Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5b1319-b987-4f94-b326-5769019fefb8/1/lpH8l7oRTSl9edpJVqyUrMW7bBc.roa
File: lpH8l7oRTSl9edpJVqyUrMW7bBc.roa (raw, json)
Hash identifier: cnkJkjYtUcek+PZJ1aEYs2NmFs6YYreTuqjDwcqB8l4=
Subject key identifier: 96:91:FC:97:BA:11:4D:29:7D:79:DA:49:56:AC:94:AC:C5:BB:6C:17
Certificate issuer: /CN=81b14fae44dfa0e3349167433c924c9645739861
Certificate serial: 019241D14D4C63EA7AFF67A9BF890D5656DB
Authority key identifier: 81:B1:4F:AE:44:DF:A0:E3:34:91:67:43:3C:92:4C:96:45:73:98:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbFPrkTfoOM0kWdDPJJMlkVzmGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5b1319-b987-4f94-b326-5769019fefb8/1/lpH8l7oRTSl9edpJVqyUrMW7bBc.roa
Signing time: Mon 30 Sep 2024 07:24:48 +0000
ROA not before: Mon 30 Sep 2024 07:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35297
IP address blocks: 62.68.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:41:d1:4d:4c:63:ea:7a:ff:67:a9:bf:89:0d:56:56:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81b14fae44dfa0e3349167433c924c9645739861
Validity
Not Before: Sep 30 07:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9691fc97ba114d297d79da4956ac94acc5bb6c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:6f:61:4e:16:74:21:4d:b3:d8:55:4d:59:01:
6c:a5:13:fe:3e:7d:03:ec:96:89:15:a5:5e:16:01:
51:8b:86:5e:18:69:17:21:40:16:93:83:79:32:ad:
68:cd:20:40:5d:73:20:7a:82:93:6b:ac:49:19:9f:
4c:62:42:34:f5:bf:e4:21:ae:e0:45:75:0e:0e:8b:
07:da:84:b3:0c:19:16:68:c6:6b:26:06:5d:9b:27:
38:8c:67:ce:74:24:2e:c9:e8:ff:ff:4a:bb:bb:1a:
7c:ad:d0:38:50:6c:ed:d5:52:76:65:10:a3:4c:8d:
2c:ec:05:ed:b0:55:be:52:14:cc:82:7a:44:59:28:
55:53:32:58:84:17:7b:6c:58:0c:f4:81:bc:ff:d9:
f9:3e:cd:58:53:c2:1a:79:71:45:09:07:15:5d:29:
f1:fc:78:5c:08:d5:89:7e:d3:af:5f:52:44:e4:7d:
ed:6b:a5:4c:8b:4b:b4:3f:b0:cf:b5:3e:79:ab:5d:
8d:c5:d3:de:cb:b4:9a:c6:98:3d:f0:5f:1f:4b:28:
06:1b:c3:2b:8f:c2:ce:40:6d:e7:06:29:c1:80:2d:
f8:52:c0:05:83:81:08:5f:0e:47:00:13:a1:28:15:
e5:42:ac:c5:9e:ea:4c:bb:e7:a6:49:bc:2a:64:09:
c1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:91:FC:97:BA:11:4D:29:7D:79:DA:49:56:AC:94:AC:C5:BB:6C:17
X509v3 Authority Key Identifier:
keyid:81:B1:4F:AE:44:DF:A0:E3:34:91:67:43:3C:92:4C:96:45:73:98:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbFPrkTfoOM0kWdDPJJMlkVzmGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5b1319-b987-4f94-b326-5769019fefb8/1/lpH8l7oRTSl9edpJVqyUrMW7bBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5b1319-b987-4f94-b326-5769019fefb8/1/gbFPrkTfoOM0kWdDPJJMlkVzmGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.74.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ee:36:3a:77:46:2d:98:d0:f6:c4:57:d5:e1:9b:85:b3:25:
