Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/7ywY44F6W0hS7hjw1JX0UehS46M.roa
File: 7ywY44F6W0hS7hjw1JX0UehS46M.roa (raw, json)
Hash identifier: EOy9avDsf7nOFq98ToM6bXsJvV8/Sd2CzZitSl4gKrE=
Subject key identifier: EF:2C:18:E3:81:7A:5B:48:52:EE:18:F0:D4:95:F4:51:E8:52:E3:A3
Certificate issuer: /CN=b25d856988c62a602073ec2938581dd4a586fb8f
Certificate serial: 019421B1A385D74E6F4D4F40370928CD4E98
Authority key identifier: B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/7ywY44F6W0hS7hjw1JX0UehS46M.roa
Signing time: Wed 01 Jan 2025 11:47:57 +0000
ROA not before: Wed 01 Jan 2025 11:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42713
IP address blocks: 77.244.144.0/22 maxlen: 24
77.244.144.0/24 maxlen: 24
77.244.145.0/24 maxlen: 24
77.244.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:a3:85:d7:4e:6f:4d:4f:40:37:09:28:cd:4e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b25d856988c62a602073ec2938581dd4a586fb8f
Validity
Not Before: Jan 1 11:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef2c18e3817a5b4852ee18f0d495f451e852e3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a5:fe:75:b3:58:f0:f6:1f:4e:22:4b:65:d9:
45:e4:b0:41:a9:0b:4e:bc:76:7c:bb:34:a3:09:15:
cd:56:76:c6:93:ab:46:ea:fe:65:01:ec:1d:0e:31:
77:2e:78:07:dd:55:8b:bf:39:fb:8d:28:97:0b:20:
0f:ca:18:fc:3b:1a:78:e0:a2:26:9b:af:ce:3e:c3:
b6:c1:ef:93:e8:ab:11:d1:35:5a:bd:91:65:82:08:
ec:8d:ec:17:dd:4a:65:c6:0e:7a:ac:b6:05:8d:33:
f9:1d:b0:9b:5a:cc:81:7b:09:b4:1f:c9:d2:fa:64:
80:a9:1d:32:b9:85:f3:c1:aa:31:c3:e5:f0:f9:f7:
5f:fe:fb:79:f0:73:2c:19:ea:03:ee:83:b6:9f:8f:
b5:16:d7:07:9c:13:ac:82:73:7c:57:7a:95:a1:4f:
d2:4b:e3:e4:ff:8d:4d:ba:a2:98:f9:87:74:b1:43:
d0:e1:6f:ba:e3:b4:8c:b1:d7:68:5d:14:d5:4c:7d:
b3:71:30:ea:db:a0:e5:0d:b4:b1:53:f6:75:d7:46:
c7:f7:cd:30:3a:ac:6c:bb:51:ca:9a:41:58:62:47:
c4:36:bb:1e:2f:bc:65:18:ea:73:80:92:f2:0d:b0:
58:70:1a:21:e7:41:c1:8b:ab:71:91:cf:8b:4a:71:
d6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2C:18:E3:81:7A:5B:48:52:EE:18:F0:D4:95:F4:51:E8:52:E3:A3
X509v3 Authority Key Identifier:
keyid:B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/7ywY44F6W0hS7hjw1JX0UehS46M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.244.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:cb:a8:b7:a7:d3:12:a1:cf:19:cb:d3:4c:12:fa:9d:ae:19:
d0:65:9b:0e:ef:0c:cc:8b:2b:63:32:58:d9:32:e7:b0:44:4a:
e1:05:fc:e1:14:1d:cd:4d:95:1b:ff:86:ba:ea:d7:a7:21:ff:
44:8c:c1:b5:fe:1f:a8:8e:29:06:9a:cf:c1:a3:9b:0a:59:16:
f9:b4:bd:ea:70:13:6e:c8:f3:f7:4f:35:36:4c:b7:0f:38:fc:
ee:30:df:2c:16:ae:bb:71:ac:97:ce:5d:45:8a:9f:98:0d:f1:
f0:46:83:c9:3a:43:ce:81:19:ae:b6:1e:c3:2d:07:c0:6c:15:
15:00:e2:70:96:aa:4e:de:cd:33:3f:fb:7a:a1:c6:29:bb:48:
88:51:8a:a1:59:21:2c:4d:e2:63:17:fa:96:5f:e9:d6:06:f3:
3d:22:fa:c3:b3:02:cc:67:88:42:a3:1b:2b:d8:cc:f3:a6:cf:
ee:5d:f3:ae:03:d2:d6:aa:1e:76:f8:ef:dd:0f:da:8f:55:af:
cc:4a:c4:2e:c4:f1:a0:d4:d5:07:21:a5:87:39:45:00:a6:ff:
df:02:ec:a6:01:29:60:13:40:d6:98:16:6d:a8:52:f6:15:7d:
94:b7:fe:ae:75:70:a2:67:45:b1:01:09:d7:44:d7:87:08:f6:
6e:93:99:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:43:24 2025 by rpki-client