Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/YbFhdvz_Dh49aVibMt8pQk4W2NU.roa
File: YbFhdvz_Dh49aVibMt8pQk4W2NU.roa (raw, json)
Hash identifier: +8C/+NZZpUmJRKKGtzAuFDJ7ZsLpYE3AK+6TZhL5Wd4=
Subject key identifier: 61:B1:61:76:FC:FF:0E:1E:3D:69:58:9B:32:DF:29:42:4E:16:D8:D5
Certificate issuer: /CN=713af8b790ac0923b24307ee008f261d10d9560b
Certificate serial: 018CC56EE6FB4154D72D5F33E5D8E4783BE7
Authority key identifier: 71:3A:F8:B7:90:AC:09:23:B2:43:07:EE:00:8F:26:1D:10:D9:56:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cTr4t5CsCSOyQwfuAI8mHRDZVgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/YbFhdvz_Dh49aVibMt8pQk4W2NU.roa
Signing time: Mon 01 Jan 2024 14:30:28 +0000
ROA not before: Mon 01 Jan 2024 14:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210115
IP address blocks: 77.87.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:e6:fb:41:54:d7:2d:5f:33:e5:d8:e4:78:3b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=713af8b790ac0923b24307ee008f261d10d9560b
Validity
Not Before: Jan 1 14:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61b16176fcff0e1e3d69589b32df29424e16d8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a6:a2:6f:90:ec:79:d6:f7:30:0a:f5:4c:d8:
d7:c5:01:6c:c8:7e:ee:28:43:0f:92:59:ea:61:e3:
6f:d0:44:48:33:39:4b:3e:a5:2c:76:ed:00:5e:65:
67:ce:83:88:46:74:db:57:6c:1a:b4:38:06:40:97:
3f:80:e0:98:05:68:8f:26:c9:5d:4d:c5:3a:04:7c:
1d:bb:da:c3:ca:78:3a:a7:59:3e:71:0d:ab:96:7f:
34:dd:43:98:fb:9d:47:e7:62:08:3b:6e:9e:91:6a:
72:cc:2f:b8:4f:9e:f8:04:d7:8d:92:84:ea:af:9b:
a6:ea:85:20:14:b7:16:99:34:b1:6a:23:36:d5:98:
d2:4c:d4:31:2d:68:66:56:1b:fa:8e:bb:8e:92:fd:
0d:3a:d4:47:90:b8:23:1e:82:d5:de:35:0f:2a:14:
b0:40:98:bc:ad:db:6b:61:41:8a:3d:ac:1f:72:de:
df:1c:e1:5f:1c:ab:15:20:ea:0a:57:02:aa:c5:9f:
4e:31:d9:bb:bc:0e:25:ae:45:a1:c4:21:03:9c:27:
66:c7:67:3d:cd:3b:d8:48:26:65:74:88:4a:d3:ad:
b8:7f:9a:ee:84:fd:19:61:55:3b:27:0a:21:a4:82:
11:84:6a:5c:8c:5f:ef:2a:b1:4b:ee:70:7c:c2:0b:
96:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B1:61:76:FC:FF:0E:1E:3D:69:58:9B:32:DF:29:42:4E:16:D8:D5
X509v3 Authority Key Identifier:
keyid:71:3A:F8:B7:90:AC:09:23:B2:43:07:EE:00:8F:26:1D:10:D9:56:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cTr4t5CsCSOyQwfuAI8mHRDZVgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/YbFhdvz_Dh49aVibMt8pQk4W2NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/cTr4t5CsCSOyQwfuAI8mHRDZVgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.32.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:16:be:e4:e0:a5:44:a7:cd:85:41:bd:3e:55:f5:c7:db:7e:
