Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/y8a09sHjWHM5T2xCi9njj3ZdPYg.roa
File: y8a09sHjWHM5T2xCi9njj3ZdPYg.roa (raw, json)
Hash identifier: CAxwtV7q/TGnHiFNWAua77bFrVfKg4wLI65YyM+74Qo=
Subject key identifier: CB:C6:B4:F6:C1:E3:58:73:39:4F:6C:42:8B:D9:E3:8F:76:5D:3D:88
Certificate issuer: /CN=88f0c1d10e4e5a71e3cd5c5d6beebf778a06e304
Certificate serial: 01942521F9F65F804809C9374320188C6FD1
Authority key identifier: 88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/y8a09sHjWHM5T2xCi9njj3ZdPYg.roa
Signing time: Thu 02 Jan 2025 03:49:31 +0000
ROA not before: Thu 02 Jan 2025 03:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199837
IP address blocks: 77.83.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:f9:f6:5f:80:48:09:c9:37:43:20:18:8c:6f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f0c1d10e4e5a71e3cd5c5d6beebf778a06e304
Validity
Not Before: Jan 2 03:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbc6b4f6c1e35873394f6c428bd9e38f765d3d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:30:ec:94:64:cb:06:f0:c6:7f:ed:5b:e7:55:
5c:8e:ba:b6:c0:f2:02:64:88:20:fa:5f:b0:c6:df:
5b:b6:9f:fa:df:fb:8a:9e:a4:40:80:81:8b:82:ba:
01:c8:2a:7f:0a:4d:d5:e2:4d:8a:37:0c:78:d3:30:
92:ec:f9:ab:9c:fe:f4:de:10:b7:78:7a:77:c4:59:
3f:b4:87:cc:77:78:4b:8b:32:5a:e5:83:40:3f:7c:
2a:05:8c:64:3c:f2:e2:ae:0b:ae:e5:d9:60:1c:99:
60:23:ae:8d:8c:f9:c6:86:73:aa:d0:69:06:e0:e2:
28:e8:ba:e4:27:1d:5f:14:2c:c0:68:35:5f:d7:55:
a0:8f:a8:cc:7f:f8:47:07:c9:69:bd:91:7d:1d:b9:
11:f9:6a:3d:18:d1:43:84:e8:1d:9a:6b:75:bb:1e:
e8:86:2a:a6:61:cb:88:5e:a6:20:6f:67:4d:bc:13:
1f:9b:36:d1:6c:dd:44:3e:66:9e:c2:f3:5b:a2:6f:
f3:cd:f8:32:87:6e:42:92:a4:c4:a5:5c:fd:e3:e9:
75:40:65:75:8b:95:5f:ad:ed:f3:8f:20:91:48:b0:
b8:9d:fb:97:4d:55:fd:56:5f:27:ef:cf:c4:f6:37:
54:cf:53:11:ea:95:b9:fa:20:17:42:99:2f:e2:7a:
1e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C6:B4:F6:C1:E3:58:73:39:4F:6C:42:8B:D9:E3:8F:76:5D:3D:88
X509v3 Authority Key Identifier:
keyid:88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/y8a09sHjWHM5T2xCi9njj3ZdPYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.216.0/22
Signature Algorithm: sha256WithRSAEncryption
15:e0:59:1c:75:dd:ee:d4:86:88:e2:b3:6d:e0:65:02:75:30:
8c:57:09:28:0a:b3:e1:0a:e6:a7:d8:03:20:2c:0b:57:de:ac:
a7:42:f5:18:81:d7:a5:c5:66:b1:d6:c7:1b:07:08:4c:c9:c9:
f8:30:67:d3:bd:d3:77:92:0c:4c:68:ae:0a:e4:7a:f0:0f:6a:
34:5e:27:43:f5:a3:56:fd:28:c0:68:1b:51:e1:c1:4a:7e:28:
92:b5:cd:07:fd:54:56:a3:fa:71:c7:a4:a1:7d:d8:ec:35:6d:
7c:eb:b3:e6:e0:79:06:c1:af:de:9c:c3:3d:c0:4f:da:34:08:
55:2e:d7:1d:3e:31:4c:96:3c:8b:56:cf:e7:cc:6c:c0:d7:c6:
57:9e:53:86:49:d4:3f:bd:ad:d0:0b:bf:96:46:2f:d7:57:3a:
ba:f8:83:96:80:d7:a2:fb:20:83:2a:94:6a:e6:45:c1:96:55:
93:3a:02:26:55:b0:8a:88:c2:01:dc:27:2f:fd:a5:33:fd:b9:
8e:31:c8:df:73:ac:46:9b:ed:64:3f:93:09:ac:7f:c6:f4:b8:
7c:90:c8:12:72:04:a7:3d:e6:35:f7:0c:2d:31:35:a3:93:40:
98:d2:a7:dc:37:47:f9:b9:d7:c5:a2:f9:37:dd:e3:0e:cc:54:
db:76:c9:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:11:37 2025 by rpki-client