Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/195f9f-61dd-433c-a035-22b1b5f8cbf8/1/1-k97JYP_HBQmqCIXyUPaaN2X0NQ.roa
File: 1-k97JYP_HBQmqCIXyUPaaN2X0NQ.roa (raw, json)
Hash identifier: c8EpYsP/qUstOIy6FLnaU3V42rIreGb1ANIwg01xSFc=
Subject key identifier: FA:4F:7B:25:83:FF:1C:14:26:A8:22:17:C9:43:DA:68:DD:97:D0:D4
Certificate issuer: /CN=90fdf3d98b7b1264bf02b134f91ed14b4b36145d
Certificate serial: 1654A3
Authority key identifier: 90:FD:F3:D9:8B:7B:12:64:BF:02:B1:34:F9:1E:D1:4B:4B:36:14:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kP3z2Yt7EmS_ArE0-R7RS0s2FF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/195f9f-61dd-433c-a035-22b1b5f8cbf8/1/1-k97JYP_HBQmqCIXyUPaaN2X0NQ.roa
Signing time: Sat 01 Jan 2022 00:54:16 +0000
ROA not before: Sat 01 Jan 2022 00:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64484
IP address blocks: 62.3.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1463459 (0x1654a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90fdf3d98b7b1264bf02b134f91ed14b4b36145d
Validity
Not Before: Jan 1 00:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa4f7b2583ff1c1426a82217c943da68dd97d0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:08:ac:c7:f2:92:f4:29:d0:98:ac:6b:39:
fd:dd:05:ef:d4:a4:a5:36:30:27:7d:c3:50:03:c5:
57:65:2b:8e:98:78:95:89:89:13:c7:48:e2:9c:28:
48:80:b7:54:b5:60:44:d7:51:08:53:17:25:22:c1:
5b:5a:b3:c0:e6:15:20:6d:8e:fb:99:e0:60:fc:09:
68:08:46:3e:78:6f:e7:6a:63:98:8b:01:0d:73:05:
d5:94:39:04:25:6b:a8:ac:eb:ea:e0:67:f3:99:a7:
77:da:2c:f9:14:54:6f:e5:b4:b0:d5:77:81:29:cc:
b4:e8:59:5a:db:ec:b5:da:44:a0:fe:6f:f5:0c:5e:
1e:70:84:e2:61:8c:48:5d:5c:d7:12:41:95:be:af:
a8:68:d5:b3:b7:49:2b:17:e0:ce:5e:68:5d:36:a8:
16:b5:9d:00:f6:d6:72:5e:22:52:e2:51:8a:65:19:
be:db:66:fd:ce:cd:5e:bb:8a:25:00:a6:9e:bb:92:
e4:e8:80:f0:4f:69:d3:77:23:60:e0:a2:61:ff:5c:
a5:c9:1f:cb:16:bf:2b:17:b0:ac:d6:cc:be:01:aa:
ec:cf:2e:42:61:42:bb:76:ec:52:78:bb:c8:d6:5a:
64:d8:53:87:fd:ec:9e:b3:e7:4d:2d:88:43:30:89:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4F:7B:25:83:FF:1C:14:26:A8:22:17:C9:43:DA:68:DD:97:D0:D4
X509v3 Authority Key Identifier:
keyid:90:FD:F3:D9:8B:7B:12:64:BF:02:B1:34:F9:1E:D1:4B:4B:36:14:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kP3z2Yt7EmS_ArE0-R7RS0s2FF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/195f9f-61dd-433c-a035-22b1b5f8cbf8/1/1-k97JYP_HBQmqCIXyUPaaN2X0NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/195f9f-61dd-433c-a035-22b1b5f8cbf8/1/kP3z2Yt7EmS_ArE0-R7RS0s2FF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.33.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ab:68:89:5b:f5:19:cb:59:3a:38:78:89:13:2b:a3:0c:8e:
42:75:08:b6:82:d8:65:51:58:d2:83:3a:d8:10:aa:2f:4a:d2:
3e:a7:27:2b:63:f9:da:d0:dc:82:a5:9a:47:7b:07:ad:6c:fb:
c4:52:43:e2:c3:7c:0f:78:ff:99:ed:61:f3:eb:e1:10:cd:9f:
d5:72:73:18:a1:ae:3c:21:b4:2f:d5:08:95:bc:a8:58:66:ea:
76:20:5e:6b:0a:91:80:7e:08:bb:f6:33:20:66:96:d5:be:5c:
71:df:f3:57:34:af:bb:8d:1e:0f:d5:90:b7:32:57:bc:30:e3:
66:51:2d:7b:32:0f:c3:a5:50:f2:bd:22:45:01:38:6b:0f:59:
f3:2a:c9:f4:a3:16:e7:0c:44:e1:88:86:ef:1e:5c:70:b8:a7:
f3:48:0e:de:e0:be:32:5f:e0:35:17:ad:d4:72:b1:42:80:37:
3b:b1:55:46:ae:e9:ea:40:c0:76:77:8a:e9:fe:e9:dc:02:89:
63:f5:1e:ff:03:33:23:fb:23:0c:0d:e6:c8:b8:d7:4e:ee:ef:
06:9f:2b:b3:9a:63:5c:c4:b1:cb:37:9e:8e:c3:31:21:86:fc:
4a:2f:a0:cd:7f:9f:35:cf:4b:88:6f:41:39:00:4b:85:74:76:
20:a3:60:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:29 2025 by rpki-client