bfe914bb0761a54f1
Validity
Not Before: Jul 17 16:47:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8a8b2d564a657b0eaed377c27e9f815cbd2b06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:b0:dc:9b:ca:d5:c5:69:44:37:fe:f0:c3:
14:67:33:9b:d8:51:77:0d:5e:e0:2d:a4:60:84:5e:
9c:31:9b:49:3c:0d:1f:ff:d8:bb:2a:a3:2f:6f:67:
84:72:05:64:f4:15:89:b7:4b:73:30:c1:de:6c:69:
15:97:69:b6:03:96:99:cd:61:84:d9:61:50:1d:91:
75:33:63:50:4f:6d:ba:85:f2:4b:7f:cb:2b:8c:39:
ea:f8:c8:e9:6c:c1:2e:76:10:f7:79:5d:96:59:1c:
79:cf:4e:be:c1:70:64:2c:59:77:f4:ee:b5:24:73:
4b:b5:e0:f9:fd:44:57:7f:98:86:55:5a:43:31:a1:
f7:71:a4:fc:e7:cb:e0:b4:32:f1:fa:45:67:1c:d5:
ea:1f:a3:2e:ee:2b:11:73:75:a5:51:f1:51:8d:33:
d0:c6:c6:93:e2:21:5c:ac:55:b4:ea:46:b7:66:4a:
fe:53:d7:a1:b0:23:02:33:b4:6e:e1:94:f3:0d:56:
60:89:92:4f:1f:ad:45:78:87:cf:e3:a1:b2:67:67:
55:9f:21:a2:18:d5:8d:80:c2:28:46:9f:d9:71:49:
7a:43:40:24:11:2f:fa:2f:87:87:64:f1:19:7d:a1:
0b:3e:34:64:89:01:ed:73:de:e3:27:95:bc:1c:18:
de:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A8:B2:D5:64:A6:57:B0:EA:ED:37:7C:27:E9:F8:15:CB:D2:B0:6C
X509v3 Authority Key Identifier:
keyid:21:6A:B1:72:6C:B6:28:3E:23:93:91:8B:FE:91:4B:B0:76:1A:54:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWqxcmy2KD4jk5GL_pFLsHYaVPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/fda92d-51e3-43b1-ab83-3ed1980c6dfb/1/2Kiy1WSmV7Dq7Td8J-n4FcvSsGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/fda92d-51e3-43b1-ab83-3ed1980c6dfb/1/IWqxcmy2KD4jk5GL_pFLsHYaVPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.83.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2b:23:c0:d5:36:0d:db:f3:39:d2:77:80:34:f6:cb:e8:61:
a9:6d:73:2b:d0:ee:50:83:1a:78:bb:68:f1:e5:17:0e:ef:6e:
05:bf:c4:2d:56:44:95:94:c4:e9:28:d8:33:d3:6a:5a:b1:d6:
4c:8a:f4:04:3c:78:24:19:da:4f:d8:79:ab:5b:74:1c:47:24:
83:44:67:fe:32:75:1f:0d:0d:5b:6e:e7:ba:dc:46:a0:85:93:
25:41:6c:cf:0a:3b:02:d2:e7:29:f6:e4:1f:e6:0f:73:16:75:
d2:3e:48:14:76:de:d3:e1:a2:84:fa:a9:18:6a:43:b4:9c:22:
b8:7f:8b:23:99:7f:de:e1:47:65:f4:ac:b7:70:59:a5:7d:09:
82:de:3e:c3:c3:b5:6b:98:51:0a:2f:70:b8:80:c5:ab:a0:20:
f3:fa:b6:13:e9:f0:56:05:56:7c:7b:e9:69:f8:bb:fa:06:8f:
aa:30:c4:4b:48:28:23:da:94:7b:26:40:2c:99:a3:39:ca:4d:
24:7a:90:1c:f4:d0:38:ff:ad:cf:da:8f:93:77:fe:a8:72:68:
12:01:21:b6:6c:16:5b:3f:3a:45:c8:9d:79:12:dc:da:75:6f:
34:5f:d2:b2:7c:f3:ef:fa:ed:5d:b1:d1:66:e9:aa:61:e8:e0:
65:30:95:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 18 09:24:16 2023 by rpki-client on console-fra.rpki-client.org