Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/23B60CkIP4imZA-A0qr573jCa0c.roa
File: 23B60CkIP4imZA-A0qr573jCa0c.roa (raw, json)
Hash identifier: P7G7uyAH1GcOAC4MVeVA7G4/EbK1nZRBSLg3LxVNA0I=
Subject key identifier: DB:70:7A:D0:29:08:3F:88:A6:64:0F:80:D2:AA:F9:EF:78:C2:6B:47
Certificate issuer: /CN=5ff283110661a59dbf225d03380acc0838474e56
Certificate serial: 01888AA55A183E6AE20AA7201FA85192C8A6
Authority key identifier: 5F:F2:83:11:06:61:A5:9D:BF:22:5D:03:38:0A:CC:08:38:47:4E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_KDEQZhpZ2_Il0DOArMCDhHTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/23B60CkIP4imZA-A0qr573jCa0c.roa
Signing time: Mon 05 Jun 2023 08:21:12 +0000
ROA not before: Mon 05 Jun 2023 08:21:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42252
IP address blocks: 77.72.56.0/21 maxlen: 21
91.194.214.0/23 maxlen: 23
91.194.240.0/23 maxlen: 23
2a00:1778::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:a5:5a:18:3e:6a:e2:0a:a7:20:1f:a8:51:92:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff283110661a59dbf225d03380acc0838474e56
Validity
Not Before: Jun 5 08:21:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db707ad029083f88a6640f80d2aaf9ef78c26b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:12:75:cc:9e:55:20:23:22:b0:fd:2d:b0:6c:
c2:f7:31:57:c5:da:d0:8f:86:35:7c:89:02:8f:eb:
bb:45:51:4a:a4:b4:4b:0e:30:2c:30:31:db:f8:7f:
db:13:b7:a0:a6:16:cb:09:bd:30:b5:d1:05:db:ac:
75:f6:bf:1c:50:b3:3a:a9:9b:e5:77:19:ea:c0:ec:
de:48:18:5c:b0:04:ba:06:c5:72:ea:2d:68:cd:bd:
1f:19:4a:cf:c8:c1:3d:ea:b2:0f:b5:24:c0:81:e2:
fd:d1:81:b9:d9:0e:0b:21:77:ad:ac:37:7b:60:ea:
11:42:0d:24:f0:05:16:46:fa:1d:12:7c:44:53:24:
16:02:5c:0e:29:4d:6b:97:7e:47:df:6c:e5:e7:19:
78:e6:e5:8a:b8:65:65:bc:dc:b3:8c:74:82:a9:7f:
fc:02:36:b7:6f:ce:79:82:9f:df:e4:a0:f2:74:6c:
12:63:1e:c4:25:76:a9:63:07:0b:fd:54:ea:3a:76:
d3:5c:26:33:d1:28:80:a7:ae:59:a5:c2:44:08:da:
26:b9:f5:c6:4d:28:94:cb:70:a8:ce:f3:e1:41:af:
dc:42:95:0f:1d:11:f7:f3:77:51:cc:90:f4:bf:33:
77:8e:6c:8f:40:12:ec:40:40:a0:a1:0a:e1:6f:86:
38:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:70:7A:D0:29:08:3F:88:A6:64:0F:80:D2:AA:F9:EF:78:C2:6B:47
X509v3 Authority Key Identifier:
keyid:5F:F2:83:11:06:61:A5:9D:BF:22:5D:03:38:0A:CC:08:38:47:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_KDEQZhpZ2_Il0DOArMCDhHTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/23B60CkIP4imZA-A0qr573jCa0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/X_KDEQZhpZ2_Il0DOArMCDhHTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.56.0/21
91.194.214.0/23
91.194.240.0/23
IPv6:
2a00:1778::/32
Signature Algorithm: sha256WithRSAEncryption
3b:06:f1:14:29:1c:a6:1b:64:81:df:79:50:ce:f2:51:e3:17:
2b:e7:78:d1:ca:e0:5d:30:96:93:9d:03:13:5b:45:06:51:4f:
cf:03:1c:cf:51:fc:5d:42:2c:7f:de:79:e5:fc:71:95:13:29:
72:ba:fe:8a:09:67:85:99:79:aa:59:c2:cd:c3:53:c4:02:71:
5c:77:b5:a2:65:06:44:48:41:ba:ec:12:63:39:ed:39:27:96:
a1:04:e2:28:b4:1f:30:48:b3:6e:12:65:21:c0:d7:13:21:77:
c6:0e:36:57:13:c1:ce:e8:51:22:36:ce:6d:b7:76:7f:c3:32:
4f:60:e8:07:9c:22:26:5c:94:46:db:b0:41:56:c7:7e:5f:98:
2f:f1:47:be:36:28:30:04:7b:5e:ed:4d:ba:e5:65:be:e3:04:
fe:bd:b3:95:97:51:69:9e:d1:f3:0d:d7:92:1d:64:50:e9:bc:
67:ac:b8:2e:e3:54:60:c8:46:e2:44:40:91:8c:7e:a4:47:dc:
ea:8f:b3:99:ab:fe:35:80:32:c2:0e:06:7a:32:0a:13:28:78:
af:90:90:c2:18:e9:a5:42:31:fe:7b:3b:e9:2f:f6:17:bd:a8:
8f:89:9e:cd:26:dd:87:47:b2:2e:57:08:24:fe:57:71:ee:d8:
96:cc:b6:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:49 2024 by rpki-client on console-fra.rpki-client.org