Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/447964-0765-4bcb-a760-7248c85e5eb8/1/OQrRW_vB3Rcab0rBMTnnFDEQjK0.roa
File: OQrRW_vB3Rcab0rBMTnnFDEQjK0.roa (raw, json)
Hash identifier: nbSCsodHDE4Vt8HCVxwvjU0TP/Nukw0xf6pkJ0YaHS0=
Subject key identifier: 39:0A:D1:5B:FB:C1:DD:17:1A:6F:4A:C1:31:39:E7:14:31:10:8C:AD
Certificate issuer: /CN=a0e03c7792a884734ecd34eb42c7c5049f0c769e
Certificate serial: 01857246C3E73BC2002F8E8477D4D88A206B
Authority key identifier: A0:E0:3C:77:92:A8:84:73:4E:CD:34:EB:42:C7:C5:04:9F:0C:76:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOA8d5KohHNOzTTrQsfFBJ8Mdp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/447964-0765-4bcb-a760-7248c85e5eb8/1/OQrRW_vB3Rcab0rBMTnnFDEQjK0.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57619
IP address blocks: 77.71.112.0/23 maxlen: 23
77.71.112.0/22 maxlen: 22
77.71.112.0/24 maxlen: 24
77.71.113.0/24 maxlen: 24
77.71.114.0/24 maxlen: 24
77.71.114.0/23 maxlen: 23
77.71.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c3:e7:3b:c2:00:2f:8e:84:77:d4:d8:8a:20:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e03c7792a884734ecd34eb42c7c5049f0c769e
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=390ad15bfbc1dd171a6f4ac13139e71431108cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:bf:02:4b:89:a3:40:e3:a4:f5:92:a8:f4:
c2:25:20:5d:31:62:65:d8:87:9c:92:e3:5f:f1:d7:
46:db:6f:ce:32:dc:2b:94:e8:6a:b3:f1:00:cf:90:
bc:de:17:fe:3e:5b:e0:f0:4c:9d:2a:31:e9:2a:75:
0f:45:92:d0:f6:7d:71:7a:04:6d:19:fb:3d:37:63:
dc:2a:2a:ca:7f:5b:43:ea:9d:8c:0e:13:ca:de:58:
f8:94:fc:26:89:aa:62:68:d5:0b:94:bb:85:35:f7:
3f:96:50:48:7c:f5:50:60:96:72:8e:ac:20:5a:c2:
bc:99:ac:6f:fa:73:88:cd:45:93:02:a4:de:30:84:
2c:41:fd:ef:28:d5:21:88:fc:59:8e:fc:e7:19:96:
1b:c4:aa:3d:ad:6c:b9:b0:39:34:cd:ba:20:43:0a:
b4:b7:6c:d7:71:98:6c:a9:2b:54:6a:a0:df:3a:6a:
d9:cb:41:0e:ce:e5:ea:b0:bd:71:b6:2c:f6:03:31:
fb:f0:66:2f:d7:d7:8c:91:61:51:da:09:9f:28:c3:
a0:b1:44:dc:52:dc:ce:67:b7:9c:3b:99:f0:cd:79:
85:77:f1:5a:3c:f9:c3:f9:57:df:e5:ad:55:5b:64:
2f:a8:50:60:51:25:a5:57:b7:0f:9f:af:8c:c9:2d:
b6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0A:D1:5B:FB:C1:DD:17:1A:6F:4A:C1:31:39:E7:14:31:10:8C:AD
X509v3 Authority Key Identifier:
keyid:A0:E0:3C:77:92:A8:84:73:4E:CD:34:EB:42:C7:C5:04:9F:0C:76:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOA8d5KohHNOzTTrQsfFBJ8Mdp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/447964-0765-4bcb-a760-7248c85e5eb8/1/OQrRW_vB3Rcab0rBMTnnFDEQjK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/447964-0765-4bcb-a760-7248c85e5eb8/1/oOA8d5KohHNOzTTrQsfFBJ8Mdp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.71.112.0/22
Signature Algorithm: sha256WithRSAEncryption
89:68:1b:08:5e:e5:ad:bf:83:79:94:c8:03:17:bc:d2:69:d0:
22:21:1f:d1:28:ae:a3:b1:eb:d9:19:ef:aa:be:bb:8d:0d:3e:
a3:a3:91:9e:a2:e3:e8:72:fe:13:2c:0a:db:2d:54:f6:8d:1d:
dc:04:aa:05:4d:e3:2b:52:07:7b:70:5e:57:68:42:1d:61:53:
41:0c:71:3e:15:92:2a:c1:3a:b0:eb:92:2b:65:8e:98:ee:05:
c3:cf:9d:9c:6f:f5:08:11:86:11:3a:24:56:9f:53:cc:c4:02:
5c:26:1a:4b:fd:ae:58:d9:70:6a:ff:47:ac:e1:f2:60:64:f7:
41:06:98:5a:90:31:84:20:58:f2:3d:cb:d7:1d:da:55:42:2e:
99:45:8f:2f:cc:f0:6d:7e:b2:78:80:3d:82:a9:97:d2:41:80:
2a:72:06:c4:d2:00:3c:b8:d2:24:50:14:eb:79:a9:68:d1:f1:
46:65:71:a8:65:c9:a6:9b:f0:41:69:dd:2b:b6:e1:86:f4:2a:
28:61:c7:32:c5:46:61:62:4a:42:a5:e0:dc:58:de:ec:93:88:
41:90:2e:06:ac:78:9b:aa:4e:a8:47:92:da:7f:11:d2:9a:b4:
c1:7f:a6:f7:a7:24:c8:6f:63:d3:f6:a3:5f:52:bb:b4:7b:9f:
42:77:d6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:30 2025 by rpki-client