Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PISX7tUgU5eXK8rmG_ifZCTo0Cw.roa
File: PISX7tUgU5eXK8rmG_ifZCTo0Cw.roa (raw, json)
Hash identifier: CSb+H5CtWKbDIT2xxwrOvjv12GLupix236MGhmWv9C0=
Subject key identifier: 3C:84:97:EE:D5:20:53:97:97:2B:CA:E6:1B:F8:9F:64:24:E8:D0:2C
Certificate issuer: /CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Certificate serial: 018572BA37C6154CA4EC565645538F37C5B9
Authority key identifier: 3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PISX7tUgU5eXK8rmG_ifZCTo0Cw.roa
Signing time: Mon 02 Jan 2023 13:44:44 +0000
ROA not before: Mon 02 Jan 2023 13:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 62.3.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:37:c6:15:4c:a4:ec:56:56:45:53:8f:37:c5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bda90ce49ea0eae040d7588b86b22e2af3018ab
Validity
Not Before: Jan 2 13:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c8497eed5205397972bcae61bf89f6424e8d02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a5:a9:2f:49:28:02:62:8e:f0:11:d1:50:8f:
fb:cc:86:d0:c3:27:fd:c0:00:db:dd:b8:37:85:a9:
ba:f3:51:b6:c9:f6:32:e8:99:29:c6:37:ee:be:a1:
88:8a:13:78:a1:18:e0:f9:b1:de:dc:e3:e6:84:fe:
41:db:a9:92:f3:5a:07:8b:7e:f5:b8:11:6d:4d:d3:
ba:a1:25:b8:4f:ce:64:e0:2b:d3:44:25:c7:74:52:
fb:03:eb:4d:91:b9:54:6c:ca:9c:85:41:ad:1a:41:
9e:a1:9a:cf:31:ae:c5:e6:86:ac:cf:72:27:58:86:
4d:1c:e7:f8:f6:42:65:17:49:ed:bd:84:b2:e4:16:
ac:f3:89:ce:ac:c4:e8:35:b3:1f:1f:27:d1:80:94:
9b:7b:ae:f5:5d:b1:17:54:ca:6f:00:3b:d7:50:89:
f7:5c:75:35:85:f3:bd:d7:95:3a:51:58:49:91:1d:
c1:5b:35:59:1a:20:f8:20:2d:68:dc:f7:a6:2a:d4:
f5:9f:39:59:cb:f5:5f:50:6e:6b:5b:67:1f:be:1e:
8f:5e:9f:05:e8:ec:c5:97:45:de:f8:bc:a2:79:38:
13:eb:e3:63:bf:20:dd:8e:0c:06:7a:c3:a1:91:71:
9b:e0:b2:df:d3:f3:fb:9a:1d:d1:72:e7:f0:d8:95:
00:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:84:97:EE:D5:20:53:97:97:2B:CA:E6:1B:F8:9F:64:24:E8:D0:2C
X509v3 Authority Key Identifier:
keyid:3B:DA:90:CE:49:EA:0E:AE:04:0D:75:88:B8:6B:22:E2:AF:30:18:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9qQzknqDq4EDXWIuGsi4q8wGKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/PISX7tUgU5eXK8rmG_ifZCTo0Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9878bf-999b-4580-aa31-5b96133c6c2f/1/O9qQzknqDq4EDXWIuGsi4q8wGKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.3.0/24
Signature Algorithm: sha256WithRSAEncryption
33:91:96:7c:54:0e:6a:7c:1d:86:50:3c:0c:85:62:23:47:42:
