Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/SzoGQvfUMN2I6FxdsikUMOmvE4I.roa
File: SzoGQvfUMN2I6FxdsikUMOmvE4I.roa (raw, json)
Hash identifier: M7k4YTm5YbWuXnW6v0fmK6pLUmZhOzFQ+QoPj0VvR5k=
Subject key identifier: 4B:3A:06:42:F7:D4:30:DD:88:E8:5C:5D:B2:29:14:30:E9:AF:13:82
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 018597AE459A2031A47A6B440A0073EE0784
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/SzoGQvfUMN2I6FxdsikUMOmvE4I.roa
Signing time: Mon 09 Jan 2023 17:57:38 +0000
ROA not before: Mon 09 Jan 2023 17:57:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 77.37.91.0/24 maxlen: 24
77.37.94.0/24 maxlen: 24
77.37.34.0/24 maxlen: 24
77.37.40.0/24 maxlen: 24
77.37.41.0/24 maxlen: 24
77.37.43.0/24 maxlen: 24
77.37.45.0/24 maxlen: 24
77.37.46.0/24 maxlen: 24
77.37.52.0/24 maxlen: 24
77.37.60.0/24 maxlen: 24
93.127.203.0/24 maxlen: 24
93.127.212.0/24 maxlen: 24
93.127.219.0/24 maxlen: 24
93.127.167.0/24 maxlen: 24
93.127.179.0/24 maxlen: 24
93.127.186.0/24 maxlen: 24
93.127.188.0/24 maxlen: 24
93.127.190.0/24 maxlen: 24
93.127.191.0/24 maxlen: 24
93.127.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:ae:45:9a:20:31:a4:7a:6b:44:0a:00:73:ee:07:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 9 17:57:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b3a0642f7d430dd88e85c5db2291430e9af1382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:b8:b4:09:5c:fc:a8:c3:a3:7c:d9:31:94:
29:16:66:42:29:58:3b:7b:8e:71:9b:4c:d8:4f:41:
42:d8:8f:d1:5e:41:50:49:f3:8d:a7:03:42:45:b1:
9d:b6:9f:60:3f:a3:75:77:0c:8e:24:92:ac:75:b3:
16:1c:17:f0:5a:dd:b9:d4:21:df:a9:be:12:d2:8a:
7b:ef:21:0a:44:64:a6:00:73:a0:cf:44:8b:a6:25:
07:f1:c7:66:49:b5:1e:a9:da:cb:a6:e3:8d:3d:05:
d2:fa:00:9a:07:67:41:63:48:7c:8f:12:ce:a6:6f:
cb:45:fe:05:d5:62:05:71:15:76:fd:13:a5:64:5d:
c6:70:df:07:69:b1:c1:2c:f8:f0:7e:a4:87:a3:2b:
27:89:dd:51:74:98:eb:55:b8:f7:aa:0a:fa:8f:fd:
2c:cc:af:1d:09:64:15:70:2d:0a:c5:9a:8d:4d:b1:
b0:5d:71:cc:ea:91:9b:2a:ff:4c:2b:02:06:b9:11:
5e:19:6c:d2:11:eb:c1:6d:b9:6f:d4:37:af:19:c0:
c2:d2:13:f1:31:ac:33:ca:58:ba:41:fe:2b:a9:1a:
be:4b:71:8b:1c:6c:81:4d:11:f6:96:86:58:71:e5:
9b:08:b2:58:7c:73:67:b4:4b:ef:ba:55:bb:15:c8:
f5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3A:06:42:F7:D4:30:DD:88:E8:5C:5D:B2:29:14:30:E9:AF:13:82
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/SzoGQvfUMN2I6FxdsikUMOmvE4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.34.0/24
77.37.40.0/23
77.37.43.0/24
77.37.45.0-77.37.46.255
77.37.52.0/24
77.37.60.0/24
77.37.91.0/24
77.37.94.0/24
93.127.167.0/24
93.127.179.0/24
93.127.186.0/24
93.127.188.0/24
93.127.190.0/23
93.127.199.0/24
93.127.203.0/24
93.127.212.0/24
93.127.219.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:2f:2a:f8:cb:22:e1:aa:88:45:4d:46:95:a1:e4:82:60:33:
1c:80:e3:42:f7:e3:5e:87:97:f6:74:d3:ff:f9:ea:7a:1a:5a:
92:5d:1f:65:8b:52:33:3c:5b:16:91:65:a8:53:39:1e:2a:78:
91:fb:15:5a:bf:ec:39:c1:3c:99:61:9d:56:ea:7d:d7:ae:25:
01:b6:eb:e5:c3:b7:7b:e4:e7:7a:75:af:db:dd:70:65:59:ab:
21:19:ad:79:69:bf:f6:5e:a5:11:bb:74:65:ff:2d:72:b7:0b:
da:50:f2:75:d2:70:59:f7:ec:59:32:fb:07:51:da:49:1e:a5:
fc:74:07:ed:27:3e:1c:11:39:05:1a:90:f1:7f:be:ae:c8:e2:
62:78:aa:b0:e9:93:70:35:eb:84:dd:88:59:31:6e:36:c2:c7:
f8:2a:45:a8:64:a9:9c:0c:0b:f6:9c:f5:b6:ef:4b:fe:d2:89:
02:6e:27:ec:31:f1:c9:e5:ca:1b:fa:10:94:3c:86:c4:22:83:
30:d2:6b:c6:2f:5e:1a:4c:c1:df:2a:6f:72:ca:dc:e6:b1:ce:
d0:53:d1:da:d4:56:c6:66:30:71:d5:61:3e:7b:42:4b:fc:de:
30:bc:c0:be:05:12:84:8f:62:4d:d9:5b:98:11:8e:fc:a6:3e:
08:17:45:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net