Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/djBCY1YJTgS3hYmJg5SoEksMGZw.roa
File: djBCY1YJTgS3hYmJg5SoEksMGZw.roa (raw, json)
Hash identifier: qSP6GGpUDhVSEcP58D8nEYkabPvoRYE59QfU94TiARM=
Subject key identifier: 76:30:42:63:56:09:4E:04:B7:85:89:89:83:94:A8:12:4B:0C:19:9C
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 018CC9BCAD964D875D12BDF1A09B911770EB
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/djBCY1YJTgS3hYmJg5SoEksMGZw.roa
Signing time: Tue 02 Jan 2024 10:33:54 +0000
ROA not before: Tue 02 Jan 2024 10:33:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42751
IP address blocks: 77.222.32.0/22 maxlen: 22
77.222.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ad:96:4d:87:5d:12:bd:f1:a0:9b:91:17:70:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 2 10:33:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7630426356094e04b78589898394a8124b0c199c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:41:68:34:f6:97:ef:fd:dc:cf:de:a3:7c:f4:
a5:8e:aa:fb:b9:4d:9d:13:49:8a:9f:c6:53:45:52:
2d:a6:a8:4a:f4:7c:e6:72:21:29:0f:e9:08:07:37:
53:08:7f:4e:c1:46:a6:9f:79:95:58:51:84:22:fc:
7a:48:ef:04:03:f1:d1:ea:3d:40:d8:bd:76:70:a1:
22:81:7c:89:ea:5c:d0:e5:1d:1c:13:d9:e8:1f:a8:
9d:ce:fb:2d:de:d9:8f:1e:05:7c:de:3d:6a:aa:df:
88:a4:c0:84:29:55:d6:5c:02:96:5c:fc:af:34:bc:
ef:f9:1a:c9:a2:03:5b:47:af:72:b3:ed:79:cc:67:
e8:e9:36:15:f6:ad:3e:cc:6c:91:89:41:dd:e8:59:
53:fe:87:99:bd:9f:1b:c0:f7:83:33:5d:99:40:b8:
43:a9:40:35:ca:b5:a3:81:20:8a:dd:ce:be:92:61:
82:a0:92:26:cd:7f:66:7f:13:9a:e7:df:75:12:62:
cc:16:2b:79:67:45:02:4d:3b:d6:98:c4:49:d6:03:
48:9e:26:c0:d8:c9:a2:a0:d0:56:4a:58:e4:06:95:
a2:e3:c2:17:17:42:8f:03:59:4a:26:1c:6c:a9:c5:
23:d1:6b:ff:a7:bd:da:bb:8b:e6:8c:62:3b:35:bf:
e8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:30:42:63:56:09:4E:04:B7:85:89:89:83:94:A8:12:4B:0C:19:9C
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/djBCY1YJTgS3hYmJg5SoEksMGZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.222.32.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:21:97:65:ba:61:c5:7b:c7:da:30:fa:24:fc:3b:a6:05:9a:
8d:38:10:9a:8d:29:d9:d9:6d:3b:3c:fd:53:25:d3:5b:fc:29:
84:f8:af:4f:40:16:ad:56:1d:0e:44:44:d4:83:3d:99:de:87:
38:90:98:5e:96:eb:f8:89:f7:01:13:d2:84:c1:74:9a:04:a6:
77:23:7a:56:16:dc:a9:67:b6:38:c7:36:07:44:3e:2c:e1:c5:
e1:b4:7f:df:23:6f:b9:04:80:a9:67:00:d1:c5:27:c0:13:23:
5b:1e:b2:fa:37:48:59:b1:e6:88:16:c1:4d:62:fe:48:ab:0c:
fe:03:ec:d1:3c:98:6e:16:5a:b0:99:5e:b5:1d:ae:9e:02:43:
3a:97:32:d3:d3:45:36:69:fb:d2:61:63:fe:d6:c6:56:17:03:
6c:cc:a6:6d:63:33:87:e0:23:05:95:2e:3c:9e:3d:fc:0d:0e:
b3:dd:72:d7:8f:bf:f6:ba:f9:2f:7a:1f:d0:83:8c:64:3b:38:
65:b3:d5:ed:f8:eb:55:e5:85:1b:8a:fb:8b:f6:0a:41:6d:84:
f7:79:b1:6b:3b:39:7f:a3:eb:17:7a:af:9f:ab:3e:51:f8:b8:
3d:34:61:ab:23:9d:fb:b0:f7:a3:54:03:df:f7:dc:14:a9:69:
1d:76:42:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:57 2024 by rpki-client on console.sobornost.net