Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/osBQy4pwisM6qin1ulEOmZdgp2w.roa
File: osBQy4pwisM6qin1ulEOmZdgp2w.roa (raw, json)
Hash identifier: erTtXeqbSojs/O3XgwcsvJ0oItXNN+F7EPFMiOYsYc8=
Subject key identifier: A2:C0:50:CB:8A:70:8A:C3:3A:AA:29:F5:BA:51:0E:99:97:60:A7:6C
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 018570705C941465BAE7D91FF12E33BF4A28
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/osBQy4pwisM6qin1ulEOmZdgp2w.roa
Signing time: Mon 02 Jan 2023 03:04:49 +0000
ROA not before: Mon 02 Jan 2023 03:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204471
IP address blocks: 77.37.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5c:94:14:65:ba:e7:d9:1f:f1:2e:33:bf:4a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 2 03:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2c050cb8a708ac33aaa29f5ba510e999760a76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:f4:00:4e:ed:c8:8b:d1:3a:b5:e2:06:b5:
f4:f2:8e:e3:c2:30:ae:4e:3a:18:90:e5:3b:43:e1:
e5:b8:8d:0a:1f:65:70:47:64:6d:6a:88:aa:41:95:
0e:e5:ec:a1:96:97:86:df:8d:88:93:6c:be:d0:da:
94:8a:0a:57:b4:f7:78:6f:0e:fa:fc:5d:64:a6:fe:
2c:d5:ae:63:6b:60:8c:d4:12:48:6b:bb:46:b2:35:
8b:d3:98:38:f7:e3:cf:31:61:25:4f:fc:94:92:06:
9f:00:da:4b:5b:61:05:10:fc:d8:fd:dc:5b:65:57:
dc:45:8f:76:73:60:f2:35:96:c1:d7:26:87:3b:23:
eb:fa:5a:a2:c3:ed:fb:4d:22:8b:ea:79:b6:e6:1a:
5a:71:cf:29:47:3b:8f:36:be:34:15:8b:6b:b5:77:
90:cf:96:05:04:ec:18:45:70:6b:ea:61:a1:c4:6f:
83:3c:a7:f6:8f:d4:37:4a:fa:bc:ad:d6:d3:38:0e:
ac:95:a8:cf:05:51:dd:07:51:c5:36:db:b1:b1:d8:
7e:6a:66:da:d8:9f:12:b3:f2:a6:87:59:99:f7:62:
09:73:b2:2d:ac:34:08:f9:7f:94:4f:03:d3:c6:37:
61:fc:90:70:f9:1f:63:ca:b3:be:b4:1c:66:8d:5e:
4e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C0:50:CB:8A:70:8A:C3:3A:AA:29:F5:BA:51:0E:99:97:60:A7:6C
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/osBQy4pwisM6qin1ulEOmZdgp2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.29.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3d:c1:70:65:db:5f:1d:9e:5d:ad:70:35:1f:07:0e:59:f5:
d1:44:3f:ba:76:b6:b8:f4:29:36:84:9e:e6:fe:4c:3c:c4:8d:
60:49:77:8c:1a:bb:b0:3e:b7:b0:5b:33:31:6d:ad:24:8c:f7:
9b:c4:52:4e:c6:68:03:f7:d2:77:74:81:fd:e5:08:2c:0d:ab:
be:5e:8a:90:80:75:96:2c:e2:55:33:89:d6:5d:9a:4e:52:b2:
64:b0:b7:d1:f4:65:1a:85:0f:37:b2:fa:08:4b:44:d8:64:00:
5e:ac:23:49:e6:ef:d1:5a:20:6d:4f:fe:7e:89:d9:c9:16:06:
fb:3d:62:40:4f:39:08:b3:1f:8c:dd:8e:dd:e3:ac:16:fe:e3:
bd:96:8e:57:56:9a:6b:e0:c4:35:aa:35:05:a5:22:40:8b:82:
18:5a:05:a3:74:41:fe:c0:9e:00:65:45:e3:5c:6c:f3:79:4c:
71:e2:de:75:38:f8:2f:d4:4f:c4:7e:e4:aa:89:3a:6f:30:93:
75:07:b0:a9:7d:8d:26:d7:a9:c8:c4:bc:f1:38:12:e2:7a:a8:
fa:3d:33:a1:90:6b:0a:6f:64:a9:76:5f:b9:ac:a3:35:75:29:
d6:20:e5:b2:a0:50:b1:4b:90:80:34:f7:93:09:ed:36:ea:78:
58:e1:d3:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwcFyUFGW659kf8S4zv0ooMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwOGQ3MzVmMzQ2YzRmYzQyYTQ3OTJjZTMzODA4YTIyMTBh
ODJiYjUwHhcNMjMwMTAyMDMwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmMwNTBjYjhhNzA4YWMzM2FhYTI5ZjViYTUxMGU5OTk3NjBhNzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrf0AE7tyIvROrXiBrX08o7jwjCu
TjoYkOU7Q+HluI0KH2VwR2RtaoiqQZUO5eyhlpeG342Ik2y+0NqUigpXtPd4bw76
/F1kpv4s1a5ja2CM1BJIa7tGsjWL05g49+PPMWElT/yUkgafANpLW2EFEPzY/dxb
ZVfcRY92c2DyNZbB1yaHOyPr+lqiw+37TSKL6nm25hpacc8pRzuPNr40FYtrtXeQ
z5YFBOwYRXBr6mGhxG+DPKf2j9Q3Svq8rdbTOA6slajPBVHdB1HFNtuxsdh+amba
2J8Ss/Kmh1mZ92IJc7ItrDQI+X+UTwPTxjdh/JBw+R9jyrO+tBxmjV5ONwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKLAUMuKcIrDOqop9bpRDpmXYKdsMB8GA1UdIwQY
MBaAFMCNc180bE/EKkeSzjOAiiIQqCu1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUt
YzNmMjU3ZWIyMGNjLzEvb3NCUXk0cHdpc002cWluMXVsRU9tWmRncDJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9kOTcyODctZmQwMS00YTEwLTkwOWUtYzNmMjU3ZWIyMGNj
LzEvd0kxelh6UnNUOFFxUjVMT000Q0tJaENvSzdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATSUdMA0G
CSqGSIb3DQEBCwUAA4IBAQB4PcFwZdtfHZ5drXA1HwcOWfXRRD+6dra49Ck2hJ7m
/kw8xI1gSXeMGruwPrewWzMxba0kjPebxFJOxmgD99J3dIH95QgsDau+XoqQgHWW
LOJVM4nWXZpOUrJksLfR9GUahQ83svoIS0TYZABerCNJ5u/RWiBtT/5+idnJFgb7
PWJATzkIsx+M3Y7d46wW/uO9lo5XVppr4MQ1qjUFpSJAi4IYWgWjdEH+wJ4AZUXj
XGzzeUxx4t51OPgv1E/EfuSqiTpvMJN1B7CpfY0m16nIxLzxOBLieqj6PTOhkGsK
b2Spdl+5rKM1dSnWIOWyoFCxS5CANPeTCe026nhY4dMx
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net