Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/iZw4RPsiG-v793nTtNiKIVPizSE.roa
File: iZw4RPsiG-v793nTtNiKIVPizSE.roa (raw, json)
Hash identifier: PSF05HhiPhAFZw2MdpOYkTq1wWykXmeVD8G5r52wOJM=
Subject key identifier: 89:9C:38:44:FB:22:1B:EB:FB:F7:79:D3:B4:D8:8A:21:53:E2:CD:21
Certificate issuer: /CN=5ff283110661a59dbf225d03380acc0838474e56
Certificate serial: 01856D93DFB89168623E70D3F66C11A62648
Authority key identifier: 5F:F2:83:11:06:61:A5:9D:BF:22:5D:03:38:0A:CC:08:38:47:4E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_KDEQZhpZ2_Il0DOArMCDhHTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/iZw4RPsiG-v793nTtNiKIVPizSE.roa
Signing time: Sun 01 Jan 2023 13:44:45 +0000
ROA not before: Sun 01 Jan 2023 13:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42252
IP address blocks: 77.72.56.0/21 maxlen: 21
2a00:1778::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:df:b8:91:68:62:3e:70:d3:f6:6c:11:a6:26:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff283110661a59dbf225d03380acc0838474e56
Validity
Not Before: Jan 1 13:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=899c3844fb221bebfbf779d3b4d88a2153e2cd21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dc:50:b1:2f:3e:38:aa:c7:4c:7c:a1:be:7c:
5f:47:7b:e6:ef:f3:c3:5b:9d:d0:5a:20:1e:27:98:
ad:29:b0:16:48:26:fe:e1:9b:a9:92:00:4e:83:4d:
05:ea:36:97:f4:53:e8:13:29:6e:9f:e4:6f:61:1f:
e2:6d:64:ed:b8:f7:e7:5c:c4:72:7f:3b:4a:50:8d:
91:cc:70:2c:51:95:19:89:f5:07:24:a8:2d:e4:02:
a8:b0:0d:6c:28:16:0f:7e:d9:98:ff:5a:ac:4f:53:
67:0a:d0:26:90:69:a0:53:19:6a:80:db:31:3b:58:
5a:6b:bd:8d:5a:24:12:1d:b5:9f:28:0c:ac:2b:08:
02:bb:40:71:a4:38:20:8c:e2:30:e4:a9:28:5d:5a:
53:51:ea:2d:99:b1:95:81:5a:a8:c5:2f:22:78:1c:
f9:f5:2d:fd:e6:e6:64:8f:06:c7:25:20:e0:44:5e:
8e:11:59:c0:7f:0e:1b:53:ff:30:28:7c:00:d0:43:
15:26:69:5e:b8:86:5b:17:97:3d:f5:65:c8:d7:86:
b4:3e:36:d9:f8:7b:e9:5f:7f:6c:e8:7b:19:88:cf:
6c:6a:d3:94:03:17:b7:f3:27:76:97:1c:1b:1f:bc:
a0:cd:3a:1c:8f:5c:60:ca:8b:74:85:14:ec:a1:05:
1e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9C:38:44:FB:22:1B:EB:FB:F7:79:D3:B4:D8:8A:21:53:E2:CD:21
X509v3 Authority Key Identifier:
keyid:5F:F2:83:11:06:61:A5:9D:BF:22:5D:03:38:0A:CC:08:38:47:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_KDEQZhpZ2_Il0DOArMCDhHTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/iZw4RPsiG-v793nTtNiKIVPizSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/13b666-3e39-4cec-987d-fa0296c27463/1/X_KDEQZhpZ2_Il0DOArMCDhHTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.56.0/21
IPv6:
2a00:1778::/32
