Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PGZU4SJwyOGyiFWikJ64v9cgxoo.roa
File: PGZU4SJwyOGyiFWikJ64v9cgxoo.roa (raw, json)
Hash identifier: F4zsPyfXwo7syN9sxHMJRRjOC4bh5+Xiv+D/T5M32zY=
Subject key identifier: 3C:66:54:E1:22:70:C8:E1:B2:88:55:A2:90:9E:B8:BF:D7:20:C6:8A
Certificate issuer: /CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Certificate serial: F097D6
Authority key identifier: 3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PGZU4SJwyOGyiFWikJ64v9cgxoo.roa
Signing time: Wed 23 Feb 2022 20:19:50 +0000
ROA not before: Wed 23 Feb 2022 20:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 62.3.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15767510 (0xf097d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Validity
Not Before: Feb 23 20:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c6654e12270c8e1b28855a2909eb8bfd720c68a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1c:4b:68:1a:2c:f9:6e:92:d6:0d:3c:0b:fc:
6b:5e:e9:29:06:14:1a:20:60:2c:a8:11:ff:e8:6d:
33:ef:f5:cb:45:72:3b:50:94:a9:2b:40:77:ce:79:
fe:19:fb:97:da:65:90:6d:95:4c:ea:d5:8e:10:28:
08:ad:df:f0:9c:00:91:e8:dd:6a:04:c4:9b:b2:7c:
48:c2:3c:70:77:41:be:d5:bb:b3:3e:a4:59:8c:3e:
3d:4f:86:8c:e9:d1:73:f0:b2:43:ba:69:f8:72:2f:
7c:21:60:30:be:f2:54:e0:4b:8d:56:2c:be:6e:22:
01:f4:7f:d0:0b:28:d7:d4:66:ad:57:9a:2f:00:f4:
bb:8b:18:bf:24:5c:3d:13:5c:a2:6c:c0:bc:29:86:
15:c7:dc:6c:32:48:04:16:8b:b9:5e:63:4b:a3:2c:
a3:66:9d:84:90:45:e8:13:d8:21:e2:51:54:97:e1:
79:2d:0b:f0:5d:bb:ef:46:44:6d:ba:8b:fc:48:6e:
da:88:25:05:cf:5a:4a:88:2d:f1:1d:cf:7e:26:10:
56:49:bb:fa:97:51:a1:f7:e5:60:9e:0b:36:59:8d:
5c:26:21:4d:d9:91:f1:03:28:8d:d8:d6:6c:e0:3d:
9e:a6:29:0a:79:de:5c:03:0c:31:0b:fa:3a:52:03:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:66:54:E1:22:70:C8:E1:B2:88:55:A2:90:9E:B8:BF:D7:20:C6:8A
X509v3 Authority Key Identifier:
keyid:3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PGZU4SJwyOGyiFWikJ64v9cgxoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/O9qQzknqDq4EDXWIuGsi4q8wGKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:68:cb:15:97:ed:ef:ff:33:d7:bd:03:92:df:15:d4:e9:4a:
7d:54:a3:7c:56:65:bb:c3:3f:b8:a0:3e:0f:82:7d:3c:d0:35:
a4:bb:0b:df:99:e4:21:4c:0b:4d:98:92:a1:17:27:40:a9:c4:
36:4a:c2:05:f0:72:38:f1:51:a4:e3:70:1d:2d:67:45:43:8c:
1a:b0:d8:61:ee:18:35:30:34:8a:a4:cd:4f:f8:f6:84:78:dd:
86:be:39:67:65:23:8d:1a:fb:11:e0:6a:bd:8c:50:9c:e5:23:
70:fb:9b:77:f9:32:de:10:7a:53:be:34:7b:a0:04:12:51:33:
c9:72:a4:bd:9e:b9:4e:31:0e:7b:b2:91:55:6b:e6:98:ae:87:
c2:0f:49:d1:ac:dd:ef:68:e7:82:59:54:5d:84:7a:67:38:f9:
85:fc:67:0c:e7:44:72:ce:06:25:f8:a5:6e:66:10:61:ff:5f:
26:d8:8f:16:da:52:dd:f1:0c:41:97:bf:25:36:71:33:c8:62:
d8:6b:e9:36:d6:22:74:08:91:c7:13:85:28:f5:66:2b:a1:6f:
56:54:a4:da:fc:c2:60:22:11:8c:1d:a0:68:59:dc:12:42:c0:
b8:0d:d0:25:a3:94:91:f0:28:c6:36:eb:32:68:53:97:74:47:
15:35:0a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:27:50 2025 by rpki-client