Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/zFkb5vmfBcL1iVN6HV77-cz4Ghw.roa
File: zFkb5vmfBcL1iVN6HV77-cz4Ghw.roa (raw, json)
Hash identifier: T3yzIK8+BeOR/0dBlTGBtLTcJUXeunwWo+46AlFwj9k=
Subject key identifier: CC:59:1B:E6:F9:9F:05:C2:F5:89:53:7A:1D:5E:FB:F9:CC:F8:1A:1C
Certificate issuer: /CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Certificate serial: 018908B048333BB1A4D62FAF7DC1BB0BB07E
Authority key identifier: 87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/zFkb5vmfBcL1iVN6HV77-cz4Ghw.roa
Signing time: Thu 29 Jun 2023 19:45:17 +0000
ROA not before: Thu 29 Jun 2023 19:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:08:b0:48:33:3b:b1:a4:d6:2f:af:7d:c1:bb:0b:b0:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875a4d852d6f2e59e937adbf1128fc24b0d40900
Validity
Not Before: Jun 29 19:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc591be6f99f05c2f589537a1d5efbf9ccf81a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fe:04:4a:91:5e:27:c1:b2:30:ca:a9:cb:bd:
c8:c5:5f:d2:68:ad:b5:e9:68:d4:73:38:a1:0a:bb:
53:c3:50:15:53:b2:a9:9a:44:21:3b:74:59:da:08:
d5:54:0c:01:62:b4:89:c2:9f:fa:2a:77:f3:ae:25:
33:59:2e:78:f6:2a:55:2a:96:67:da:5f:76:f7:5d:
c3:13:e5:7c:25:da:14:b5:42:ab:98:30:c5:42:1e:
5b:57:ad:42:db:45:1e:42:04:d1:2e:b4:90:97:32:
f6:2e:d7:c3:f8:93:be:7d:55:0b:3a:d0:5c:c7:47:
2b:90:c9:57:be:5a:fb:e0:eb:4e:45:7f:a9:97:16:
80:07:44:3c:e1:40:26:47:65:1b:d9:de:ed:9b:8b:
f1:7e:19:7e:27:67:7e:02:77:e6:d9:bf:66:21:84:
dd:ba:d8:1d:92:0d:70:ae:98:74:8c:ea:62:a8:3f:
7d:b7:a4:09:1e:5a:6b:ed:7f:f8:0c:cb:46:d7:b4:
a8:f4:ac:77:88:84:c3:5f:47:1f:f2:b5:a4:1a:1b:
9b:a2:9e:60:1b:d3:34:41:b0:ae:7d:84:9b:7e:71:
7d:22:a5:bf:72:1b:bc:40:46:a8:3e:0f:45:be:88:
25:83:3b:8c:7b:7e:c3:e5:17:66:05:d8:0d:e6:a9:
4a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:59:1B:E6:F9:9F:05:C2:F5:89:53:7A:1D:5E:FB:F9:CC:F8:1A:1C
X509v3 Authority Key Identifier:
keyid:87:5A:4D:85:2D:6F:2E:59:E9:37:AD:BF:11:28:FC:24:B0:D4:09:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1pNhS1vLlnpN62_ESj8JLDUCQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/zFkb5vmfBcL1iVN6HV77-cz4Ghw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f10a59-1938-4e46-8d0c-7981f550b094/1/h1pNhS1vLlnpN62_ESj8JLDUCQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
75:01:00:55:d2:63:68:02:44:48:7f:54:ff:f5:42:57:9e:15:
ba:24:58:fa:21:93:bb:a9:85:fd:ea:fc:bf:96:21:d3:6c:be:
