Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/B2pNdigFezuZOJWraoUnvB1hcuA.roa
File: B2pNdigFezuZOJWraoUnvB1hcuA.roa (raw, json)
Hash identifier: jWquaHwJoVsVKWB5iQNLj1cJJIiONE5DswJVBu0XCdE=
Subject key identifier: 07:6A:4D:76:28:05:7B:3B:99:38:95:AB:6A:85:27:BC:1D:61:72:E0
Certificate issuer: /CN=b70012047c6e2d2108065fb872fa5783159a362d
Certificate serial: 01856E5416AB2730912C7E99F0545C9310A4
Authority key identifier: B7:00:12:04:7C:6E:2D:21:08:06:5F:B8:72:FA:57:83:15:9A:36:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twASBHxuLSEIBl-4cvpXgxWaNi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/B2pNdigFezuZOJWraoUnvB1hcuA.roa
Signing time: Sun 01 Jan 2023 17:14:42 +0000
ROA not before: Sun 01 Jan 2023 17:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64429
IP address blocks: 77.72.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:16:ab:27:30:91:2c:7e:99:f0:54:5c:93:10:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70012047c6e2d2108065fb872fa5783159a362d
Validity
Not Before: Jan 1 17:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=076a4d7628057b3b993895ab6a8527bc1d6172e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:4f:27:2f:4e:61:e8:b4:5e:ed:c1:e3:ef:
34:df:73:ca:3c:3a:d1:ad:59:1b:35:18:81:03:46:
10:84:da:98:d2:6a:c1:25:8e:f9:e2:18:64:85:31:
42:ee:2c:e0:5f:2d:6d:bb:70:69:62:9c:d4:03:3c:
71:5e:8f:9a:98:e8:3a:4a:55:e4:1d:a8:81:36:55:
7c:cc:38:e5:27:6b:a3:45:ce:c0:db:65:10:0c:ea:
5b:7d:9a:2f:5a:0b:ad:41:6d:06:9f:74:2a:5a:75:
66:1a:d2:ee:46:32:cb:a4:0c:b0:50:d3:30:b4:8f:
23:fc:8d:ab:22:93:6a:4f:e8:74:89:ce:1c:c0:05:
0b:35:f2:58:20:c7:4d:cd:8e:6c:30:f4:c4:88:d2:
05:5c:a1:29:52:d8:c5:6f:98:e8:f8:a5:b5:24:eb:
67:85:81:4f:a3:b8:f3:7e:a4:2f:17:33:f6:08:c1:
bd:36:91:bd:20:c3:45:f5:17:cf:e2:96:4b:81:b3:
e6:4d:58:3a:17:26:2f:27:2a:93:ce:1a:97:4d:97:
90:ac:cc:fd:c5:da:05:30:fc:fc:8e:43:f8:39:5a:
11:d6:6d:11:77:02:cd:fd:e0:fe:97:60:69:4a:77:
f3:a9:c0:ba:79:aa:51:4c:47:9a:f8:29:92:21:2c:
71:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6A:4D:76:28:05:7B:3B:99:38:95:AB:6A:85:27:BC:1D:61:72:E0
X509v3 Authority Key Identifier:
keyid:B7:00:12:04:7C:6E:2D:21:08:06:5F:B8:72:FA:57:83:15:9A:36:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twASBHxuLSEIBl-4cvpXgxWaNi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/B2pNdigFezuZOJWraoUnvB1hcuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/twASBHxuLSEIBl-4cvpXgxWaNi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.86.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:22:d0:75:c2:0e:50:42:38:fe:74:68:b4:d7:93:db:d9:83:
aa:89:cf:1f:81:73:90:d8:17:96:c7:8b:f3:a6:77:08:92:e9:
43:4d:dc:fb:b8:e2:66:51:73:40:b4:69:1a:f3:1b:2a:48:4c:
ab:3c:44:1b:35:ea:68:d9:47:2c:46:66:0e:56:fd:aa:a6:d1:
ea:d7:cf:fe:64:98:0a:67:f4:1a:fb:a4:81:f3:2c:e0:fe:56:
5a:6c:1b:8b:84:56:5a:5a:b2:49:89:ef:a4:d4:a5:a5:3b:57:
c7:2c:f0:17:2e:b6:f6:73:80:d1:e8:39:31:71:ac:1f:fc:1f:
23:36:31:ea:ab:b4:e0:d9:86:4b:95:f6:2f:45:af:e9:aa:b7:
ff:d5:70:3a:d0:ff:66:01:4a:47:6f:89:45:28:79:12:f0:8c:
1b:b7:3a:ca:8e:e2:c1:ae:e6:d5:a6:5a:67:7f:80:2e:f2:f6:
d1:99:c9:12:1c:7e:a7:ca:07:cc:db:83:13:c3:da:41:4f:3c:
a9:04:7c:da:9b:32:5b:62:49:a8:51:58:55:8d:04:98:5e:7a:
2b:9d:1e:93:ac:eb:df:fd:21:b0:ad:56:8e:ac:5f:0c:2d:f0:
92:c4:ef:47:a0:6f:09:45:7b:c2:1c:81:04:76:c7:9b:2a:0d:
0c:48:d8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:59 2023 by rpki-client on console.sobornost.net