10:b7:fa:6e:6c:b8:83:f7:87:8f:f9:8d:6b:75:65:c8:41:cf:
9d:ef:8c:75:1e:24:72:7d:d8:66:a4:13:f7:30:3f:ec:f7:7d:
4d:f1:e7:76:71:b7:e1:9c:26:77:bd:4f:86:a2:bb:16:08:20:
87:c1:5b:c8:6f:b3:a4:f1:ed:7d:39:d8:16:92:98:ad:23:98:
54:ba:6c:ab:88:73:86:81:55:67:ba:6b:f6:ae:26:7f:bf:cd:
36:33:78:87:7a:7a:1f:ea:12:e4:fc:ed:0d:77:6a:80:b1:64:
b1:72:c8:88:39:9b:de:dd:ec:ce:66:98:73:73:4f:01:14:02:
03:d8:72:35:a6:ff:8a:57:c1:12:91:33:f3:5b:c1:22:fd:1b:
5f:a6:fc:5e:27:4c:af:ff:d4:91:40:f7:eb:13:dd:1b:7b:69:
93:cd:71:fe:e3:09:d6:b9:d6:db:4a:bb:2e:64:73:71:f1:e8:
20:1f:66:d3:24:0c:32:e7:d7:80:07:ae:42:44:9b:5b:97:a0:
47:55:a1:42:ed:1d:31:1a:50:5f:d8:c6:94:43:23:13:5e:c5:
8f:1a:28:c4:97:12:1b:75:56:83:5b:f6:a9:95:49:b1:1a:9d:
63:64:1c:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbub7QVTXLV8z5djkeDvnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxM2FmOGI3OTBhYzA5MjNiMjQzMDdlZTAwOGYyNjFkMTBk
OTU2MGIwHhcNMjQwMTAxMTQzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWIxNjE3NmZjZmYwZTFlM2Q2OTU4OWIzMmRmMjk0MjRlMTZkOGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqaib5Dsedb3MAr1TNjXxQFsyH7u
KEMPklnqYeNv0ERIMzlLPqUsdu0AXmVnzoOIRnTbV2watDgGQJc/gOCYBWiPJsld
TcU6BHwdu9rDyng6p1k+cQ2rln803UOY+51H52IIO26ekWpyzC+4T574BNeNkoTq
r5um6oUgFLcWmTSxaiM21ZjSTNQxLWhmVhv6jruOkv0NOtRHkLgjHoLV3jUPKhSw
QJi8rdtrYUGKPawfct7fHOFfHKsVIOoKVwKqxZ9OMdm7vA4lrkWhxCEDnCdmx2c9
zTvYSCZldIhK0624f5ruhP0ZYVU7JwohpIIRhGpcjF/vKrFL7nB8wguWIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGGxYXb8/w4ePWlYmzLfKUJOFtjVMB8GA1UdIwQY
MBaAFHE6+LeQrAkjskMH7gCPJh0Q2VYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1RyNHQ1Q3NDU095UXdmdUFJOG1IUkRaVmdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS82ZmQ1ZTMtY2I2YS00ZDY1LTk1N2Mt
NDc0MTQ3NjZiNmJhLzEvWWJGaGR2el9EaDQ5YVZpYk10OHBRazRXMk5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS82ZmQ1ZTMtY2I2YS00ZDY1LTk1N2MtNDc0MTQ3NjZiNmJh
LzEvY1RyNHQ1Q3NDU095UXdmdUFJOG1IUkRaVmdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTVcgMA0G
CSqGSIb3DQEBCwUAA4IBAQBcFr7k4KVEp82FQb0+VfXH234Qt/pubLiD94eP+Y1r
dWXIQc+d74x1HiRyfdhmpBP3MD/s931N8ed2cbfhnCZ3vU+GorsWCCCHwVvIb7Ok
8e19OdgWkpitI5hUumyriHOGgVVnumv2riZ/v802M3iHenof6hLk/O0Nd2qAsWSx
csiIOZve3ezOZphzc08BFAID2HI1pv+KV8ESkTPzW8Ei/RtfpvxeJ0yv/9SRQPfr
E90be2mTzXH+4wnWudbbSrsuZHNx8eggH2bTJAwy59eAB65CRJtbl6BHVaFC7R0x
GlBf2MaUQyMTXsWPGijElxIbdVaDW/aplUmxGp1jZByx
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:01 2024 by rpki-client on console.sobornost.net