Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/iChBp1OXtrEpqibd9FBAND1rABw.roa
File: iChBp1OXtrEpqibd9FBAND1rABw.roa (raw, json)
Hash identifier: eif5Hlb/cHG79XlyrXFZrJmw1PNsotBNF08/u/xOIHU=
Subject key identifier: 88:28:41:A7:53:97:B6:B1:29:AA:26:DD:F4:50:40:34:3D:6B:00:1C
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01941FFA4EBD52978BBE42E1DFECB21396C6
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/iChBp1OXtrEpqibd9FBAND1rABw.roa
Signing time: Wed 01 Jan 2025 03:48:05 +0000
ROA not before: Wed 01 Jan 2025 03:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211007
IP address blocks: 77.37.112.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:4e:bd:52:97:8b:be:42:e1:df:ec:b2:13:96:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 03:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=882841a75397b6b129aa26ddf45040343d6b001c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fd:00:dc:39:bd:23:b9:4a:7e:e5:3f:62:d5:
79:c3:4a:57:ea:c5:49:77:0c:0d:f5:ef:1d:82:b2:
fa:58:3a:06:87:a0:82:87:9e:17:a3:b7:be:15:0a:
48:d1:1f:cc:3d:6c:c8:ae:a4:59:90:80:50:7a:d6:
eb:6c:e1:02:10:17:20:fa:ad:b0:ef:f2:ca:a6:01:
ff:23:5c:ed:47:dd:9f:ed:56:ad:e8:d6:bc:aa:68:
da:1d:25:ad:c4:20:c1:87:94:c4:5f:a4:b6:0e:23:
7a:66:e8:4f:f3:f9:ae:48:48:eb:ef:00:dd:c6:05:
03:16:25:3a:8b:1b:61:8d:37:00:53:3a:b7:2b:57:
d6:9a:03:58:7a:a6:7c:67:27:03:8d:22:7f:39:57:
cd:f6:a7:a1:a9:d2:6f:c0:6b:e6:f2:4c:96:a4:28:
0e:49:46:79:23:38:3e:8a:37:b1:46:62:37:e0:3e:
e6:07:6e:40:44:47:46:62:5d:7c:a7:f4:87:ab:eb:
7d:e6:22:e8:bf:ec:b7:23:59:6f:93:db:88:89:85:
73:b5:e0:87:ef:32:d0:9c:49:e1:b7:a5:e0:bb:78:
76:c2:95:3d:55:27:73:2e:da:15:6a:89:91:74:b1:
f7:d2:5b:64:9e:8e:b8:17:bb:ba:c4:24:46:99:c1:
e3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:28:41:A7:53:97:B6:B1:29:AA:26:DD:F4:50:40:34:3D:6B:00:1C
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/iChBp1OXtrEpqibd9FBAND1rABw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.112.0/23
Signature Algorithm: sha256WithRSAEncryption
32:da:b8:a6:81:b9:d7:d6:83:2a:10:f7:27:c0:2e:50:5a:bb:
ab:b8:88:13:22:3d:b0:ea:08:63:7b:e2:4f:b0:72:a9:22:19:
a0:13:84:d6:04:52:cd:27:b9:46:20:eb:27:3b:f7:b2:bb:b9:
ea:ce:4b:38:50:a9:fa:d2:7d:8f:70:6c:96:af:ac:1b:36:33:
66:7f:eb:88:92:f4:ce:7c:69:26:d1:88:cd:da:57:0f:45:a7:
9a:f9:ea:8e:23:ef:2a:b1:f7:8a:e5:83:ca:91:a1:04:76:07:
98:b4:76:1d:49:1f:30:aa:04:ad:16:a9:1c:c3:45:df:7a:1c:
7e:a8:8c:1c:06:42:23:52:72:7c:7c:fe:ea:29:36:73:45:b5:
3f:c1:f9:aa:63:dc:60:f0:63:c2:ba:f9:e7:b7:20:f9:44:bb:
3b:48:53:1d:6d:25:9d:eb:cd:27:64:45:ea:f7:5d:10:cd:6c:
3b:a2:a9:0f:d0:55:68:d3:b8:ee:ca:5e:66:2a:ea:d1:ca:66:
1a:89:9c:41:38:52:89:b7:a8:a2:67:7d:2f:2f:ea:20:8a:8c:
2f:0b:ef:df:ab:b6:ba:e7:7a:f4:52:8e:8b:cb:60:42:70:f2:
fc:94:ba:44:90:c2:7a:34:a8:b5:7a:3f:21:ab:6e:13:8e:56:
6d:c7:b3:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+k69UpeLvkLh3+yyE5bGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjUwMTAxMDM0ODA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODI4NDFhNzUzOTdiNmIxMjlhYTI2ZGRmNDUwNDAzNDNkNmIwMDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjP0A3Dm9I7lKfuU/YtV5w0pX6sVJ
dwwN9e8dgrL6WDoGh6CCh54Xo7e+FQpI0R/MPWzIrqRZkIBQetbrbOECEBcg+q2w
7/LKpgH/I1ztR92f7Vat6Na8qmjaHSWtxCDBh5TEX6S2DiN6ZuhP8/muSEjr7wDd
xgUDFiU6ixthjTcAUzq3K1fWmgNYeqZ8ZycDjSJ/OVfN9qehqdJvwGvm8kyWpCgO
SUZ5Izg+ijexRmI34D7mB25AREdGYl18p/SHq+t95iLov+y3I1lvk9uIiYVzteCH
7zLQnEnht6Xgu3h2wpU9VSdzLtoVaomRdLH30ltkno64F7u6xCRGmcHjPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIgoQadTl7axKaom3fRQQDQ9awAcMB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEvaUNoQnAxT1h0ckVwcWliZDlGQkFORDFyQUJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTSVwMA0G
CSqGSIb3DQEBCwUAA4IBAQAy2rimgbnX1oMqEPcnwC5QWruruIgTIj2w6ghje+JP
sHKpIhmgE4TWBFLNJ7lGIOsnO/eyu7nqzks4UKn60n2PcGyWr6wbNjNmf+uIkvTO
fGkm0YjN2lcPRaea+eqOI+8qsfeK5YPKkaEEdgeYtHYdSR8wqgStFqkcw0Xfehx+
qIwcBkIjUnJ8fP7qKTZzRbU/wfmqY9xg8GPCuvnntyD5RLs7SFMdbSWd680nZEXq
910QzWw7oqkP0FVo07juyl5mKurRymYaiZxBOFKJt6iiZ30vL+ogiowvC+/fq7a6
53r0Uo6Ly2BCcPL8lLpEkMJ6NKi1ej8hq24TjlZtx7OT
-----END CERTIFICATE-----
Generated at Thu Apr 10 06:45:16 2025 by rpki-client