Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/mVORveqjlQz1TveZa35kctMV1ic.roa
File: mVORveqjlQz1TveZa35kctMV1ic.roa (raw, json)
Hash identifier: pgnWSnvxGtnJndbUe7Epmco5l7PWvqGRczyuxF4jMqw=
Subject key identifier: 99:53:91:BD:EA:A3:95:0C:F5:4E:F7:99:6B:7E:64:72:D3:15:D6:27
Certificate issuer: /CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Certificate serial: 01857C3F4F4AFB4628BE26EDDADE32D83477
Authority key identifier: 87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/mVORveqjlQz1TveZa35kctMV1ic.roa
Signing time: Wed 04 Jan 2023 10:06:41 +0000
ROA not before: Wed 04 Jan 2023 10:06:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3177
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:3f:4f:4a:fb:46:28:be:26:ed:da:de:32:d8:34:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Validity
Not Before: Jan 4 10:06:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=995391bdeaa3950cf54ef7996b7e6472d315d627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:70:f1:e2:7f:84:e3:7b:e9:9d:ab:4f:10:76:
1b:bd:5d:1c:2b:1b:10:5b:79:61:50:8f:0e:fd:0e:
8f:72:e5:50:73:8a:b4:d9:52:f0:9b:01:5e:50:3c:
b5:af:33:ee:eb:9f:75:ff:08:96:8a:c8:d3:1f:0e:
fa:dd:d5:60:15:60:95:56:fd:e4:e1:0c:c3:1d:71:
1d:47:9a:4e:8f:12:f0:28:a1:68:ec:4f:b4:cd:f2:
f0:28:5e:94:35:3a:9c:29:0e:62:84:7a:31:d5:1b:
85:f2:4c:ee:1e:a7:7b:2a:c3:29:12:6c:06:23:0a:
f0:98:25:10:c0:10:51:24:1e:56:31:28:0b:b2:5a:
a2:37:08:9f:3f:9f:76:22:90:1c:d9:ff:c0:bf:9e:
cb:92:0d:a3:11:c3:7c:1b:dc:bf:bb:cb:33:e1:1a:
01:33:d3:1e:a1:ef:30:61:c8:f1:7b:3a:f7:8c:f7:
c8:57:45:47:ee:09:0a:cd:f4:53:0e:bf:3d:ba:26:
4a:02:80:17:fc:ae:47:e6:a0:7d:df:f5:55:a0:d7:
c8:25:1d:5a:c6:6e:2c:a7:21:29:3a:d5:cc:a4:27:
61:12:4b:42:49:d3:21:92:40:1c:0c:c2:99:fe:28:
dd:f7:9d:00:01:39:ec:c4:79:a7:49:6d:19:77:26:
e5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:53:91:BD:EA:A3:95:0C:F5:4E:F7:99:6B:7E:64:72:D3:15:D6:27
X509v3 Authority Key Identifier:
keyid:87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/mVORveqjlQz1TveZa35kctMV1ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/h1pNhS1vLlnpN62_ESj8JLDUCQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:e0:3b:d0:c0:8b:d6:df:ee:df:b9:7f:a1:45:60:c2:2c:a3:
fb:e4:57:b4:d3:1f:11:a7:e3:c0:5a:31:52:65:18:5c:13:5c:
21:8f:a9:1f:c0:c1:16:24:13:f4:12:9e:7d:db:e1:e4:59:1e:
77:45:87:fb:2b:a1:6b:82:9a:bb:9b:d6:da:aa:cf:52:04:18:
da:3e:f0:e1:fb:2b:70:b6:dd:c5:d3:05:cb:59:ed:d7:57:ce:
47:22:00:01:b3:c8:3e:f4:15:3e:3c:51:4d:b7:91:70:1d:2d:
be:34:f0:ef:5f:b1:f6:f4:27:69:6b:11:05:c3:d2:6c:f6:8b:
a7:56:20:e0:88:6d:d2:aa:02:36:fd:ec:f1:c7:5a:a6:fa:8d:
77:85:db:16:fe:84:c8:fe:0b:42:76:a5:20:cd:4c:a7:fb:92:
f3:85:aa:ee:36:64:c7:59:6b:06:83:23:83:1f:09:7a:72:78:
a9:75:d0:3b:f0:0a:91:e9:74:f1:7a:8c:cd:36:39:54:96:eb:
c8:ff:3a:95:00:0e:d4:96:4e:cc:f0:24:e7:d8:fd:dc:d7:88:
2b:72:01:36:7e:83:23:14:49:34:69:1b:18:79:28:92:b0:f4:
cf:f9:79:da:ff:70:a7:f1:23:47:cd:21:40:c9:0f:91:e7:b6:
70:2c:bd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:17 2023 by rpki-client on console.sobornost.net