Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2dbe80-278a-4a91-8d33-9abf399da2a8/1/PsaP3s9QEHEWL2BrJaWSZKJPER8.roa
File: PsaP3s9QEHEWL2BrJaWSZKJPER8.roa (raw, json)
Hash identifier: tqY7Ty8wHAg0bK2m+wwS32jXkzwt9aNcfOfRwBn7BJk=
Subject key identifier: 3E:C6:8F:DE:CF:50:10:71:16:2F:60:6B:25:A5:92:64:A2:4F:11:1F
Certificate issuer: /CN=99c06914091641c928e1a3d2efee79b9c6d03c71
Certificate serial: 01892FF62FAB4361334ADFC31C766D9F953E
Authority key identifier: 99:C0:69:14:09:16:41:C9:28:E1:A3:D2:EF:EE:79:B9:C6:D0:3C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mcBpFAkWQcko4aPS7-55ucbQPHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2dbe80-278a-4a91-8d33-9abf399da2a8/1/PsaP3s9QEHEWL2BrJaWSZKJPER8.roa
Signing time: Fri 07 Jul 2023 10:46:50 +0000
ROA not before: Fri 07 Jul 2023 10:46:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 62.233.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:f6:2f:ab:43:61:33:4a:df:c3:1c:76:6d:9f:95:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99c06914091641c928e1a3d2efee79b9c6d03c71
Validity
Not Before: Jul 7 10:46:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ec68fdecf501071162f606b25a59264a24f111f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:e7:68:2c:39:f7:74:1b:b5:2c:58:b7:d4:
c5:0b:cc:35:9a:f6:95:17:03:d3:56:99:fc:a8:09:
e8:bf:51:a7:83:fe:cf:79:31:c9:73:3d:ea:fa:e5:
0a:20:d5:5a:d8:d7:84:f2:f1:43:7e:24:82:f3:96:
7f:09:54:5b:ed:cd:a0:83:32:02:64:db:2d:e3:a7:
61:01:a7:20:cd:3f:1f:02:6f:fd:48:d1:9d:92:5a:
6c:94:f9:27:34:08:d4:34:e5:f3:1e:7f:bf:a3:c4:
98:b9:28:c0:8f:88:bd:c2:34:dc:8c:8d:10:d0:f4:
43:c2:c3:5f:7b:57:e6:83:cd:b4:a0:21:c2:6a:a6:
30:31:99:93:7c:7f:0f:e5:06:e9:1f:99:14:63:ae:
59:18:f9:d6:d1:ba:48:35:4b:a4:dc:a6:2d:d1:23:
7b:ed:23:eb:18:8e:5e:38:7e:c2:5c:eb:14:39:dc:
39:6a:46:a3:3e:50:44:8d:58:12:99:61:e4:a8:02:
2b:42:7e:ee:3d:7c:31:10:19:0e:90:fd:1c:a1:6a:
9c:d6:ff:80:33:c9:5b:ad:01:08:7c:c6:0d:df:a6:
e0:fe:2d:fa:c5:8e:95:52:18:38:8c:e3:73:21:ba:
1e:0e:b5:a5:74:2c:18:43:32:56:e0:f4:71:a1:6e:
ad:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C6:8F:DE:CF:50:10:71:16:2F:60:6B:25:A5:92:64:A2:4F:11:1F
X509v3 Authority Key Identifier:
keyid:99:C0:69:14:09:16:41:C9:28:E1:A3:D2:EF:EE:79:B9:C6:D0:3C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcBpFAkWQcko4aPS7-55ucbQPHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2dbe80-278a-4a91-8d33-9abf399da2a8/1/PsaP3s9QEHEWL2BrJaWSZKJPER8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2dbe80-278a-4a91-8d33-9abf399da2a8/1/mcBpFAkWQcko4aPS7-55ucbQPHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.43.0/24
