Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/9denOW_N9zwjw01TGlHE6lAbuew.roa
File: 9denOW_N9zwjw01TGlHE6lAbuew.roa (raw, json)
Hash identifier: JPz7uw4DtvuqaLdvh7UTkYyzU+AsBRyqG0VxECzb8d0=
Subject key identifier: F5:D7:A7:39:6F:CD:F7:3C:23:C3:4D:53:1A:51:C4:EA:50:1B:B9:EC
Certificate issuer: /CN=4207baedb4063082b245dd82623c981bae56f9ac
Certificate serial: 013E876F
Authority key identifier: 42:07:BA:ED:B4:06:30:82:B2:45:DD:82:62:3C:98:1B:AE:56:F9:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qge67bQGMIKyRd2CYjyYG65W-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/9denOW_N9zwjw01TGlHE6lAbuew.roa
Signing time: Sat 01 Jan 2022 01:57:39 +0000
ROA not before: Sat 01 Jan 2022 01:57:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211122
IP address blocks: 77.75.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20875119 (0x13e876f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4207baedb4063082b245dd82623c981bae56f9ac
Validity
Not Before: Jan 1 01:57:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5d7a7396fcdf73c23c34d531a51c4ea501bb9ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:4c:92:67:92:04:5e:3e:ea:19:f6:55:a2:
ef:e0:69:39:20:e4:6e:03:c0:58:21:e4:f5:a4:64:
90:e3:bb:c4:3e:d2:6e:f0:e7:ef:be:ed:c4:09:ec:
a9:a5:ed:1f:f6:2b:1d:a3:48:fa:ea:fd:96:3c:ac:
47:81:17:94:a9:07:25:1b:1e:79:0f:c3:12:fb:d5:
a3:d3:9a:e2:4a:dc:17:c7:6a:e1:71:fe:f7:a2:7a:
90:e7:e6:ed:32:a2:d4:3c:cd:94:e5:cc:27:8f:f3:
3e:fe:b6:be:6c:7f:d4:15:37:92:a8:e8:e4:6f:81:
50:c0:ae:49:84:72:68:b7:e7:de:63:e2:12:c5:b0:
d8:8f:44:13:b2:08:6b:d9:71:f4:0a:f6:cd:4a:ff:
df:20:51:9f:df:d4:a9:87:3e:ec:55:69:27:2a:95:
c9:13:d3:90:7f:30:37:31:4a:80:b9:78:fc:6b:5c:
b3:77:b9:23:2e:f1:80:eb:b2:c1:9f:2f:6f:b9:c4:
d3:79:3f:bf:c9:2d:f3:63:40:b6:1e:2f:c7:f1:e8:
d8:c6:db:49:d7:36:25:b3:8c:c3:aa:e9:25:e0:06:
91:8e:86:57:d7:d0:9a:65:9e:be:f6:b3:43:90:73:
e1:02:c9:98:e9:c0:ae:19:3c:1e:78:23:86:ad:44:
20:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D7:A7:39:6F:CD:F7:3C:23:C3:4D:53:1A:51:C4:EA:50:1B:B9:EC
X509v3 Authority Key Identifier:
keyid:42:07:BA:ED:B4:06:30:82:B2:45:DD:82:62:3C:98:1B:AE:56:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qge67bQGMIKyRd2CYjyYG65W-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/9denOW_N9zwjw01TGlHE6lAbuew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/Qge67bQGMIKyRd2CYjyYG65W-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.227.0/24
Signature Algorithm: sha256WithRSAEncryption
33:cf:38:b4:2f:fd:d6:03:6a:0c:ea:50:f6:3a:bf:ec:4e:4d:
a1:fa:aa:24:be:28:6e:01:69:0d:e8:66:8f:9b:34:70:ed:4a:
a3:0f:27:e2:8a:c1:4f:11:89:48:c3:8b:3f:4c:36:6f:06:3d:
c4:42:4a:2d:79:cf:c3:09:dc:aa:a1:4e:51:0b:ad:1c:e2:5a:
b3:97:42:b9:22:d8:53:3d:4f:ed:a9:08:cd:43:e6:09:34:ff:
10:f0:3e:56:8a:2f:b9:7a:e0:90:d9:3e:39:3c:a1:d8:bf:32:
7c:eb:76:6a:e8:94:b5:88:8e:12:2f:e1:9f:08:28:d9:62:eb:
54:b6:16:b1:fa:fc:4d:8e:d4:0b:fb:ca:8b:22:93:81:18:60:
d7:ab:9d:38:fa:3a:70:77:0c:bf:4b:9c:94:62:14:4e:18:41:
d5:19:46:31:4e:a4:f1:fa:ed:79:86:e7:36:cb:31:1b:e6:54:
12:04:7e:f1:40:1f:6a:aa:77:15:ee:71:dd:ba:c2:55:bf:3b:
f3:76:ae:aa:8d:a0:cf:b1:94:4a:de:28:02:0a:35:4b:a4:3c:
13:71:89:27:d7:9f:7b:da:99:b0:c1:83:25:bf:4b:07:29:10:
b1:5f:68:0a:6f:27:d1:ad:17:b8:a3:6c:8e:e3:30:b8:e1:02:
41:6e:73:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:38 2023 by rpki-client on console.sobornost.net