Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/MqUoaR99eNjoK2Lt2rxxNJbik7Q.roa
File: MqUoaR99eNjoK2Lt2rxxNJbik7Q.roa (raw, json)
Hash identifier: nGbInz7OCxmiA6OXNVfUGoLeYRnDlmkkA5L1LvpR/8c=
Subject key identifier: 32:A5:28:69:1F:7D:78:D8:E8:2B:62:ED:DA:BC:71:34:96:E2:93:B4
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 019424B2676FE828EFC6593D0475102759CD
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/MqUoaR99eNjoK2Lt2rxxNJbik7Q.roa
Signing time: Thu 02 Jan 2025 01:47:39 +0000
ROA not before: Thu 02 Jan 2025 01:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51540
IP address blocks: 77.223.146.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:67:6f:e8:28:ef:c6:59:3d:04:75:10:27:59:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Jan 2 01:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32a528691f7d78d8e82b62eddabc713496e293b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:25:da:7e:68:e7:95:38:f6:77:b6:f6:2a:ce:
e1:ac:19:81:3e:2d:2b:17:45:63:fe:d6:3e:00:dc:
4a:93:30:c0:4e:48:87:d1:4f:7b:08:82:dd:0b:21:
ce:f7:94:29:4f:7d:df:19:7a:c0:6a:1e:f6:65:b1:
c1:0b:06:8a:f8:90:fd:28:a7:88:06:cb:d5:05:d5:
2c:db:67:45:f1:34:70:34:0a:33:8c:32:72:b0:29:
6d:99:a1:ca:f0:85:fc:db:81:76:18:8c:74:7b:dd:
38:5b:63:df:eb:fe:f0:b5:7c:d4:e3:8b:75:40:0a:
b1:03:a5:99:85:44:ff:8a:d8:3e:04:3f:6c:de:04:
23:ed:94:9a:75:b4:9d:49:15:44:c5:cb:47:ee:94:
d9:f4:a8:06:50:86:1c:85:f9:e6:8a:28:84:72:0a:
bb:2b:73:2d:ae:42:5a:49:ac:2f:34:60:de:44:a6:
d0:c3:a9:8e:3d:b9:d1:e4:74:0d:0f:dd:bb:78:f6:
0b:9f:75:b8:87:ba:f3:df:a2:62:e3:1f:73:06:2a:
48:6f:7b:c3:6c:4f:ca:97:c7:6f:b7:f5:bb:8c:3d:
97:f7:b7:32:a7:8c:9f:e3:eb:a4:8e:4f:25:06:ec:
c7:4e:b4:6a:ec:66:4f:d1:0d:11:27:61:67:35:43:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A5:28:69:1F:7D:78:D8:E8:2B:62:ED:DA:BC:71:34:96:E2:93:B4
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/MqUoaR99eNjoK2Lt2rxxNJbik7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.146.0/23
Signature Algorithm: sha256WithRSAEncryption
26:ae:29:54:39:8d:99:f4:9b:11:f8:b1:70:fe:4d:70:ba:e5:
9d:0b:73:e8:86:f6:bf:a1:29:95:29:d8:64:9d:1c:8d:7c:44:
8b:c4:a9:0a:80:08:e0:04:60:48:92:49:32:63:9d:9b:c8:53:
5b:c2:7b:f9:b3:c6:78:fe:52:5e:35:02:18:15:97:fa:4e:b6:
05:c5:de:4f:1e:fd:dd:a4:f6:b4:dc:88:70:44:1a:04:9a:cf:
66:1f:e4:d4:8b:da:b8:19:47:f6:08:b9:d0:2f:27:b4:d1:7e:
eb:12:54:0c:8d:42:9d:2c:11:6b:59:1f:dd:fe:74:44:41:b3:
b6:98:14:5b:06:51:3e:96:4a:e5:04:7d:3a:09:34:ad:bb:f7:
f8:8a:64:87:0e:5e:b9:a7:52:a7:1c:04:8e:f5:5b:20:e7:e6:
cc:7a:33:37:5e:c6:a4:f1:d5:08:df:a2:39:0a:90:d0:28:a8:
ff:b4:ca:20:8f:a9:c6:d1:27:3f:49:3a:a9:05:4c:ee:25:39:
54:88:1b:91:59:24:4c:ca:fe:f5:17:87:ad:b8:6f:82:95:f1:
bc:0e:e2:77:ea:2f:10:af:9a:21:e7:03:8e:68:66:0d:c2:6f:
4d:ef:d9:c2:89:d0:68:3f:89:08:15:27:9b:c6:09:c5:52:c7:
0c:b9:77:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 06:51:15 2025 by rpki-client