Signature Algorithm: sha256WithRSAEncryption
36:21:c2:88:d9:37:3c:d4:7f:ad:e5:14:93:46:31:66:b1:1c:
bf:0d:6b:4a:c4:5d:2e:3a:13:70:ac:f2:98:55:a1:5e:40:58:
5b:0f:3e:b1:77:86:7b:b1:b8:63:8b:26:1b:8e:39:73:47:af:
0d:73:6b:a5:11:67:9b:1b:97:4f:c3:0c:39:8e:79:c9:9e:e7:
e5:78:07:49:f9:a3:92:01:25:ee:41:6c:b7:43:42:80:b7:28:
9a:16:c1:77:85:54:89:fe:e0:d2:30:ad:32:b8:92:27:72:06:
74:43:ce:73:82:9f:d8:c3:41:88:15:81:3f:66:dc:7f:7c:41:
ca:ed:d2:ca:aa:0b:bb:35:d1:f7:6c:c2:37:63:ac:5f:6d:19:
8a:f6:46:a8:96:b4:b6:be:a0:2d:1e:ab:b3:03:65:65:30:ae:
1a:99:ad:c5:33:e3:f2:0f:ce:f5:ce:90:1e:ad:69:e7:9b:4b:
85:d8:36:1e:42:95:b9:89:4f:e7:52:92:6e:70:63:ff:f0:fa:
8a:0a:77:52:10:00:77:0d:30:88:19:54:f8:c0:2c:71:f2:2b:
9f:f0:12:f0:8b:20:d0:2b:b4:aa:ee:bb:68:c2:fc:db:57:55:
7b:10:95:46:43:08:92:a9:51:76:79:22:b8:8b:d5:7b:df:50:
43:ae:18:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkv9i+rQ2EzSt/DHHZtn5U+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5YzA2OTE0MDkxNjQxYzkyOGUxYTNkMmVmZWU3OWI5YzZk
MDNjNzEwHhcNMjMwNzA3MTA0NjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWM2OGZkZWNmNTAxMDcxMTYyZjYwNmIyNWE1OTI2NGEyNGYxMTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdznaCw593QbtSxYt9TFC8w1mvaV
FwPTVpn8qAnov1Gng/7PeTHJcz3q+uUKINVa2NeE8vFDfiSC85Z/CVRb7c2ggzIC
ZNst46dhAacgzT8fAm/9SNGdklpslPknNAjUNOXzHn+/o8SYuSjAj4i9wjTcjI0Q
0PRDwsNfe1fmg820oCHCaqYwMZmTfH8P5QbpH5kUY65ZGPnW0bpINUuk3KYt0SN7
7SPrGI5eOH7CXOsUOdw5akajPlBEjVgSmWHkqAIrQn7uPXwxEBkOkP0coWqc1v+A
M8lbrQEIfMYN36bg/i36xY6VUhg4jONzIboeDrWldCwYQzJW4PRxoW6t/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD7Gj97PUBBxFi9gayWlkmSiTxEfMB8GA1UdIwQY
MBaAFJnAaRQJFkHJKOGj0u/uebnG0DxxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWNCcEZBa1dRY2tvNGFQUzctNTV1Y2JRUEhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8yZGJlODAtMjc4YS00YTkxLThkMzMt
OWFiZjM5OWRhMmE4LzEvUHNhUDNzOVFFSEVXTDJCckphV1NaS0pQRVI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8yZGJlODAtMjc4YS00YTkxLThkMzMtOWFiZjM5OWRhMmE4
LzEvbWNCcEZBa1dRY2tvNGFQUzctNTV1Y2JRUEhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPukrMA0G
CSqGSIb3DQEBCwUAA4IBAQA2IcKI2Tc81H+t5RSTRjFmsRy/DWtKxF0uOhNwrPKY
VaFeQFhbDz6xd4Z7sbhjiyYbjjlzR68Nc2ulEWebG5dPwww5jnnJnufleAdJ+aOS
ASXuQWy3Q0KAtyiaFsF3hVSJ/uDSMK0yuJIncgZ0Q85zgp/Yw0GIFYE/Ztx/fEHK
7dLKqgu7NdH3bMI3Y6xfbRmK9kaolrS2vqAtHquzA2VlMK4ama3FM+PyD871zpAe
rWnnm0uF2DYeQpW5iU/nUpJucGP/8PqKCndSEAB3DTCIGVT4wCxx8iuf8BLwiyDQ
K7Sq7rtowvzbV1V7EJVGQwiSqVF2eSK4i9V731BDrhhf
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:13 2024 by rpki-client on console-ams.rpki-client.org