Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/xPTQa6JyD8snqWmlk_R4SKLKYrc.roa
File: xPTQa6JyD8snqWmlk_R4SKLKYrc.roa (raw, json)
Hash identifier: UL7zbYOn4+vtE3o3rW8JKyQ/5OHZFhaUadzI4iAx5DU=
Subject key identifier: C4:F4:D0:6B:A2:72:0F:CB:27:A9:69:A5:93:F4:78:48:A2:CA:62:B7
Certificate issuer: /CN=4207baedb4063082b245dd82623c981bae56f9ac
Certificate serial: 01856B810D0E6AA51D20BFD4857798D95318
Authority key identifier: 42:07:BA:ED:B4:06:30:82:B2:45:DD:82:62:3C:98:1B:AE:56:F9:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qge67bQGMIKyRd2CYjyYG65W-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/xPTQa6JyD8snqWmlk_R4SKLKYrc.roa
Signing time: Sun 01 Jan 2023 04:04:57 +0000
ROA not before: Sun 01 Jan 2023 04:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211122
IP address blocks: 77.75.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:0d:0e:6a:a5:1d:20:bf:d4:85:77:98:d9:53:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4207baedb4063082b245dd82623c981bae56f9ac
Validity
Not Before: Jan 1 04:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4f4d06ba2720fcb27a969a593f47848a2ca62b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:35:30:6a:62:cb:2f:b2:e7:1a:0a:95:a8:8a:
da:83:23:5e:20:e6:0f:53:55:97:fe:e3:ec:be:b0:
c6:c7:fe:24:01:af:09:30:32:9c:46:16:0a:fb:46:
d7:6d:ff:32:a5:90:05:94:34:79:13:3e:0e:e1:33:
7a:18:54:a0:fe:05:1e:4b:77:e4:cb:99:a3:be:9f:
c3:bb:19:5b:6b:20:1c:52:8c:1d:cf:15:1d:f6:f1:
a3:b5:d2:d3:bf:b7:4a:e0:97:d6:81:ec:35:53:61:
93:db:bf:ea:07:ee:15:48:3f:f8:25:0b:e0:c2:f1:
1f:45:dc:58:79:3d:99:8e:1e:ea:3c:3e:ff:07:55:
ca:24:2e:ba:cd:b3:cb:44:27:f5:90:c0:e7:26:40:
82:ac:18:f8:11:58:1b:79:0c:ec:e6:b4:3c:24:77:
e1:f9:5c:71:af:27:b5:a2:ee:8a:65:d9:e1:73:17:
44:81:fb:3c:85:bf:39:f0:6b:81:88:1f:e6:28:6d:
9c:23:04:54:f9:50:3c:dd:ce:ed:1e:9a:72:98:47:
51:92:4e:dd:c8:76:dd:15:a6:96:ee:ef:f1:43:46:
55:7b:55:e2:82:bc:19:ec:71:cd:62:2d:04:15:a3:
04:9b:a0:23:5c:a9:4b:0c:8d:f4:19:b3:8f:73:ea:
63:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F4:D0:6B:A2:72:0F:CB:27:A9:69:A5:93:F4:78:48:A2:CA:62:B7
X509v3 Authority Key Identifier:
keyid:42:07:BA:ED:B4:06:30:82:B2:45:DD:82:62:3C:98:1B:AE:56:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qge67bQGMIKyRd2CYjyYG65W-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/xPTQa6JyD8snqWmlk_R4SKLKYrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/531da9-2d79-4a45-9d5c-10dccefce93a/1/Qge67bQGMIKyRd2CYjyYG65W-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.227.0/24
Signature Algorithm: sha256WithRSAEncryption
57:81:ab:8d:0a:67:c1:4b:7c:70:7a:45:09:d2:db:a5:15:2c:
2c:2a:76:91:24:19:49:e2:44:88:b6:65:4d:39:2e:39:30:c0:
fa:84:bb:63:48:7f:4e:64:89:f0:37:df:ae:0f:d1:53:7e:08:
e7:dc:73:d2:00:5f:b9:19:a2:7e:db:cd:99:4b:90:ac:57:e7:
d1:dd:9e:8a:7b:26:47:0d:52:6b:09:17:aa:61:53:13:e1:ea:
89:d5:00:48:d2:36:fb:a5:f9:d7:a6:9f:bd:51:f5:b2:05:3d:
1f:ab:5f:f4:97:a5:dd:e3:97:76:09:7b:fb:7b:e0:ae:e1:80:
b4:5c:95:4c:0e:32:ab:31:28:da:48:70:a6:b6:5f:8b:2b:35:
5a:a0:92:f9:42:e4:64:97:d2:1e:3e:a3:ba:c7:9c:8b:1a:70:
e4:22:3d:d7:e7:ba:df:5d:a4:55:1a:39:92:be:39:9c:b4:fa:
80:5d:5e:3d:62:4f:e2:25:d8:89:32:c7:a7:1f:32:80:09:14:
9b:52:85:c4:af:88:b7:79:cf:bc:3d:d8:ad:de:be:0e:05:c8:
a9:20:8a:aa:7b:1a:7f:fd:4e:a2:97:16:87:c1:14:f1:a2:17:
92:b2:42:64:47:15:3c:55:e3:05:3f:dc:4a:dc:67:d8:0e:3f:
73:ce:d2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:38 2023 by rpki-client on console.sobornost.net