Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/2hqOGGIAt0JFDX73wtLXSOGKS-w.roa
File: 2hqOGGIAt0JFDX73wtLXSOGKS-w.roa (raw, json)
Hash identifier: +1BShFim20Y1v4oGdLy/V9TBEMiiDghKk+n/GUX4ICM=
Subject key identifier: DA:1A:8E:18:62:00:B7:42:45:0D:7E:F7:C2:D2:D7:48:E1:8A:4B:EC
Certificate issuer: /CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Certificate serial: 01867F75453F16EDF13B3FD9A1B0182FEC14
Authority key identifier: 87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/2hqOGGIAt0JFDX73wtLXSOGKS-w.roa
Signing time: Thu 23 Feb 2023 18:07:17 +0000
ROA not before: Thu 23 Feb 2023 18:07:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210531
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:75:45:3f:16:ed:f1:3b:3f:d9:a1:b0:18:2f:ec:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Validity
Not Before: Feb 23 18:07:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da1a8e186200b742450d7ef7c2d2d748e18a4bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:40:06:62:41:25:e4:92:b0:da:df:63:c1:06:
3a:7e:fa:05:bc:4f:5d:85:58:68:19:80:f6:68:b5:
1c:f3:13:36:96:11:45:c9:e2:fa:a0:6d:a1:7d:2b:
70:0c:3b:b5:77:c3:07:06:07:3d:10:85:c0:4b:c1:
0a:dd:a4:7c:e4:93:93:c3:c8:fc:88:ef:f8:3a:4c:
2e:41:b8:97:7e:c8:60:bf:ae:09:b1:0a:f2:5b:6a:
85:87:6a:cd:c7:0c:2a:85:54:0e:cb:0b:a1:70:8b:
17:c5:b8:5a:6d:32:3b:f7:82:22:8d:33:25:f2:2a:
82:14:27:97:48:fd:ed:f5:3d:8d:8a:af:83:96:e1:
fa:05:c9:37:09:62:e3:2c:fc:9d:85:5d:48:94:a2:
eb:49:f8:f9:f4:1c:9d:e2:3a:b9:3f:cf:71:28:ef:
5f:3b:4f:66:92:d4:77:23:ab:ad:de:18:15:25:b4:
f7:c2:ed:98:32:2c:65:1e:a1:74:25:e6:fd:c7:03:
eb:4a:21:77:3e:a2:dc:66:52:63:9f:28:95:c9:7f:
39:39:4d:ff:a3:d5:23:46:ff:00:b5:a3:d6:3b:86:
ad:55:f6:6c:18:30:69:ae:7c:01:3e:fc:de:e3:b5:
46:f8:0b:db:6c:81:26:39:58:59:96:04:1e:f5:6b:
0b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1A:8E:18:62:00:B7:42:45:0D:7E:F7:C2:D2:D7:48:E1:8A:4B:EC
X509v3 Authority Key Identifier:
keyid:87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/2hqOGGIAt0JFDX73wtLXSOGKS-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/h1pNhS1vLlnpN62_ESj8JLDUCQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b9:ca:aa:c4:77:29:1d:00:f5:4a:e3:38:54:00:12:cf:a3:
d4:db:c3:1f:c9:dd:cb:0e:d9:da:93:48:f8:0a:dd:9d:8c:8b:
b8:88:37:c7:81:53:ba:4a:42:3e:f2:98:33:9d:0c:e1:e9:b9:
af:0c:48:f1:a5:94:37:67:0d:74:78:03:b6:25:59:98:b6:11:
e3:cf:ec:4a:e3:19:72:fe:f4:12:c3:67:d3:29:2d:1a:ea:8b:
e5:70:fa:db:d0:33:fd:36:19:bb:57:5f:e1:11:ff:62:dc:6b:
88:4b:4c:d6:35:e0:0f:7f:c6:1c:4a:5f:2c:c2:68:73:39:4f:
ec:3d:ef:6a:67:87:6a:69:3f:a5:93:fb:ed:88:03:0d:3d:4f:
42:f6:fe:9b:b7:ed:5c:a3:8f:eb:d5:f9:51:e5:f7:25:a4:b8:
56:31:40:d1:d2:12:09:80:82:7e:71:c4:a5:5b:72:ee:2a:bc:
8a:1b:ce:0c:f1:74:a9:d5:7e:ca:09:91:a8:f9:5c:ff:3b:f7:
2e:4c:d7:7d:d6:cc:f7:6c:df:20:91:92:db:64:e9:1b:38:e1:
bb:90:c8:e5:1b:30:6b:da:2a:59:68:68:d2:80:3f:c8:0b:1e:
af:bc:0f:75:4c:4a:63:c2:6e:62:1c:2e:7b:8c:c7:61:82:69:
9b:04:e1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:17 2023 by rpki-client on console.sobornost.net