Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/EhnOZPimCpVYHuVRSZr8gT7btlo.roa
File: EhnOZPimCpVYHuVRSZr8gT7btlo.roa (raw, json)
Hash identifier: WNO/QUrG1Rc/oar73f+hRkZ+/B69cIw8VTPR9dEfe2Y=
Subject key identifier: 12:19:CE:64:F8:A6:0A:95:58:1E:E5:51:49:9A:FC:81:3E:DB:B6:5A
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 01856CF482420EFB5B140D622779AAF81633
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/EhnOZPimCpVYHuVRSZr8gT7btlo.roa
Signing time: Sun 01 Jan 2023 10:50:41 +0000
ROA not before: Sun 01 Jan 2023 10:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 77.37.91.0/24 maxlen: 24
77.37.94.0/24 maxlen: 24
77.37.40.0/24 maxlen: 24
77.37.41.0/24 maxlen: 24
77.37.43.0/24 maxlen: 24
77.37.52.0/24 maxlen: 24
77.37.60.0/24 maxlen: 24
93.127.203.0/24 maxlen: 24
93.127.212.0/24 maxlen: 24
93.127.219.0/24 maxlen: 24
93.127.167.0/24 maxlen: 24
93.127.171.0/24 maxlen: 24
93.127.179.0/24 maxlen: 24
93.127.188.0/24 maxlen: 24
93.127.190.0/24 maxlen: 24
93.127.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f4:82:42:0e:fb:5b:14:0d:62:27:79:aa:f8:16:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 1 10:50:41 2023 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1219ce64f8a60a95581ee551499afc813edbb65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:68:eb:7a:2e:1f:25:da:0d:7d:b1:60:44:fc:
46:da:1d:a6:07:e3:a7:ee:d4:e4:07:cc:ae:12:c9:
58:2d:ea:3e:55:fa:76:61:a0:8a:df:e1:cd:78:08:
06:d7:5b:d6:d0:b1:7f:e3:05:88:f7:33:68:3c:92:
3a:0c:4c:48:d4:10:f9:50:61:3f:f3:da:78:1f:d8:
9b:fd:2f:0f:d0:12:cb:e5:28:21:65:a4:c4:5d:40:
47:a7:21:0f:94:22:98:c3:e7:e4:5a:00:ca:1c:0e:
fa:c4:2a:e3:97:f3:c6:ce:7a:c9:1b:b0:cb:0f:fa:
db:c3:69:41:cd:d1:c7:5f:1a:b4:92:78:df:63:ad:
07:3e:f6:93:38:30:09:7f:66:50:a3:cc:ed:63:74:
4b:2b:4d:7b:f8:b4:7c:72:05:ca:98:2b:95:fa:b4:
b7:e8:8c:20:ad:8f:43:8f:3c:61:3d:9b:d7:ab:4b:
01:f2:b3:1c:19:11:88:6f:19:a9:da:49:5e:e3:43:
b4:d4:8e:2e:4e:8d:13:97:54:ed:4a:5c:09:44:c2:
d7:86:76:21:2c:25:93:d3:41:6e:a4:a5:32:08:98:
94:f3:16:cf:a3:61:aa:c2:b2:b0:90:60:42:dd:4e:
fc:3b:46:d2:ea:ed:3a:8c:a6:53:18:5b:39:96:d1:
8c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:19:CE:64:F8:A6:0A:95:58:1E:E5:51:49:9A:FC:81:3E:DB:B6:5A
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/EhnOZPimCpVYHuVRSZr8gT7btlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.40.0/23
77.37.43.0/24
77.37.52.0/24
77.37.60.0/24
77.37.91.0/24
77.37.94.0/24
93.127.167.0/24
93.127.171.0/24
93.127.179.0/24
93.127.188.0/24
93.127.190.0/23