a3:b0:c0:39:b7:b4:96:04:03:26:6f:f9:14:db:71:7b:d2:68:
61:5c:d0:00:27:b8:e8:fd:d3:e5:d0:dd:2f:a3:42:45:8e:3f:
1b:d1:a0:c3:40:67:2c:c9:3e:36:da:c8:97:a4:5c:a0:88:a1:
80:1f:c3:db:86:c1:04:bf:bf:cf:65:a0:6e:7a:dd:f0:26:d4:
5f:12:6c:b8:dd:d6:20:25:c0:ca:f0:91:53:4a:aa:79:0e:9f:
3a:1e:e5:6c:34:23:71:90:6b:fd:26:65:62:6b:01:c3:dd:bb:
54:c3:34:c1:41:c7:5b:20:aa:02:05:b7:af:36:09:5b:7b:01:
0d:33:d6:c6:96:23:52:2d:0f:76:09:28:b9:38:4f:35:49:e9:
7a:fb:6e:a7:f8:74:44:0a:0a:a1:cd:a9:b7:9d:4a:d6:56:71:
03:42:a0:a9:b8:b1:d8:54:8a:2a:f8:0e:6c:e6:1c:6c:da:95:
c4:e0:fb:d8:40:89:6c:17:0d:98:87:42:87:4e:24:78:25:da:
59:f5:49:d9:ab:bd:54:b7:22:69:cb:da:08:0a:fc:eb:90:eb:
a8:7a:10:36:22:de:11:40:dd:12:4b:95:ae:a2:db:0a:07:a2:
7a:24:5a:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyujfGFUyk7FZWRVOPN8W5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZGE5MGNlNDllYTBlYWUwNDBkNzU4OGI4NmIyMmUyYWYz
MDE4YWIwHhcNMjMwMTAyMTM0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzg0OTdlZWQ1MjA1Mzk3OTcyYmNhZTYxYmY4OWY2NDI0ZThkMDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqWpL0koAmKO8BHRUI/7zIbQwyf9
wADb3bg3ham681G2yfYy6JkpxjfuvqGIihN4oRjg+bHe3OPmhP5B26mS81oHi371
uBFtTdO6oSW4T85k4CvTRCXHdFL7A+tNkblUbMqchUGtGkGeoZrPMa7F5oasz3In
WIZNHOf49kJlF0ntvYSy5Bas84nOrMToNbMfHyfRgJSbe671XbEXVMpvADvXUIn3
XHU1hfO915U6UVhJkR3BWzVZGiD4IC1o3PemKtT1nzlZy/VfUG5rW2cfvh6PXp8F
6OzFl0Xe+LyieTgT6+NjvyDdjgwGesOhkXGb4LLf0/P7mh3Rcufw2JUAtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyEl+7VIFOXlyvK5hv4n2Qk6NAsMB8GA1UdIwQY
MBaAFDvakM5J6g6uBA11iLhrIuKvMBirMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzlxUXprbnFEcTRFRFhXSXVHc2k0cTh3R0tzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85ODc4YmYtOTk5Yi00NTgwLWFhMzEt
NWI5NjEzM2M2YzJmLzEvUElTWDd0VWdVNWVYSzhybUdfaWZaQ1RvMEN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC85ODc4YmYtOTk5Yi00NTgwLWFhMzEtNWI5NjEzM2M2YzJm
LzEvTzlxUXprbnFEcTRFRFhXSXVHc2k0cTh3R0tzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgMDMA0G
CSqGSIb3DQEBCwUAA4IBAQAzkZZ8VA5qfB2GUDwMhWIjR0KjsMA5t7SWBAMmb/kU
23F70mhhXNAAJ7jo/dPl0N0vo0JFjj8b0aDDQGcsyT422siXpFygiKGAH8PbhsEE
v7/PZaBuet3wJtRfEmy43dYgJcDK8JFTSqp5Dp86HuVsNCNxkGv9JmViawHD3btU
wzTBQcdbIKoCBbevNglbewENM9bGliNSLQ92CSi5OE81Sel6+26n+HRECgqhzam3
nUrWVnEDQqCpuLHYVIoq+A5s5hxs2pXE4PvYQIlsFw2Yh0KHTiR4JdpZ9UnZq71U
tyJpy9oICvzrkOuoehA2It4RQN0SS5WuotsKB6J6JFpA
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:52 2025 by rpki-client