Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/22f80f-3a08-49c6-b405-354b11af233e/1/xxT8grXnmq40HsKuG1Zwf8qr5yM.roa
File: xxT8grXnmq40HsKuG1Zwf8qr5yM.roa (raw, json)
Hash identifier: Q9jgD1xIS5+5fspqYSArTtS7aFho5oJiLf020/LBelY=
Subject key identifier: C7:14:FC:82:B5:E7:9A:AE:34:1E:C2:AE:1B:56:70:7F:CA:AB:E7:23
Certificate issuer: /CN=d50ca5213413c70a9e83b47a82a7c4579dd4c196
Certificate serial: 019425216C187CE790FAE234CAFD4CE385E5
Authority key identifier: D5:0C:A5:21:34:13:C7:0A:9E:83:B4:7A:82:A7:C4:57:9D:D4:C1:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QylITQTxwqeg7R6gqfEV53UwZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/22f80f-3a08-49c6-b405-354b11af233e/1/xxT8grXnmq40HsKuG1Zwf8qr5yM.roa
Signing time: Thu 02 Jan 2025 03:48:54 +0000
ROA not before: Thu 02 Jan 2025 03:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200428
IP address blocks: 77.93.92.0/22 maxlen: 24
77.93.93.0/24 maxlen: 24
77.93.94.0/24 maxlen: 24
77.93.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:6c:18:7c:e7:90:fa:e2:34:ca:fd:4c:e3:85:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50ca5213413c70a9e83b47a82a7c4579dd4c196
Validity
Not Before: Jan 2 03:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c714fc82b5e79aae341ec2ae1b56707fcaabe723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:ba:e5:cc:c9:93:6c:3b:85:12:6d:89:50:
16:86:52:dc:9a:6c:25:03:ae:d8:59:f5:3f:0d:ff:
68:ab:ed:e3:dd:b5:20:60:c9:b4:5e:66:39:10:32:
26:de:61:1c:98:d8:89:ca:0c:f5:44:6d:ff:3a:5d:
59:b6:a2:d1:c7:86:46:bb:da:dd:1c:4d:d6:6b:61:
92:2d:3c:bc:75:ca:8a:00:22:a9:ef:f5:bf:1e:cc:
9b:83:d4:ce:5d:d2:c5:54:e0:50:27:61:10:48:3b:
e1:4a:6e:a8:a3:3c:34:77:23:2b:c2:44:c8:0a:5f:
5e:89:44:b9:d4:95:85:6d:97:40:89:30:fe:74:ad:
02:8f:8d:69:59:16:18:22:9d:96:cf:35:30:fd:21:
af:cb:14:2c:2b:df:4f:2c:a4:4f:4d:1d:92:69:b6:
97:0a:bc:61:0d:7d:90:58:77:88:eb:9f:29:26:83:
e5:76:1a:16:3f:32:3b:5b:8a:ff:c1:af:c5:cf:69:
37:33:4e:97:34:25:c0:1f:5f:3e:04:0e:c5:f1:b4:
8b:a7:a3:1b:e3:92:7a:8c:a8:bb:b8:2d:bd:66:c1:
8a:1b:22:be:f7:1c:f8:2f:65:88:14:53:1b:b0:52:
dd:7a:db:67:36:e3:28:70:73:f8:b0:1b:d3:03:44:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:14:FC:82:B5:E7:9A:AE:34:1E:C2:AE:1B:56:70:7F:CA:AB:E7:23
X509v3 Authority Key Identifier:
keyid:D5:0C:A5:21:34:13:C7:0A:9E:83:B4:7A:82:A7:C4:57:9D:D4:C1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QylITQTxwqeg7R6gqfEV53UwZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/22f80f-3a08-49c6-b405-354b11af233e/1/xxT8grXnmq40HsKuG1Zwf8qr5yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/22f80f-3a08-49c6-b405-354b11af233e/1/1QylITQTxwqeg7R6gqfEV53UwZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.92.0/22
Signature Algorithm: sha256WithRSAEncryption
69:56:80:47:59:b2:7c:ae:22:12:59:3a:3c:87:19:b1:c4:fe:
70:d7:b1:c2:39:8c:eb:6a:88:0b:98:a2:c5:d8:bc:0c:0b:44:
74:ef:97:9d:21:8a:45:fb:05:48:4e:6f:b2:ac:76:6a:d7:ab:
17:1c:25:e2:5f:10:c0:87:0d:2c:ad:76:5a:70:62:a9:a8:84:
88:a8:ef:ce:3b:6a:12:f9:4e:c3:60:7d:a0:18:2a:cb:37:e7:
58:0e:70:f6:80:ad:2a:36:f0:f2:c5:5f:5e:c8:61:4f:b3:06:
0a:56:08:75:8a:78:3c:bc:6f:e7:15:66:b5:2e:2c:88:b7:f8:
47:3e:40:a8:f7:be:01:8a:c3:2b:af:bd:36:78:d9:bd:01:82:
b3:a5:ba:55:96:af:01:1e:9f:ec:8d:78:32:2f:32:cb:c4:08:
27:f5:29:ed:50:49:ed:69:c9:ae:b5:44:6d:38:d1:7c:ab:50:
c0:ac:4f:e9:e3:a9:86:2d:19:c7:0c:1b:2c:db:5b:48:bf:99:
c9:ad:27:70:22:58:c6:52:c9:69:46:19:6f:37:1d:e2:18:ab:
64:86:dd:be:a7:0d:60:ea:da:87:02:48:33:95:a7:79:97:9f:
89:de:aa:28:41:64:e6:f1:e4:57:7f:65:8c:9b:dc:5a:90:4b:
b3:79:61:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:30 2025 by rpki-client