Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/hQIXEcieRc7L_3Tvk2yYkSyAVoM.roa
File: hQIXEcieRc7L_3Tvk2yYkSyAVoM.roa (raw, json)
Hash identifier: d7ERDnijEytX4JVJF+MfsfxE8bpR83orLjbixgRrRAs=
Subject key identifier: 85:02:17:11:C8:9E:45:CE:CB:FF:74:EF:93:6C:98:91:2C:80:56:83
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 34B7E108
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/hQIXEcieRc7L_3Tvk2yYkSyAVoM.roa
Signing time: Tue 26 Apr 2022 06:15:09 +0000
ROA not before: Tue 26 Apr 2022 06:15:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211360
IP address blocks: 77.37.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884465928 (0x34b7e108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Apr 26 06:15:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85021711c89e45cecbff74ef936c98912c805683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:02:08:89:a2:5d:46:3f:75:fa:67:71:fb:e0:
48:00:ca:50:e5:16:4d:d1:7d:4c:29:1f:74:3a:44:
58:aa:df:1d:6d:9b:a9:d2:f2:de:71:51:6e:21:47:
e9:20:1f:a9:38:f4:22:54:ae:ce:f9:bc:1e:e2:a0:
a4:8d:85:cb:12:80:09:29:ba:71:1e:87:a0:e7:02:
a4:44:c5:ab:33:f9:65:67:31:c5:2b:f1:f4:c2:8d:
ad:58:26:43:2e:77:50:29:2b:fe:9a:bb:2f:dd:9e:
c1:0d:4d:60:a3:15:3f:18:57:b4:fc:a5:c9:ee:ae:
6f:1f:54:41:19:9b:ae:9e:b6:af:27:cf:f5:e1:30:
8a:13:5c:02:d2:66:4c:88:b6:8a:89:e7:67:f6:89:
99:49:ea:fd:e4:ac:b3:d0:18:81:55:29:c5:32:72:
d7:88:f3:b4:38:24:03:8c:ac:93:c7:0c:c7:ac:09:
6d:f2:4f:35:f3:cc:e7:4c:94:3c:50:19:c3:4c:05:
a2:24:eb:95:6b:13:24:b1:2b:8e:d4:d3:f9:ac:5a:
74:76:34:ce:ae:9a:9a:09:52:d1:7d:65:ba:8c:3f:
8f:9b:83:9f:f5:bd:48:dd:a8:60:08:e5:d3:d1:d2:
1f:88:16:cd:9a:b6:55:b2:12:fb:4f:48:1a:fa:a1:
5f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:17:11:C8:9E:45:CE:CB:FF:74:EF:93:6C:98:91:2C:80:56:83
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/hQIXEcieRc7L_3Tvk2yYkSyAVoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.3.0/24
Signature Algorithm: sha256WithRSAEncryption
66:06:1c:1c:ab:d7:55:1d:e7:35:12:1c:01:4e:c3:7f:c9:47:
dc:66:1a:c9:64:60:c2:f8:ff:e4:fb:24:bc:ec:ba:5c:62:ca:
6a:a2:9b:0f:56:7d:bf:06:bf:f4:11:1f:24:4c:22:c0:a2:d5:
e5:68:c5:32:8a:9c:53:4e:ba:75:ee:92:f3:1b:c8:5e:56:37:
e9:7b:5f:f8:61:97:36:f8:b5:d1:2a:0b:c5:f8:7b:02:c5:e4:
f3:61:4f:f1:00:d9:61:ff:da:46:e5:f7:03:7f:53:70:f7:2b:
98:f5:a9:ec:29:18:e2:79:31:0f:5d:e8:2a:ea:db:b3:89:b4:
93:fe:16:0b:e7:73:4f:ac:b1:6d:e8:91:78:48:ba:a4:fe:96:
6e:ba:08:f7:4d:17:71:eb:ad:0e:5c:c7:34:bc:99:a1:e2:a4:
3c:b4:65:71:df:05:0a:51:fb:d3:b1:8d:dc:a9:38:55:9d:ed:
fe:dd:9c:e6:5a:4c:15:ab:59:60:b0:25:73:eb:99:e6:68:b1:
85:0e:11:48:26:f2:8a:d4:a7:4b:03:3a:7e:ad:41:8f:ff:59:
73:b0:34:ac:74:f1:2d:d6:3c:2a:74:e0:02:9f:ab:d5:55:d6:
01:c7:2e:23:88:40:5d:89:6f:8d:73:3d:28:12:53:a8:75:0c:
92:4e:f4:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net