Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/i-deYMPnpbCIlAEKJgk8vy65pnY.roa
File: i-deYMPnpbCIlAEKJgk8vy65pnY.roa (raw, json)
Hash identifier: 7yC7uWpPylzIvvpG0bhFuIFJn/h2KO7bKdPYc6LWQGw=
Subject key identifier: 8B:E7:5E:60:C3:E7:A5:B0:88:94:01:0A:26:09:3C:BF:2E:B9:A6:76
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 018CCA99A286E648738CB1F87919B45E00D9
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/i-deYMPnpbCIlAEKJgk8vy65pnY.roa
Signing time: Tue 02 Jan 2024 14:35:15 +0000
ROA not before: Tue 02 Jan 2024 14:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207944
IP address blocks: 77.225.29.0/24 maxlen: 24
212.145.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:a2:86:e6:48:73:8c:b1:f8:79:19:b4:5e:00:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 2 14:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8be75e60c3e7a5b08894010a26093cbf2eb9a676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:84:af:36:59:24:23:47:cf:f8:e6:15:4b:2f:
5e:f5:99:8d:a0:c3:a5:c6:ff:5a:26:90:f8:65:42:
cc:c1:32:b1:fa:9b:48:b1:dc:7b:d0:e6:26:f9:9a:
50:72:b2:79:1d:51:af:42:24:09:dd:70:28:7d:81:
5c:ff:0f:53:a6:36:19:11:e0:e6:22:ac:d4:d5:29:
fd:ab:e7:a0:08:f3:d2:1e:c0:b2:43:68:84:9f:09:
57:11:18:76:cc:eb:c0:f2:c8:31:5f:af:01:f9:9c:
59:24:a9:17:ae:4c:42:14:34:8c:2a:4b:97:cf:fc:
35:22:e1:a8:14:65:86:2a:41:1a:2f:a5:fa:f9:2b:
49:03:27:2f:97:be:24:04:81:ab:f8:e2:11:f7:1b:
ae:a8:d3:5e:17:50:dc:ec:02:89:7b:b7:0c:4a:9d:
45:20:03:d2:74:77:69:be:bc:f2:c5:95:06:73:c1:
e4:21:38:2b:01:68:cb:68:9f:f8:e6:f0:2d:5b:6e:
f3:63:fa:ca:e2:e7:ee:78:11:24:70:d6:72:81:81:
e1:52:7a:ad:cd:b9:f1:87:df:c3:8c:80:4c:4c:b5:
8d:8e:b4:71:6c:bb:75:95:cb:d9:ba:6d:80:56:93:
e8:94:14:e3:31:a0:24:bc:20:b6:06:00:ae:0e:95:
5f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E7:5E:60:C3:E7:A5:B0:88:94:01:0A:26:09:3C:BF:2E:B9:A6:76
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/i-deYMPnpbCIlAEKJgk8vy65pnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.225.29.0/24
212.145.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b4:57:cc:62:58:e0:30:48:a2:26:cc:2f:5d:fd:21:6e:60:
c2:a0:36:3f:e3:7d:30:86:cc:47:7a:56:93:f1:3f:7c:1e:04:
45:84:61:5c:da:7c:d6:88:81:37:c9:81:97:6f:44:44:e0:2d:
dc:3d:c4:b2:57:fb:6e:93:4a:4d:10:35:3a:54:70:07:6e:b3:
d5:07:c0:76:47:d0:e2:dd:c1:3d:fb:92:ce:b7:ac:38:48:ad:
7b:10:08:aa:2c:c4:83:0e:f0:da:a8:e8:54:02:ac:86:17:a6:
7a:21:3a:9c:e6:7a:15:d6:1d:19:8f:e1:e9:78:53:f7:02:82:
b1:d8:29:cf:e8:fb:ea:43:ac:25:e9:ea:d2:9e:49:cf:b6:f8:
3b:2c:44:6d:bd:8a:69:b1:cc:8e:27:01:bb:d4:a0:6d:d2:cf:
d9:fa:ab:dd:4e:6f:88:a2:a3:af:84:28:92:79:19:c1:e1:d2:
0c:58:05:a8:b9:f3:83:cc:c4:86:cc:80:85:88:b0:db:70:e2:
02:07:8a:74:38:6b:ca:83:ac:5b:f2:fc:73:bb:9b:95:da:49:
98:d9:9e:81:a7:83:cc:40:2b:5c:99:d0:03:85:a0:ea:84:97:
01:21:bc:16:58:0b:9c:84:f7:07:d4:e2:3e:fc:f2:02:47:fa:
ae:14:d1:d9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzKmaKG5khzjLH4eRm0XgDZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MmFlMzNiMTFiMzZhMzE5YmE4MTM0N2Q4NTI0ODBkOGU3
NGM4N2QwHhcNMjQwMTAyMTQzNTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YmU3NWU2MGMzZTdhNWIwODg5NDAxMGEyNjA5M2NiZjJlYjlhNjc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YSvNlkkI0fP+OYVSy9e9ZmNoMOl
xv9aJpD4ZULMwTKx+ptIsdx70OYm+ZpQcrJ5HVGvQiQJ3XAofYFc/w9TpjYZEeDm
IqzU1Sn9q+egCPPSHsCyQ2iEnwlXERh2zOvA8sgxX68B+ZxZJKkXrkxCFDSMKkuX
z/w1IuGoFGWGKkEaL6X6+StJAycvl74kBIGr+OIR9xuuqNNeF1Dc7AKJe7cMSp1F
IAPSdHdpvrzyxZUGc8HkITgrAWjLaJ/45vAtW27zY/rK4ufueBEkcNZygYHhUnqt
zbnxh9/DjIBMTLWNjrRxbLt1lcvZum2AVpPolBTjMaAkvCC2BgCuDpVfxQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIvnXmDD56WwiJQBCiYJPL8uuaZ2MB8GA1UdIwQY
MBaAFDUq4zsRs2oxm6gTR9hSSA2OdMh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMt
MjUwNTBjNTkzYWExLzEvaS1kZVlNUG5wYkNJbEFFS0pnazh2eTY1cG5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMtMjUwNTBjNTkzYWEx
LzEvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATeEdAwQA
1JHHMA0GCSqGSIb3DQEBCwUAA4IBAQCbtFfMYljgMEiiJswvXf0hbmDCoDY/430w
hsxHelaT8T98HgRFhGFc2nzWiIE3yYGXb0RE4C3cPcSyV/tuk0pNEDU6VHAHbrPV
B8B2R9Di3cE9+5LOt6w4SK17EAiqLMSDDvDaqOhUAqyGF6Z6ITqc5noV1h0Zj+Hp
eFP3AoKx2CnP6PvqQ6wl6erSnknPtvg7LERtvYppscyOJwG71KBt0s/Z+qvdTm+I
oqOvhCiSeRnB4dIMWAWoufODzMSGzICFiLDbcOICB4p0OGvKg6xb8vxzu5uV2kmY
2Z6Bp4PMQCtcmdADhaDqhJcBIbwWWAuchPcH1OI+/PICR/quFNHZ
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:56 2024 by rpki-client on console.sobornost.net