Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7b7472-b6fe-41fe-8c4a-bbad4c4f44e7/1/otJNxdOkYZqxyiUglPHEGJwCcm0.roa
File: otJNxdOkYZqxyiUglPHEGJwCcm0.roa (raw, json)
Hash identifier: UN9qf00FefTBKtD8DLNRgHBPtyuOk7M1V3f6cMz1gkU=
Subject key identifier: A2:D2:4D:C5:D3:A4:61:9A:B1:CA:25:20:94:F1:C4:18:9C:02:72:6D
Certificate issuer: /CN=e7714b60ced590ca00d523c41d3fe789e4695e51
Certificate serial: 65863B
Authority key identifier: E7:71:4B:60:CE:D5:90:CA:00:D5:23:C4:1D:3F:E7:89:E4:69:5E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53FLYM7VkMoA1SPEHT_nieRpXlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7b7472-b6fe-41fe-8c4a-bbad4c4f44e7/1/otJNxdOkYZqxyiUglPHEGJwCcm0.roa
Signing time: Sat 01 Jan 2022 01:54:49 +0000
ROA not before: Sat 01 Jan 2022 01:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 62.3.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6653499 (0x65863b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7714b60ced590ca00d523c41d3fe789e4695e51
Validity
Not Before: Jan 1 01:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2d24dc5d3a4619ab1ca252094f1c4189c02726d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:51:4d:49:2c:eb:e1:57:16:39:88:fd:0a:8f:
f4:24:40:fb:90:dd:26:ea:e4:34:b5:43:ad:5b:65:
8c:bd:f7:90:88:62:65:ad:a4:f2:3f:94:94:51:6f:
41:79:10:30:32:61:0f:15:c1:64:98:1b:f5:f0:3a:
0c:b4:ea:32:b4:27:81:8d:17:9f:57:85:3c:67:a7:
50:57:80:52:a4:73:c4:04:bc:87:4c:08:e6:10:38:
19:a2:63:d7:9d:f1:af:1c:82:c3:db:af:28:e4:c8:
94:ad:2a:a5:c7:e4:3e:0f:bb:91:b2:ce:9a:8e:6f:
99:46:8a:b2:8a:e0:79:2c:37:59:80:b8:ac:18:b9:
a2:9b:96:61:a9:4f:74:19:0a:6d:59:d1:e4:06:cd:
63:09:2c:e3:09:4b:ed:f7:b2:da:ea:04:ff:c7:3d:
e0:be:c3:be:83:97:43:52:55:3c:41:e5:7d:ef:40:
5e:09:73:ea:fc:c5:39:35:bb:c6:fe:6d:4a:23:05:
6b:fc:c1:af:b3:2e:f2:d1:d4:68:99:c4:68:47:27:
e4:11:ce:ab:05:57:6d:65:da:4a:d0:68:73:41:0a:
06:d3:89:0e:aa:ac:81:5a:ce:d8:75:20:a2:8c:cc:
cd:fc:62:5a:c6:0c:df:bc:0e:97:ef:45:d3:20:d3:
cc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D2:4D:C5:D3:A4:61:9A:B1:CA:25:20:94:F1:C4:18:9C:02:72:6D
X509v3 Authority Key Identifier:
keyid:E7:71:4B:60:CE:D5:90:CA:00:D5:23:C4:1D:3F:E7:89:E4:69:5E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53FLYM7VkMoA1SPEHT_nieRpXlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7b7472-b6fe-41fe-8c4a-bbad4c4f44e7/1/otJNxdOkYZqxyiUglPHEGJwCcm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7b7472-b6fe-41fe-8c4a-bbad4c4f44e7/1/53FLYM7VkMoA1SPEHT_nieRpXlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.1.0/24
Signature Algorithm: sha256WithRSAEncryption
61:43:56:16:30:b4:1d:e6:28:57:3d:f6:61:0b:b8:d9:bd:a0:
6d:10:a1:d2:28:44:b8:c4:af:bd:d8:f5:cb:9e:db:94:6a:b4:
6b:b2:22:73:6a:04:09:dd:65:31:44:39:4e:c4:13:da:f0:f4:
81:89:74:f2:b0:be:5e:46:c4:09:a8:25:c2:11:f7:2c:83:7b:
94:5e:81:41:a6:52:7e:bb:c8:22:e5:cb:33:cc:4c:12:be:1c:
b8:ab:64:63:ee:c8:7f:af:c7:7f:29:7a:bf:0b:59:c1:f5:32:
fe:1f:35:6c:7f:5e:91:53:41:02:fb:16:c1:2b:be:b3:f3:32:
d4:fa:1a:de:aa:77:34:39:6b:a3:3c:54:cd:e3:85:af:a0:07:
85:82:91:68:56:6b:93:fb:3c:66:d8:2c:82:e2:03:01:bc:d3:
f6:81:3f:74:f9:59:89:db:ba:bf:4b:48:df:42:b6:50:a0:dc:
da:b3:c9:31:50:95:8f:68:40:3f:58:b6:f8:a5:e9:fa:f6:5b:
bf:b6:d2:cc:a9:3c:b0:dc:10:40:d9:41:49:be:20:9d:57:25:
a0:da:8e:3c:cc:ee:b3:ca:a8:56:ed:2f:1f:67:42:0f:bc:97:
99:a3:3b:e3:51:6d:fc:47:49:74:ff:92:de:d7:39:e9:57:64:
24:75:5f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:46 2024 by rpki-client on console-fra.rpki-client.org