Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/zXk4MOih2UP84bWjMs4YxuVSB0o.roa
File: zXk4MOih2UP84bWjMs4YxuVSB0o.roa (raw, json)
Hash identifier: CGLDSCcqPojyh3BhvsUarb6HUylqBMNn8Kvk3YxAkkI=
Subject key identifier: CD:79:38:30:E8:A1:D9:43:FC:E1:B5:A3:32:CE:18:C6:E5:52:07:4A
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 088B8499
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/zXk4MOih2UP84bWjMs4YxuVSB0o.roa
Signing time: Sat 01 Jan 2022 14:58:46 +0000
ROA not before: Sat 01 Jan 2022 14:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206492
IP address blocks: 62.65.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143361177 (0x88b8499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: Jan 1 14:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd793830e8a1d943fce1b5a332ce18c6e552074a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:d3:02:29:03:9c:4f:22:b4:48:73:89:b3:
4e:8d:dc:3d:30:a3:fd:54:a5:b7:9e:23:51:5e:65:
d8:34:75:8d:14:e6:c3:8d:d1:7b:10:44:e2:2c:e8:
44:84:59:49:e9:73:79:3b:89:df:05:29:90:19:53:
24:9c:13:a7:39:d8:62:57:01:90:1c:44:95:b7:79:
d0:52:ad:1f:42:2d:07:2b:32:65:50:35:a2:31:5b:
55:68:e4:7c:ed:ba:ee:78:1c:bf:68:19:51:81:1e:
0a:c6:b5:0e:40:b6:74:39:0c:15:6a:c4:68:93:a1:
c0:74:7b:da:c4:a3:a5:83:c1:8f:07:5d:a2:e3:a4:
0d:07:42:c1:12:80:a8:f4:d5:e9:4b:b0:60:fe:bf:
60:cc:90:00:8c:fa:44:b8:c1:a9:fe:9a:72:5d:bb:
f5:c6:c6:a6:dc:d7:ba:70:c5:83:27:64:ef:39:5a:
e6:e7:1a:6a:73:7e:a1:8c:d4:6f:5c:2c:d1:00:f0:
6d:0d:ab:58:a0:18:d2:07:ed:fe:1b:9f:1f:08:22:
c0:4e:2c:55:92:ca:c7:ac:c9:d1:ff:80:4a:60:77:
5b:d8:c6:3a:06:ea:f1:94:fb:35:d9:98:b5:1f:32:
bd:ee:76:25:fd:57:4a:0e:70:59:f3:df:dd:38:51:
3b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:79:38:30:E8:A1:D9:43:FC:E1:B5:A3:32:CE:18:C6:E5:52:07:4A
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/zXk4MOih2UP84bWjMs4YxuVSB0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.137.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d8:3d:90:18:c7:9e:8b:26:5f:94:db:62:e6:75:a0:b4:46:
49:64:9d:cd:64:0a:85:50:98:48:70:35:46:f1:10:ac:cd:0e:
26:69:90:7a:c1:50:11:47:44:6a:7f:80:82:6b:db:b2:fb:3f:
ef:d5:44:55:3d:8b:65:1c:0b:b7:da:51:6a:94:94:e0:9d:4d:
28:d8:d4:87:04:97:dd:a1:a0:33:50:84:e5:af:ea:eb:26:12:
bb:84:5c:a8:95:d5:83:72:8c:71:ce:49:02:84:85:12:0b:ad:
75:20:40:1d:87:c8:93:da:fa:4c:93:66:a5:7e:ab:d7:98:b5:
8c:34:20:97:0b:c6:5d:fb:48:64:38:b0:81:6c:eb:1a:ed:ec:
27:4e:0e:17:39:85:e0:88:40:38:c8:c9:1c:10:e3:bf:ed:ed:
9e:b1:64:61:be:94:12:5b:ea:08:ad:6c:09:d0:a9:9a:21:d9:
0a:cb:23:ad:6a:aa:74:c5:fd:8a:e8:cd:dc:73:84:0a:2b:ae:
92:8e:0a:7a:66:b6:5f:bc:0a:b4:01:b2:aa:44:82:f3:bf:9f:
2d:04:36:ad:08:c3:b7:57:3a:f3:ed:e4:97:63:96:09:dd:8d:
f6:8d:75:6e:26:06:b1:a1:bb:29:05:56:f3:b1:2e:d0:25:ee:
3c:c6:88:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:16 2023 by rpki-client on console-fra.rpki-client.org