Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Dc_MqXVzSSK77uzNogE5HgnhLwg.roa
File: Dc_MqXVzSSK77uzNogE5HgnhLwg.roa (raw, json)
Hash identifier: O7xD6oauj5YnrNkfW6IbaFJNVQOfp627wKoUhUJUb+c=
Subject key identifier: 0D:CF:CC:A9:75:73:49:22:BB:EE:EC:CD:A2:01:39:1E:09:E1:2F:08
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01961FA421907730E07D38B2E2C88BB4A8BC
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Dc_MqXVzSSK77uzNogE5HgnhLwg.roa
Signing time: Thu 10 Apr 2025 12:19:32 +0000
ROA not before: Thu 10 Apr 2025 12:19:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210976
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1f:a4:21:90:77:30:e0:7d:38:b2:e2:c8:8b:b4:a8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Apr 10 12:19:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0dcfcca975734922bbeeeccda201391e09e12f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:48:fa:bc:79:da:a7:89:8d:29:69:c0:cd:ed:
8c:c4:52:d4:9a:a9:f7:28:ca:93:68:ce:ec:46:4b:
ed:7a:7b:31:4a:b0:69:37:8a:a3:25:19:a2:ac:fc:
97:04:6d:be:bf:58:87:d8:c7:d9:da:4b:93:44:21:
db:22:98:da:5b:56:80:2a:f5:44:17:3c:9d:82:4f:
2e:9e:0a:4e:b2:d9:a6:b4:b6:a4:e3:f8:09:03:86:
3c:c0:7d:e0:33:6a:01:99:5f:5a:db:ca:1e:b8:1d:
67:3c:3a:01:3e:48:c3:7a:68:99:6e:b0:41:28:b5:
f1:6b:9e:19:a4:e3:f4:c5:87:6c:c0:b8:94:21:16:
47:9a:16:d3:bc:3b:f2:a7:15:1b:a5:05:6f:2a:ac:
3a:cf:62:57:66:10:c5:dc:8d:2a:a3:77:7d:c4:38:
0c:36:3a:b8:6f:b3:77:07:9c:9a:be:fe:8f:22:ac:
d9:4e:fb:a0:3b:ce:cf:48:2b:a1:a1:2f:46:38:d8:
83:fc:ba:37:ef:56:a4:ac:cd:c3:60:3c:31:8a:ca:
bf:d6:27:a3:3a:42:67:1b:8f:af:16:29:b0:bb:fe:
92:b9:73:52:22:b1:64:f8:56:c4:cf:ac:87:da:8b:
c1:7b:a6:60:be:69:5b:59:ae:47:bc:15:64:fb:2b:
c2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CF:CC:A9:75:73:49:22:BB:EE:EC:CD:A2:01:39:1E:09:E1:2F:08
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Dc_MqXVzSSK77uzNogE5HgnhLwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
81:71:fd:43:a0:a6:7a:b4:e2:7d:35:c6:f0:13:56:53:e4:e9:
4b:45:25:cf:2c:fe:21:da:d1:2b:8d:b6:c1:16:a4:a6:23:91:
46:30:7d:8d:a0:66:ad:c8:ec:57:c5:7f:ad:e6:fd:d5:ea:67:
b6:a9:43:22:03:e5:13:21:37:fc:c6:a2:65:73:e4:e1:7c:35:
2b:32:02:f4:41:a2:6e:4a:f3:42:aa:92:25:c0:bb:9c:cc:b2:
f0:77:f0:3b:27:31:f0:2e:9d:97:8c:5e:78:07:61:4b:77:55:
78:ca:97:96:c9:fe:4d:08:22:00:7e:19:f0:a9:ae:e7:a8:75:
2e:63:84:ad:94:2b:a9:d7:3d:f2:79:d0:29:6c:5a:68:f1:27:
0e:c2:d8:f9:d2:11:17:88:da:75:0f:dd:b0:72:8a:95:42:88:
e1:8f:9c:bc:eb:ee:37:3b:ae:86:f2:b2:83:a8:43:ab:dd:48:
e3:34:5c:74:a5:90:86:fc:97:63:e2:c5:74:16:73:f1:83:ff:
ba:21:19:cb:a5:01:4b:83:86:68:df:bd:2a:02:b9:91:4e:63:
dd:1a:ff:ff:a3:93:d1:90:17:d4:8a:d9:51:4b:be:6e:6f:f4:
a9:d5:0f:ca:22:e3:ff:2d:cd:bd:3c:b2:31:eb:53:99:76:b1:
38:20:24:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net