Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wkRQLb3GIywGTBHgS-3jW6Vf-4M.roa
File: wkRQLb3GIywGTBHgS-3jW6Vf-4M.roa (raw, json)
Hash identifier: g4wY9UsqS4lC+ooP/XiCVTIA8ZFynFyWVIR/Srx2dK0=
Subject key identifier: C2:44:50:2D:BD:C6:23:2C:06:4C:11:E0:4B:ED:E3:5B:A5:5F:FB:83
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019445276BF1CC714FAB15B016F71C15F2DD
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wkRQLb3GIywGTBHgS-3jW6Vf-4M.roa
Signing time: Wed 08 Jan 2025 09:03:18 +0000
ROA not before: Wed 08 Jan 2025 09:03:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 170.62.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:45:27:6b:f1:cc:71:4f:ab:15:b0:16:f7:1c:15:f2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 8 09:03:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c244502dbdc6232c064c11e04bede35ba55ffb83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5c:15:e1:ef:02:1f:4d:42:4a:e3:5a:b7:03:
f9:61:d2:c8:73:db:22:5e:e7:61:cc:5e:7f:95:a1:
1a:2a:05:ee:64:ae:f0:36:b8:15:ef:04:79:4e:66:
dc:f4:ae:d0:57:f3:91:83:cb:80:13:50:46:98:67:
2c:af:1f:02:76:a2:c2:d3:8a:2d:18:c1:cc:6d:ec:
67:b3:46:b5:67:72:c4:ae:3d:17:10:96:97:b0:73:
1a:25:ae:54:27:2a:45:d1:52:01:57:27:4a:43:01:
1e:c0:00:85:a7:2b:8a:64:41:50:a0:1a:06:5b:70:
bc:ef:23:8c:cb:e9:c6:7c:7d:d9:e9:6d:44:90:81:
29:79:73:73:97:73:8e:79:48:2b:e7:68:92:f0:d8:
e5:0b:e9:14:4b:c2:fa:97:f8:0a:31:2d:ae:a3:41:
e9:ea:7d:c7:33:bc:92:bf:34:24:93:43:48:58:b1:
bc:7a:b2:e9:86:fc:05:1d:3f:68:c6:d0:b6:d5:cd:
e7:72:b9:77:8f:b0:a9:9b:a0:a1:0e:10:e2:71:c2:
bc:5a:91:82:f7:dc:fd:52:d0:98:1d:f4:cb:eb:71:
13:f6:50:08:21:73:5e:ce:b7:03:ef:5f:8e:05:23:
5c:a8:22:87:50:9f:4d:57:91:4b:f8:02:d1:26:68:
f9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:44:50:2D:BD:C6:23:2C:06:4C:11:E0:4B:ED:E3:5B:A5:5F:FB:83
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wkRQLb3GIywGTBHgS-3jW6Vf-4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.240.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:4b:30:42:b1:4f:dd:d2:7c:20:d2:40:eb:4f:59:02:6b:e9:
92:6a:81:cf:bf:76:c9:1c:d4:69:7c:f2:df:04:23:9a:c1:c9:
c8:a8:cf:ab:e6:f4:43:e8:d1:bc:d6:b9:3c:98:e6:33:8e:c3:
cc:c0:84:17:ed:ad:e5:3c:29:7f:ba:5e:62:7b:c9:dc:70:aa:
1c:c2:f5:76:7a:20:a2:c9:d3:c5:d8:3b:42:94:bf:df:a9:91:
50:5d:c1:1b:e7:79:93:e6:b9:24:d5:d7:0f:7f:c5:37:29:61:
ab:6f:56:fb:5a:39:0f:49:e2:20:bb:ec:4c:dc:19:38:2b:5a:
55:39:85:d7:43:b6:a0:ee:55:9d:33:93:b9:c4:65:fb:3c:73:
df:3d:bb:90:3e:e5:9f:fd:f1:6f:3e:15:fe:b7:66:cb:e7:ae:
db:ec:99:ae:7b:61:aa:57:ba:9e:24:24:08:e2:98:83:e9:4d:
6f:2d:3b:bc:8c:94:6c:18:31:2e:b9:76:83:90:ef:93:91:62:
47:fa:b2:de:c7:ac:73:b0:1f:71:aa:8f:f1:44:7b:fc:bf:80:
96:6b:6f:10:64:01:9c:b2:c5:c4:b3:ca:67:03:83:79:6b:30:
cd:87:77:74:8a:6e:7c:82:b5:9f:5d:ce:74:f2:74:46:58:aa:
0a:5d:4d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:34:06 2025 by rpki-client