37:e0:01:45:3b:2e:7c:4d:c5:2a:e3:e2:73:7b:61:b3:fc:03:
36:9b:f1:25:7d:9e:5d:2d:af:78:d3:23:86:b9:c4:cf:b5:b5:
d8:67:3b:89:70:ab:6f:9a:90:7b:e5:10:d0:3d:c8:be:e2:d0:
16:be:0b:57:1d:86:9a:d4:ac:96:af:97:9e:a7:d7:d0:e8:a9:
19:29:ab:c5:90:b4:ff:5f:79:b7:8e:e6:ca:0a:09:50:f1:0b:
93:cf:3e:b6:57:d8:f1:82:8c:f7:50:bd:54:dc:18:4c:26:43:
16:17:2a:06:7d:8b:fb:1c:ff:ce:39:71:2d:bd:46:f1:a8:eb:
d9:f8:e4:ca:05:fd:3d:aa:7e:e5:91:34:7f:a1:a0:5a:62:33:
10:4b:0c:ab:8b:d5:51:b7:8e:a2:93:a0:21:54:f1:26:6b:f2:
7b:88:20:ad:6f:97:7c:69:6d:93:51:52:36:7b:af:7c:65:ce:
20:7b:e2:21:47:01:04:fb:59:74:6c:af:14:57:e5:38:cc:90:
83:b1:6e:36:04:ab:c2:3f:0f:2c:fe:45:b8:e5:fc:32:86:6b:
88:45:8e:3e:f5:30:a3:94:dc:90:2a:8e:76:e0:c7:08:fd:2b:
c5:e9:80:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJB0U1MY+p6/2epv4kNVlbbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYjE0ZmFlNDRkZmEwZTMzNDkxNjc0MzNjOTI0Yzk2NDU3
Mzk4NjEwHhcNMjQwOTMwMDcyNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjkxZmM5N2JhMTE0ZDI5N2Q3OWRhNDk1NmFjOTRhY2M1YmI2YzE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9W9hThZ0IU2z2FVNWQFspRP+Pn0D
7JaJFaVeFgFRi4ZeGGkXIUAWk4N5Mq1ozSBAXXMgeoKTa6xJGZ9MYkI09b/kIa7g
RXUODosH2oSzDBkWaMZrJgZdmyc4jGfOdCQuyej//0q7uxp8rdA4UGzt1VJ2ZRCj
TI0s7AXtsFW+UhTMgnpEWShVUzJYhBd7bFgM9IG8/9n5Ps1YU8IaeXFFCQcVXSnx
/HhcCNWJftOvX1JE5H3ta6VMi0u0P7DPtT55q12NxdPey7Saxpg98F8fSygGG8Mr
j8LOQG3nBinBgC34UsAFg4EIXw5HABOhKBXlQqzFnupMu+emSbwqZAnBHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJaR/Je6EU0pfXnaSVaslKzFu2wXMB8GA1UdIwQY
MBaAFIGxT65E36DjNJFnQzySTJZFc5hhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2JGUHJrVGZvT00wa1dkRFBKSk1sa1Z6bUdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81YjEzMTktYjk4Ny00Zjk0LWIzMjYt
NTc2OTAxOWZlZmI4LzEvbHBIOGw3b1JUU2w5ZWRwSlZxeVVyTVc3YkJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy81YjEzMTktYjk4Ny00Zjk0LWIzMjYtNTc2OTAxOWZlZmI4
LzEvZ2JGUHJrVGZvT00wa1dkRFBKSk1sa1Z6bUdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkRKMA0G
CSqGSIb3DQEBCwUAA4IBAQBt7jY6d0YtmND2xFfV4ZuFsyU34AFFOy58TcUq4+Jz
e2Gz/AM2m/ElfZ5dLa940yOGucTPtbXYZzuJcKtvmpB75RDQPci+4tAWvgtXHYaa
1KyWr5eep9fQ6KkZKavFkLT/X3m3jubKCglQ8QuTzz62V9jxgoz3UL1U3BhMJkMW
FyoGfYv7HP/OOXEtvUbxqOvZ+OTKBf09qn7lkTR/oaBaYjMQSwyri9VRt46ik6Ah
VPEma/J7iCCtb5d8aW2TUVI2e698Zc4ge+IhRwEE+1l0bK8UV+U4zJCDsW42BKvC
Pw8s/kW45fwyhmuIRY4+9TCjlNyQKo524McI/SvF6YDb
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:15 2025 by rpki-client