Signature Algorithm: sha256WithRSAEncryption
8b:b8:91:38:8d:a8:39:20:89:43:68:c8:66:a3:ee:ea:e7:d6:
20:c9:6e:fc:e2:c6:6d:95:36:8b:de:54:03:3d:a6:d4:71:dd:
a4:5f:79:d2:5c:eb:68:69:42:22:c6:bb:48:92:7b:4f:53:7f:
25:31:ba:90:37:64:dd:bd:e7:74:81:7e:14:43:fc:3a:2b:ac:
d4:62:87:41:98:b9:ad:ad:d4:18:4a:89:e5:6a:17:6e:76:13:
30:15:13:c3:f2:0d:38:a4:0e:f3:12:c7:71:f2:1d:9d:5b:7e:
f3:32:60:30:30:33:f1:c3:15:46:e0:5c:c3:d1:ea:65:8d:89:
71:3e:ea:0b:ba:36:c0:3f:b2:f7:fd:1a:be:be:03:6b:a9:f9:
a1:7f:5b:f4:41:f2:d6:11:5a:fb:82:80:22:58:e1:e3:4a:8c:
80:5f:df:f6:aa:46:7b:e9:a3:e2:90:13:2f:88:b8:aa:f0:e3:
a5:3d:a7:d0:bf:38:5e:ec:28:df:30:11:fb:17:5f:92:e7:0d:
02:db:58:4b:b7:62:1d:1b:fa:92:15:f3:66:a3:cc:45:02:3d:
73:c1:0e:3c:11:6d:22:bd:e3:6c:71:20:6a:70:74:c4:9b:35:
71:e5:d8:55:bc:71:61:81:e9:e8:3a:66:c2:ad:2f:3b:c4:43:
a4:0a:55:8b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVtk9+4kWhiPnDT9mwRpiZIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmZjI4MzExMDY2MWE1OWRiZjIyNWQwMzM4MGFjYzA4Mzg0
NzRlNTYwHhcNMjMwMTAxMTM0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTljMzg0NGZiMjIxYmViZmJmNzc5ZDNiNGQ4OGEyMTUzZTJjZDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4txQsS8+OKrHTHyhvnxfR3vm7/PD
W53QWiAeJ5itKbAWSCb+4ZupkgBOg00F6jaX9FPoEylun+RvYR/ibWTtuPfnXMRy
fztKUI2RzHAsUZUZifUHJKgt5AKosA1sKBYPftmY/1qsT1NnCtAmkGmgUxlqgNsx
O1haa72NWiQSHbWfKAysKwgCu0BxpDggjOIw5KkoXVpTUeotmbGVgVqoxS8ieBz5
9S395uZkjwbHJSDgRF6OEVnAfw4bU/8wKHwA0EMVJmleuIZbF5c99WXI14a0PjbZ
+HvpX39s6HsZiM9satOUAxe38yd2lxwbH7ygzTocj1xgyot0hRTsoQUemwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFImcOET7Ihvr+/d507TYiiFT4s0hMB8GA1UdIwQY
MBaAFF/ygxEGYaWdvyJdAzgKzAg4R05WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWF9LREVRWmhwWjJfSWwwRE9Bck1DRGhIVGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8xM2I2NjYtM2UzOS00Y2VjLTk4N2Qt
ZmEwMjk2YzI3NDYzLzEvaVp3NFJQc2lHLXY3OTNuVHROaUtJVlBpelNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8xM2I2NjYtM2UzOS00Y2VjLTk4N2QtZmEwMjk2YzI3NDYz
LzEvWF9LREVRWmhwWjJfSWwwRE9Bck1DRGhIVGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDTUg4MA0E
AgACMAcDBQAqABd4MA0GCSqGSIb3DQEBCwUAA4IBAQCLuJE4jag5IIlDaMhmo+7q
59YgyW784sZtlTaL3lQDPabUcd2kX3nSXOtoaUIixrtIkntPU38lMbqQN2Tdved0
gX4UQ/w6K6zUYodBmLmtrdQYSonlahdudhMwFRPD8g04pA7zEsdx8h2dW37zMmAw
MDPxwxVG4FzD0epljYlxPuoLujbAP7L3/Rq+vgNrqfmhf1v0QfLWEVr7goAiWOHj
SoyAX9/2qkZ76aPikBMviLiq8OOlPafQvzhe7CjfMBH7F1+S5w0C21hLt2IdG/qS
FfNmo8xFAj1zwQ48EW0iveNscSBqcHTEmzVx5dhVvHFhgenoOmbCrS87xEOkClWL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:36 2024 by rpki-client on console-ams.rpki-client.org