Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/kZjxZpFtn6F3gPxyrdBu1vBKwcQ.roa
File: kZjxZpFtn6F3gPxyrdBu1vBKwcQ.roa (raw, json)
Hash identifier: T6GSGMk4EOHj4shx2nmHIw7OFCQgtllhKds6M3UH9tc=
Subject key identifier: 91:98:F1:66:91:6D:9F:A1:77:80:FC:72:AD:D0:6E:D6:F0:4A:C1:C4
Certificate issuer: /CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Certificate serial: 0193ABBC482A7AB636130D410333A2888832
Authority key identifier: C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/kZjxZpFtn6F3gPxyrdBu1vBKwcQ.roa
Signing time: Mon 09 Dec 2024 14:04:23 +0000
ROA not before: Mon 09 Dec 2024 14:04:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137517
IP address blocks: 77.81.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ab:bc:48:2a:7a:b6:36:13:0d:41:03:33:a2:88:88:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f9f50ca1c34a3be610048d138af3c0753af92b
Validity
Not Before: Dec 9 14:04:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9198f166916d9fa17780fc72add06ed6f04ac1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3a:90:b2:01:f0:8a:6d:89:3d:46:02:11:99:
d9:00:cd:e0:d5:53:d5:e5:08:38:a9:44:88:93:e2:
eb:71:d8:f6:88:0b:ab:b7:34:f8:ee:7c:a4:f0:6f:
73:04:d7:d2:bc:f0:f5:8f:02:7b:02:11:ef:5c:6c:
f8:03:2a:02:55:c9:39:4b:aa:08:b5:9b:15:03:4e:
4f:3e:5b:d1:ad:bb:8c:37:7d:fb:d1:db:3c:65:45:
be:07:e8:62:19:22:10:05:23:00:e6:8a:a5:83:a2:
a5:bf:ff:9f:4b:a9:8c:94:25:ea:e3:7e:b9:4a:2b:
55:6d:6b:7d:0f:d0:f9:cf:c7:b5:78:72:22:19:9a:
8a:b2:f8:e9:72:3d:69:27:05:ba:03:47:b8:04:57:
07:19:19:a7:20:fb:47:f7:a4:1c:81:a1:f6:5b:f0:
e7:9d:09:1a:1e:98:f9:30:2d:92:9e:8b:78:7a:5c:
05:93:9e:a5:c0:bc:88:98:17:4b:c8:27:23:f0:ff:
69:72:50:61:fe:cd:57:71:f9:4a:83:66:27:49:fa:
4f:8a:c8:9a:a1:2a:01:93:42:41:20:15:d6:61:c3:
8a:11:69:23:35:55:aa:4d:22:23:a1:bf:76:1b:f2:
e7:0a:21:0a:70:20:70:b1:f1:b1:9a:d6:e9:04:73:
ed:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:98:F1:66:91:6D:9F:A1:77:80:FC:72:AD:D0:6E:D6:F0:4A:C1:C4
X509v3 Authority Key Identifier:
keyid:C5:F9:F5:0C:A1:C3:4A:3B:E6:10:04:8D:13:8A:F3:C0:75:3A:F9:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfn1DKHDSjvmEASNE4rzwHU6-Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/kZjxZpFtn6F3gPxyrdBu1vBKwcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f2196a-389e-4cce-8171-90ad0cadff79/1/xfn1DKHDSjvmEASNE4rzwHU6-Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
Signature Algorithm: sha256WithRSAEncryption
89:94:6d:f1:0c:0f:8a:e4:41:4d:ed:13:53:0a:80:e2:cb:e8:
9f:e4:2e:2a:28:1c:f2:fc:1c:dd:39:26:3f:c1:62:90:6e:c4:
c7:82:36:d9:4c:e5:ee:90:34:f4:83:b1:13:fc:e5:f1:5c:bb:
c6:ba:aa:e3:aa:f2:56:fe:9d:06:fd:50:38:1f:54:80:9f:38:
b5:3e:bc:f1:62:b2:34:60:53:c3:25:59:4d:62:0b:91:18:2f:
fa:4d:2e:ab:e2:72:a5:0b:d5:37:6f:90:ea:d4:f3:14:8a:43:
0a:0f:5a:bb:13:ac:27:e7:a8:64:f0:78:d5:3a:46:e2:9e:56:
1c:e6:3c:19:df:b7:9d:67:cc:82:a2:25:b7:49:f6:d3:34:22:
44:1a:ba:e7:eb:e4:87:6c:1f:7e:e3:ce:3d:77:b6:f2:4b:72:
14:e7:09:38:83:4d:ae:55:4f:4e:b9:36:dc:27:63:c2:ad:73:
47:47:ca:b4:cb:21:4d:5f:e7:9e:a6:bc:44:13:a6:3b:55:e1:
4f:fc:0b:ee:54:c3:2e:e1:d5:01:20:79:12:37:7a:e3:f6:a7:
27:a8:82:67:ce:55:28:4b:4d:08:76:72:5b:94:81:b9:ab:b4:
29:37:9b:87:35:74:0f:23:a5:d4:58:ae:f9:2a:c9:d4:98:cf:
2c:fb:98:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:06 2024 by rpki-client on console.sobornost.net