Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/QD_d06gYAArrjefpFEaN7vG45Ko.roa
File: QD_d06gYAArrjefpFEaN7vG45Ko.roa (raw, json)
Hash identifier: N3Dz7vtsr8feT6sAIF/NKyM/RT84uTbQxULZKaUTxyQ=
Subject key identifier: 40:3F:DD:D3:A8:18:00:0A:EB:8D:E7:E9:14:46:8D:EE:F1:B8:E4:AA
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 018474020FD468E9ECD9B555554674B3818D
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/QD_d06gYAArrjefpFEaN7vG45Ko.roa
Signing time: Mon 14 Nov 2022 02:40:02 +0000
ROA not before: Mon 14 Nov 2022 02:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 77.37.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:74:02:0f:d4:68:e9:ec:d9:b5:55:55:46:74:b3:81:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Nov 14 02:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=403fddd3a818000aeb8de7e914468deef1b8e4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:4f:e2:1d:a8:7a:a8:29:18:b3:2f:51:f6:
72:57:8a:de:af:7a:02:3b:cc:93:c6:6f:82:94:cb:
0b:27:77:45:ae:d7:3a:a7:0f:cc:37:c1:17:48:c0:
3e:13:87:95:d3:87:51:26:fc:9b:ce:2e:d9:c8:0c:
15:6b:62:13:04:a5:63:e7:49:c6:0c:a2:06:12:3c:
a7:00:14:12:85:fe:5a:b0:68:96:f2:f9:e1:88:e2:
66:84:c6:47:db:41:5e:c2:8c:3e:0b:29:bd:79:64:
d0:df:df:28:da:f5:96:8f:4b:9e:a2:2e:81:03:88:
90:c0:05:40:ec:7a:58:e7:9a:d3:05:68:42:f5:d7:
76:3b:f7:ba:ee:f9:65:89:11:4c:a9:e4:1c:d0:de:
dd:0e:67:5d:76:8d:90:45:26:c8:21:b9:b5:0b:cd:
72:17:47:cc:64:72:8a:36:26:95:33:e0:ef:f8:ca:
5e:8e:70:b3:b8:8c:4d:67:d2:eb:88:71:ab:03:c5:
68:95:f1:6b:a8:81:ae:33:23:3a:b6:ba:83:f1:bc:
e2:e9:76:00:b7:02:49:7c:7a:8d:d0:01:d0:ba:1d:
4a:ce:97:f1:9c:48:07:d6:3c:78:dd:d1:71:39:93:
b5:cf:0f:02:08:40:1a:b4:e9:18:5c:1d:07:37:44:
bf:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3F:DD:D3:A8:18:00:0A:EB:8D:E7:E9:14:46:8D:EE:F1:B8:E4:AA
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/QD_d06gYAArrjefpFEaN7vG45Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:d5:f8:9c:c2:85:b2:a3:d8:9a:77:10:06:d8:a1:9c:8e:3e:
7a:7f:77:95:11:dd:fd:30:76:b9:e5:87:bd:c8:ff:0e:cf:f3:
13:8c:08:d6:3a:f8:2f:60:52:0c:3c:b9:1d:92:3c:cb:08:7a:
6e:88:e4:b1:d9:47:38:b0:ea:47:18:6c:98:86:f6:f4:42:23:
47:98:61:5a:aa:9f:58:b2:d5:a5:07:8c:1a:81:17:fb:1c:1e:
47:05:79:b4:96:6f:98:25:1b:87:94:18:1c:3e:24:20:8f:14:
aa:2a:d0:8e:79:59:49:49:c8:72:db:ef:7a:2d:d2:2f:b6:7a:
53:1a:ae:39:9b:64:71:e5:19:9f:9c:cb:23:54:7b:14:a5:4a:
be:f7:f7:5f:6b:a1:af:a6:d2:aa:c2:72:7e:a9:2e:f9:57:a5:
f6:3a:15:8d:5d:bf:4a:45:ae:0d:65:0a:af:14:61:d2:bc:0c:
6d:99:4b:66:d9:80:bb:10:1b:01:a5:b6:70:f1:69:70:ce:0c:
3e:b1:e4:1f:3a:b2:32:0c:6c:a2:ed:4d:34:6c:74:cc:a5:c7:
77:5e:78:e6:b0:86:1e:15:9c:84:05:83:62:76:b5:6c:42:f1:
58:56:9a:2d:51:f0:f0:21:c7:f1:5c:8f:51:9d:ee:87:7e:63:
c7:89:45:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net