Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/acd6f7-793b-40a5-ba1a-3ae11bb2dd98/1/kc64ezpGjCIqBswy0_4imVkqVAc.roa
File: kc64ezpGjCIqBswy0_4imVkqVAc.roa (raw, json)
Hash identifier: PlKfzzS3eRNppmZf2/Y6+D6oTnhG227GCkB7wGkCxy0=
Subject key identifier: 91:CE:B8:7B:3A:46:8C:22:2A:06:CC:32:D3:FE:22:99:59:2A:54:07
Certificate issuer: /CN=5786de22c3066b9f5ad9a88fd024dc1baecc70ab
Certificate serial: 015340C3
Authority key identifier: 57:86:DE:22:C3:06:6B:9F:5A:D9:A8:8F:D0:24:DC:1B:AE:CC:70:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V4beIsMGa59a2aiP0CTcG67McKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/acd6f7-793b-40a5-ba1a-3ae11bb2dd98/1/kc64ezpGjCIqBswy0_4imVkqVAc.roa
Signing time: Sat 01 Jan 2022 04:52:39 +0000
ROA not before: Sat 01 Jan 2022 04:52:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50809
IP address blocks: 37.77.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22233283 (0x15340c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5786de22c3066b9f5ad9a88fd024dc1baecc70ab
Validity
Not Before: Jan 1 04:52:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91ceb87b3a468c222a06cc32d3fe2299592a5407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e0:9a:63:2c:8e:07:37:b6:4f:59:d6:80:79:
55:7f:4b:fc:29:2b:be:58:0d:9a:06:1d:7b:8e:ca:
cb:2f:91:25:1c:a6:a5:38:4a:1e:6f:e7:90:e3:d6:
ac:4d:b2:bb:05:95:5b:d4:43:dc:ab:7b:4b:f0:69:
02:40:2d:13:61:fc:ee:04:87:f2:f6:05:db:87:e0:
6c:8a:09:c4:36:9d:c5:51:ca:35:52:2c:92:77:2a:
36:7b:dd:4b:40:ce:2a:a0:c4:b8:88:3d:bb:06:f4:
27:fe:3a:f3:ee:86:a7:9e:1d:c9:23:3b:37:3e:c5:
fc:91:27:7b:3c:5f:7e:e9:9d:80:fb:3e:d1:47:c5:
42:5f:c1:5a:db:c3:fa:54:08:8a:f1:7f:00:16:90:
97:5d:ba:0a:7f:0d:23:31:0f:77:cb:5e:e6:b3:b3:
9b:ca:79:68:2c:a6:78:b2:20:33:a7:b7:00:24:f3:
bd:95:f1:b4:f9:78:cc:e3:68:41:8e:90:e6:dd:6c:
3c:dd:cc:11:66:ec:e7:bb:9f:47:b4:32:f4:f1:81:
1b:eb:51:7e:06:7e:30:9a:1d:ef:b3:06:c6:c1:b6:
52:c7:23:b3:55:cd:c3:85:e6:c6:88:d7:08:a9:75:
4e:e1:f8:0d:35:73:11:8d:b7:f8:b0:cd:e3:60:2c:
90:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CE:B8:7B:3A:46:8C:22:2A:06:CC:32:D3:FE:22:99:59:2A:54:07
X509v3 Authority Key Identifier:
keyid:57:86:DE:22:C3:06:6B:9F:5A:D9:A8:8F:D0:24:DC:1B:AE:CC:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V4beIsMGa59a2aiP0CTcG67McKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/acd6f7-793b-40a5-ba1a-3ae11bb2dd98/1/kc64ezpGjCIqBswy0_4imVkqVAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/acd6f7-793b-40a5-ba1a-3ae11bb2dd98/1/V4beIsMGa59a2aiP0CTcG67McKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.148.0/24
Signature Algorithm: sha256WithRSAEncryption
59:09:58:95:19:0a:f4:f6:49:e8:04:21:8a:34:9d:06:a4:fa:
b8:81:1f:ae:7e:0b:8d:0f:47:51:13:3a:15:09:24:d7:27:28:
8e:ab:53:76:f4:de:f9:da:bc:b7:bb:da:20:ab:0b:d8:32:a9:
aa:51:60:2a:e0:b6:26:c1:e5:3b:3d:17:c6:3a:4f:06:20:d2:
85:0b:78:79:02:4e:c1:9d:5e:3e:90:58:de:97:fe:42:79:98:
71:6f:67:6a:6d:b6:5e:8d:07:ef:1b:da:f1:7c:de:c5:9c:85:
9b:22:6e:fc:97:45:c9:8a:d8:b1:74:3f:e7:77:ff:f3:fa:c6:
30:bb:9d:b8:67:d5:41:16:52:58:ab:ae:12:9d:94:be:02:cd:
89:5d:1c:ce:e6:89:ba:f9:b4:50:3f:7a:ff:fe:bd:ec:b9:fb:
f7:e3:5e:36:24:be:0f:b5:96:3b:95:f8:99:74:77:41:d8:b3:
6b:ba:55:4f:b4:c7:cd:59:32:e1:4a:c5:e6:8e:bb:36:97:9d:
79:30:59:4e:23:93:2f:71:9f:4c:f3:ae:82:26:13:63:3a:e1:
63:03:36:20:34:7f:4b:86:f0:95:97:1d:8b:34:81:f8:65:ba:
6d:a8:bb:c5:c5:96:d1:bd:79:68:af:fa:0e:3c:d6:e6:d8:17:
91:0e:b2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:08:47 2025 by rpki-client