e3:c2:30:94:7e:a4:9d:3b:b1:26:b1:40:88:65:81:04:60:08:
48:9d:40:2b:33:bc:5e:5b:9f:9a:3a:a2:9f:37:34:32:e8:70:
49:a9:e8:70:1d:7f:bb:b4:9d:80:61:73:be:77:d6:d9:51:af:
af:f5:d5:8e:20:be:46:7b:f5:61:91:fc:52:85:41:db:51:d5:
05:b0:b4:62:0f:3e:ea:43:2b:73:84:01:a2:45:17:c1:7b:f1:
d6:69:7f:37:38:e3:c7:e9:1a:c2:b0:4a:8a:dd:1f:e7:c9:44:
dc:9b:e5:fd:68:de:d0:2f:83:f4:87:60:5d:60:ca:64:8b:78:
8c:13:cf:0f:63:94:85:94:0d:8f:84:34:15:eb:3b:0d:84:63:
ce:83:1f:5b:00:06:e5:5d:1c:5a:32:67:9d:b0:03:36:3f:73:
02:ef:e2:82:a9:ca:be:0f:d6:35:85:f3:2a:e9:4f:6a:38:22:
ba:95:84:fe:6a:98:00:29:20:42:53:09:9b:0d:35:7b:6c:ab:
20:16:85:75:f6:3a:80:6e:a6:67:55:d3:fd:fb:b0:3b:8a:5d:
4f:b5:c1:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkIsEgzO7Gk1i+vfcG7C7B+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NWE0ZDg1MmQ2ZjJlNTllOTM3YWRiZjExMjhmYzI0YjBk
NDA5MDAwHhcNMjMwNjI5MTk0NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzU5MWJlNmY5OWYwNWMyZjU4OTUzN2ExZDVlZmJmOWNjZjgxYTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/4ESpFeJ8GyMMqpy73IxV/SaK21
6WjUczihCrtTw1AVU7KpmkQhO3RZ2gjVVAwBYrSJwp/6KnfzriUzWS549ipVKpZn
2l92913DE+V8JdoUtUKrmDDFQh5bV61C20UeQgTRLrSQlzL2LtfD+JO+fVULOtBc
x0crkMlXvlr74OtORX+plxaAB0Q84UAmR2Ub2d7tm4vxfhl+J2d+Anfm2b9mIYTd
utgdkg1wrph0jOpiqD99t6QJHlpr7X/4DMtG17So9Kx3iITDX0cf8rWkGhubop5g
G9M0QbCufYSbfnF9IqW/chu8QEaoPg9FvoglgzuMe37D5RdmBdgN5qlKkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMxZG+b5nwXC9YlTeh1e+/nM+BocMB8GA1UdIwQY
MBaAFIdaTYUtby5Z6TetvxEo/CSw1AkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDFwTmhTMXZMbG5wTjYyX0VTajhKTERVQ1FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mMTBhNTktMTkzOC00ZTQ2LThkMGMt
Nzk4MWY1NTBiMDk0LzEvekZrYjV2bWZCY0wxaVZONkhWNzctY3o0R2h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9mMTBhNTktMTkzOC00ZTQ2LThkMGMtNzk4MWY1NTBiMDk0
LzEvaDFwTmhTMXZMbG5wTjYyX0VTajhKTERVQ1FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUhRMA0G
CSqGSIb3DQEBCwUAA4IBAQB1AQBV0mNoAkRIf1T/9UJXnhW6JFj6IZO7qYX96vy/
liHTbL7jwjCUfqSdO7EmsUCIZYEEYAhInUArM7xeW5+aOqKfNzQy6HBJqehwHX+7
tJ2AYXO+d9bZUa+v9dWOIL5Ge/VhkfxShUHbUdUFsLRiDz7qQytzhAGiRRfBe/HW
aX83OOPH6RrCsEqK3R/nyUTcm+X9aN7QL4P0h2BdYMpki3iME88PY5SFlA2PhDQV
6zsNhGPOgx9bAAblXRxaMmedsAM2P3MC7+KCqcq+D9Y1hfMq6U9qOCK6lYT+apgA
KSBCUwmbDTV7bKsgFoV19jqAbqZnVdP9+7A7il1PtcHC
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:17 2023 by rpki-client on console.sobornost.net