93.127.203.0/24
93.127.212.0/24
93.127.219.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d1:2a:89:c2:f9:2f:5e:26:9e:d5:76:be:87:d7:25:11:23:
47:d9:db:4f:ce:1b:ef:4e:15:d8:af:44:d4:ab:c6:72:94:34:
a4:8d:3b:b0:bd:10:f6:78:31:db:3e:d1:7c:ff:c1:92:6f:63:
f9:3e:02:bf:72:81:9e:f0:9b:71:03:5b:d4:8d:1a:e0:32:a9:
5c:86:a6:ed:7f:34:4c:59:4d:b7:83:b7:15:69:14:ae:40:41:
08:34:dd:14:92:1d:10:b3:f9:31:32:43:e0:ff:2d:03:86:1d:
86:2e:be:52:25:60:62:4b:60:b2:74:6a:1c:37:32:d8:7f:17:
9b:04:b0:e5:a6:6a:13:b3:09:55:01:97:27:60:e3:0d:a3:5a:
fe:bf:92:ae:ee:cb:bd:81:07:7f:08:23:dc:39:e5:89:f7:e0:
72:d3:28:c1:ca:5c:f7:ed:84:5f:10:be:b9:c2:84:c0:4f:f1:
73:92:7d:6e:9f:0c:3e:64:c0:2d:e6:a0:fd:be:26:58:dc:7e:
5c:7c:51:9b:37:59:d8:4c:46:09:5c:f0:1d:f7:14:03:21:82:
ff:14:b4:a2:5f:7f:f6:a2:d7:60:2f:03:d2:41:4a:f7:a2:9f:
5a:25:6f:c1:44:5e:7e:a8:f9:6d:45:cc:23:f6:04:c4:cc:af:
df:11:06:35
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYVs9IJCDvtbFA1iJ3mq+BYzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwOGQ3MzVmMzQ2YzRmYzQyYTQ3OTJjZTMzODA4YTIyMTBh
ODJiYjUwHhcNMjMwMTAxMTA1MDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjE5Y2U2NGY4YTYwYTk1NTgxZWU1NTE0OTlhZmM4MTNlZGJiNjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGjrei4fJdoNfbFgRPxG2h2mB+On
7tTkB8yuEslYLeo+Vfp2YaCK3+HNeAgG11vW0LF/4wWI9zNoPJI6DExI1BD5UGE/
89p4H9ib/S8P0BLL5SghZaTEXUBHpyEPlCKYw+fkWgDKHA76xCrjl/PGznrJG7DL
D/rbw2lBzdHHXxq0knjfY60HPvaTODAJf2ZQo8ztY3RLK017+LR8cgXKmCuV+rS3
6IwgrY9DjzxhPZvXq0sB8rMcGRGIbxmp2kle40O01I4uTo0Tl1TtSlwJRMLXhnYh
LCWT00FupKUyCJiU8xbPo2GqwrKwkGBC3U78O0bS6u06jKZTGFs5ltGMvQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFBIZzmT4pgqVWB7lUUma/IE+27ZaMB8GA1UdIwQY
MBaAFMCNc180bE/EKkeSzjOAiiIQqCu1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUt
YzNmMjU3ZWIyMGNjLzEvRWhuT1pQaW1DcFZZSHVWUlNacjhnVDdidGxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUtYzNmMjU3ZWIyMGNj
LzEvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQBTSUoAwQA
TSUrAwQATSU0AwQATSU8AwQATSVbAwQATSVeAwQAXX+nAwQAXX+rAwQAXX+zAwQA
XX+8AwQBXX++AwQAXX/LAwQAXX/UAwQAXX/bMA0GCSqGSIb3DQEBCwUAA4IBAQBB
0SqJwvkvXiae1Xa+h9clESNH2dtPzhvvThXYr0TUq8ZylDSkjTuwvRD2eDHbPtF8
/8GSb2P5PgK/coGe8JtxA1vUjRrgMqlchqbtfzRMWU23g7cVaRSuQEEINN0Ukh0Q
s/kxMkPg/y0Dhh2GLr5SJWBiS2CydGocNzLYfxebBLDlpmoTswlVAZcnYOMNo1r+
v5Ku7su9gQd/CCPcOeWJ9+By0yjBylz37YRfEL65woTAT/Fzkn1unww+ZMAt5qD9
viZY3H5cfFGbN1nYTEYJXPAd9xQDIYL/FLSiX3/2otdgLwPSQUr3op9aJW/BRF5+
qPltRcwj9gTEzK/fEQY1
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net