Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/138ce3-f38f-43e9-8dc9-9cd0cae06292/1/qIc_hDr-mCrw-0sQAQQ174u5zKY.roa
File: qIc_hDr-mCrw-0sQAQQ174u5zKY.roa (raw, json)
Hash identifier: 5blNS4fBDRihm0C0Hw/njWEQeoDxWPm8nJm/rVSqqdo=
Subject key identifier: A8:87:3F:84:3A:FE:98:2A:F0:FB:4B:10:01:04:35:EF:8B:B9:CC:A6
Certificate issuer: /CN=9ebcbfeb8fa897374718a9102a4a70671e2aabf9
Certificate serial: 019422FBB56E9C5A8A9B1DE37B7B9601F22A
Authority key identifier: 9E:BC:BF:EB:8F:A8:97:37:47:18:A9:10:2A:4A:70:67:1E:2A:AB:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nry_64-olzdHGKkQKkpwZx4qq_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/138ce3-f38f-43e9-8dc9-9cd0cae06292/1/qIc_hDr-mCrw-0sQAQQ174u5zKY.roa
Signing time: Wed 01 Jan 2025 17:48:28 +0000
ROA not before: Wed 01 Jan 2025 17:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5400
IP address blocks: 77.72.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:b5:6e:9c:5a:8a:9b:1d:e3:7b:7b:96:01:f2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ebcbfeb8fa897374718a9102a4a70671e2aabf9
Validity
Not Before: Jan 1 17:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a8873f843afe982af0fb4b10010435ef8bb9cca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:81:06:11:5c:ee:05:3f:2e:73:06:78:5b:
f7:c9:ed:3e:32:43:17:17:77:b8:92:11:57:b4:95:
fe:69:b6:7b:10:1a:0b:94:b4:b4:f5:5b:63:cb:ea:
40:e1:b7:97:64:c0:ac:39:79:6d:19:31:06:7f:b3:
6a:bb:f2:5d:2d:9d:d8:8f:8d:e6:48:3b:f4:0e:8c:
83:74:fa:bc:73:f4:9d:16:ed:e8:94:03:9c:12:e7:
42:31:3f:3e:42:5d:83:68:d9:03:27:30:17:38:fc:
b6:1f:e8:cf:49:27:af:0c:49:89:aa:b1:68:92:43:
9c:b6:81:a8:f9:1e:32:9c:07:ab:08:a3:f7:f1:8e:
99:65:45:ec:f3:9b:f7:19:41:53:cc:51:93:a0:a5:
79:cd:d3:3c:3b:6c:04:ee:af:23:e6:f6:68:9f:b4:
c6:7f:34:35:37:02:d4:f8:47:4f:b4:6d:fb:5c:53:
f1:4c:9c:90:46:e5:69:a4:43:bb:99:19:c0:5e:40:
9e:5b:d4:cc:b8:c3:18:06:f1:5e:c5:24:7b:b9:f5:
58:08:2b:98:db:a4:8f:c7:ab:3d:c2:eb:c5:2c:9d:
0a:85:e5:33:30:cf:6b:13:d8:4c:61:c8:2e:16:b2:
68:1c:65:a2:9d:a9:63:ed:b5:fb:b4:89:7a:ed:b9:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:87:3F:84:3A:FE:98:2A:F0:FB:4B:10:01:04:35:EF:8B:B9:CC:A6
X509v3 Authority Key Identifier:
keyid:9E:BC:BF:EB:8F:A8:97:37:47:18:A9:10:2A:4A:70:67:1E:2A:AB:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nry_64-olzdHGKkQKkpwZx4qq_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/138ce3-f38f-43e9-8dc9-9cd0cae06292/1/qIc_hDr-mCrw-0sQAQQ174u5zKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/138ce3-f38f-43e9-8dc9-9cd0cae06292/1/nry_64-olzdHGKkQKkpwZx4qq_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.239.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ee:d5:61:c6:5b:62:6a:39:2d:6c:77:02:c5:aa:1c:88:1c:
04:59:32:69:b0:18:c7:9b:f3:0a:e7:05:4f:42:eb:9d:a8:77:
4f:5f:bd:b8:3e:ab:a0:03:4b:7f:5c:2d:6c:b1:cb:be:43:6a:
9b:ee:5a:01:df:18:26:6f:5f:6c:e1:fc:47:d0:96:11:73:72:
00:a1:e5:ba:c3:3e:79:49:7c:0d:32:d0:07:90:00:a1:b6:9e:
7a:be:28:5d:98:3f:05:27:9f:5d:49:70:c6:19:0f:8f:0c:8b:
a9:41:af:30:1a:e4:46:65:13:27:34:56:e7:50:a0:e2:ca:d3:
d0:49:83:9e:c8:c0:ba:22:89:3f:34:9a:2f:6c:de:1e:91:05:
c7:a9:62:b7:de:34:54:2c:21:94:55:04:68:ac:47:dc:7b:b5:
4d:83:6b:03:10:89:c2:a9:99:e3:b5:ec:81:0f:6a:1a:66:8d:
89:65:77:23:37:7a:bd:96:bc:e8:f1:fc:f4:ef:52:60:1d:34:
48:a4:0f:24:5a:8d:ea:4a:07:b1:c6:f1:4e:dd:21:ca:fe:10:
59:35:d7:1f:b2:34:c2:ce:2b:31:91:34:36:02:56:14:20:7f:
82:91:9f:4e:98:27:a8:4a:45:01:cc:32:d2:13:5b:66:26:c5:
a6:19:ba:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net