Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/fd56a1-09d5-431a-b97e-82657d0c4979/1/3epw6x5NydFkjhTQMQNCKN-ypLk.roa
File: 3epw6x5NydFkjhTQMQNCKN-ypLk.roa (raw, json)
Hash identifier: f7Ou32i6uv1cvBYPlcbgUVERIkIxdYs9hc4Feow6BFI=
Subject key identifier: DD:EA:70:EB:1E:4D:C9:D1:64:8E:14:D0:31:03:42:28:DF:B2:A4:B9
Certificate issuer: /CN=ba6a94da5ae2b56a910e92ac91c99e770439bfdc
Certificate serial: 01859FEEB4929362A825292E2F6AE90D5DAF
Authority key identifier: BA:6A:94:DA:5A:E2:B5:6A:91:0E:92:AC:91:C9:9E:77:04:39:BF:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umqU2lritWqRDpKskcmedwQ5v9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/fd56a1-09d5-431a-b97e-82657d0c4979/1/3epw6x5NydFkjhTQMQNCKN-ypLk.roa
Signing time: Wed 11 Jan 2023 08:24:59 +0000
ROA not before: Wed 11 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64417
IP address blocks: 62.106.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9f:ee:b4:92:93:62:a8:25:29:2e:2f:6a:e9:0d:5d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6a94da5ae2b56a910e92ac91c99e770439bfdc
Validity
Not Before: Jan 11 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddea70eb1e4dc9d1648e14d031034228dfb2a4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:34:14:ae:8b:b5:a4:f1:ca:3e:73:ea:0f:02:
2e:75:57:55:d1:07:e2:85:f2:68:63:d5:0f:eb:fc:
dc:6d:31:61:78:b9:f0:57:7c:a7:46:cf:e4:e7:d0:
39:f2:db:7c:50:3d:1c:2d:5b:5f:4c:b9:9a:9e:0c:
11:44:db:ea:58:f3:c9:fe:e8:65:32:7c:ca:12:37:
8a:55:31:e3:a9:84:d8:1d:50:bf:8e:9f:ad:17:32:
52:c0:52:bc:39:3e:d3:66:4b:d2:ca:6c:0a:fc:e4:
c1:03:c0:38:be:d1:27:60:bb:f5:60:6a:3b:15:4a:
42:03:1d:0f:f7:f6:92:b5:04:7f:3d:75:49:b0:9f:
9f:57:58:01:e1:33:7e:39:85:64:83:c6:f2:7a:ee:
6c:35:99:d7:ea:a0:6b:a9:51:a9:9b:7b:45:1d:e4:
63:a2:0e:94:f2:f3:00:89:52:32:e2:36:bf:a8:3f:
44:e6:7e:5a:7c:f9:98:4f:8e:eb:4c:c6:f3:e5:36:
11:39:cc:a1:fd:6d:f5:6c:67:7f:d3:48:c3:85:fd:
56:c4:f3:39:79:c4:11:ea:e5:27:c1:9e:e8:c0:0c:
b6:88:fe:80:2b:c4:c8:0e:a6:af:3a:9d:45:10:f0:
78:08:ff:3b:a5:0b:1c:2f:44:dc:4e:46:f4:32:41:
69:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EA:70:EB:1E:4D:C9:D1:64:8E:14:D0:31:03:42:28:DF:B2:A4:B9
X509v3 Authority Key Identifier:
keyid:BA:6A:94:DA:5A:E2:B5:6A:91:0E:92:AC:91:C9:9E:77:04:39:BF:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umqU2lritWqRDpKskcmedwQ5v9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/fd56a1-09d5-431a-b97e-82657d0c4979/1/3epw6x5NydFkjhTQMQNCKN-ypLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/fd56a1-09d5-431a-b97e-82657d0c4979/1/umqU2lritWqRDpKskcmedwQ5v9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.92.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:24:11:22:c9:f3:42:28:06:39:a2:c4:eb:6c:07:4a:56:f6:
33:05:65:c3:19:d2:61:98:cf:9b:24:bb:d8:ed:22:37:78:88:
f1:a5:63:7d:0d:7d:6c:34:07:fe:d1:85:de:70:03:97:27:70:
74:35:54:53:1b:e7:cc:13:67:f1:52:79:21:ca:1d:55:c9:2f:
cb:0a:ee:38:f1:10:39:62:c4:60:52:fe:70:c7:e3:b9:85:03:
cf:8a:07:e1:61:98:9d:60:b1:45:95:26:79:c4:51:ae:7e:c5:
b6:bc:40:30:80:fe:1d:c9:15:de:44:9d:ee:1c:95:bb:05:66:
99:75:7e:c2:85:86:1b:7c:3c:61:b4:1a:23:2a:7f:88:b1:f2:
2b:37:30:9f:98:b0:aa:97:88:62:1f:ae:55:f1:e9:07:0e:3e:
95:3d:09:89:89:5d:18:02:9a:42:4e:46:b6:65:08:c0:a6:1f:
fd:f5:2e:ac:2b:66:e5:35:63:9a:a6:c7:8c:69:1d:55:dd:3f:
3e:7f:2c:c8:12:dd:29:73:40:04:f4:03:02:20:9a:ea:1c:7a:
20:8b:24:f9:b1:69:22:48:53:bd:8d:ac:81:c7:8a:60:c0:b2:
55:ec:e8:89:5d:40:ef:ca:16:06:31:a7:f4:c4:80:1c:92:be:
6b:ca:df:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-fra.rpki-client.org