Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/SWF9h0Rftgwxt1l-H8LonmH7PGc.roa
File: SWF9h0Rftgwxt1l-H8LonmH7PGc.roa (raw, json)
Hash identifier: 9TmBkt9rdGBV/SMXsF8g0S0NL3eQNxd/bKR4zTb4ncA=
Subject key identifier: 49:61:7D:87:44:5F:B6:0C:31:B7:59:7E:1F:C2:E8:9E:61:FB:3C:67
Certificate issuer: /CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Certificate serial: 017A5707
Authority key identifier: 87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/SWF9h0Rftgwxt1l-H8LonmH7PGc.roa
Signing time: Fri 21 Jan 2022 18:52:38 +0000
ROA not before: Fri 21 Jan 2022 18:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24794887 (0x17a5707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Validity
Not Before: Jan 21 18:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49617d87445fb60c31b7597e1fc2e89e61fb3c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:36:95:6f:42:88:4a:d6:a8:c6:e7:f0:4c:1e:
50:14:8f:e9:92:2b:03:8c:06:3e:ec:9b:eb:4b:a4:
9e:2d:1f:e8:95:05:44:da:65:6e:a4:06:15:5b:c0:
65:6a:d0:78:40:e5:e1:4e:bb:45:c1:c9:41:92:b2:
3f:38:fc:3a:d3:8f:95:1d:18:08:70:0a:57:d1:c4:
21:07:db:ef:63:ed:c9:2a:b5:ef:ed:1f:34:08:de:
da:28:f4:0d:49:e4:14:01:4f:f9:f8:fe:ed:7a:a5:
43:be:ce:70:b9:31:ee:d3:f9:2f:17:c3:00:a1:13:
6d:5a:5d:07:ce:4a:e4:54:85:31:f6:d6:c3:c3:e3:
69:7f:da:77:2c:ed:3e:05:e0:67:60:e3:88:df:51:
56:03:dd:98:c2:26:ab:6d:97:45:6e:50:c7:04:75:
d2:54:ff:e3:61:cb:7c:26:a0:b4:ab:4a:1a:56:c0:
0d:44:87:ac:b3:9c:c2:a1:ff:19:f2:e6:07:c8:3c:
25:9a:8d:f8:4b:54:86:8f:0b:3c:96:b8:e0:b5:23:
1f:6c:0a:7f:27:40:44:a4:10:3f:dd:22:a7:b9:e2:
da:76:2e:ad:8a:67:7d:10:89:46:df:92:dd:0b:24:
c4:cd:d3:62:ba:cc:b3:7a:73:b7:fa:b6:4c:f4:98:
93:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:61:7D:87:44:5F:B6:0C:31:B7:59:7E:1F:C2:E8:9E:61:FB:3C:67
X509v3 Authority Key Identifier:
keyid:87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/SWF9h0Rftgwxt1l-H8LonmH7PGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/h1pNhS1vLlnpN62_ESj8JLDUCQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7e:d7:9d:43:57:43:55:76:08:b4:68:3c:3f:6d:22:56:dd:
10:79:a4:38:39:da:d1:23:54:84:71:e7:c8:d8:7c:1c:a1:df:
cc:9f:87:be:d7:74:ac:eb:cd:fe:df:1d:43:e7:ce:51:32:ce:
24:5a:bc:e6:ae:8d:7d:b6:33:ec:af:c3:51:d2:66:c8:7d:c3:
15:85:24:5c:29:f5:a7:60:96:8a:83:44:af:d6:28:48:7c:94:
08:4d:4c:6b:40:06:85:37:25:fa:9f:d5:d4:f2:db:5d:83:7f:
17:6d:54:1e:a5:b2:c7:df:62:de:f7:ef:57:d6:b0:b2:6d:c4:
ea:0a:a4:dc:30:3c:4f:87:ab:d2:14:ce:cb:a7:93:d9:2b:04:
87:0a:c8:f7:91:03:66:aa:40:34:d5:79:12:50:74:9d:0f:12:
8c:aa:79:dc:ca:4b:13:0b:80:b7:03:33:23:a5:39:28:81:cc:
c6:32:83:6c:93:60:d1:46:44:74:6b:42:34:68:cd:75:8d:b4:
61:de:f2:a7:08:6b:ec:d9:60:3b:8b:9a:5c:fe:ea:92:09:be:
c1:63:67:72:69:e4:e5:2f:dd:78:d1:f8:e1:0f:ec:bf:57:0a:
10:e4:d2:97:49:a1:7b:be:00:b1:bf:2e:96:d3:24:d5:d1:eb:
17:ce:93:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:11:33 2025 by rpki-client