Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/X8ZQBsdjfhJMdPQ3fY7TI9XDUeY.roa
File: X8ZQBsdjfhJMdPQ3fY7TI9XDUeY.roa (raw, json)
Hash identifier: w+w0VOoCOw3wAN5jYoxb1f0Gk+rJY/hhqhTS7sS8JLI=
Subject key identifier: 5F:C6:50:06:C7:63:7E:12:4C:74:F4:37:7D:8E:D3:23:D5:C3:51:E6
Certificate issuer: /CN=e39176c5a602527533c2b541406ae83f209e620c
Certificate serial: 01856F4B46044E88844318D1AE4F3C0B0839
Authority key identifier: E3:91:76:C5:A6:02:52:75:33:C2:B5:41:40:6A:E8:3F:20:9E:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45F2xaYCUnUzwrVBQGroPyCeYgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/X8ZQBsdjfhJMdPQ3fY7TI9XDUeY.roa
Signing time: Sun 01 Jan 2023 21:44:42 +0000
ROA not before: Sun 01 Jan 2023 21:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204687
IP address blocks: 62.68.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:46:04:4e:88:84:43:18:d1:ae:4f:3c:0b:08:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39176c5a602527533c2b541406ae83f209e620c
Validity
Not Before: Jan 1 21:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc65006c7637e124c74f4377d8ed323d5c351e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:0f:58:db:5f:8c:33:bf:19:c8:42:e2:35:
27:85:cf:5e:2e:93:c3:61:62:3d:8c:a4:28:17:cf:
dd:71:f8:ba:cc:22:47:9c:cc:17:b4:ca:2e:1c:1b:
f3:5c:4c:83:6c:21:2a:d8:0f:50:c9:fe:9d:c2:29:
e6:86:45:bd:3f:f4:f6:0f:90:10:24:9f:af:cb:38:
df:cd:b0:a7:26:da:14:e2:4e:ca:ff:7c:08:77:38:
63:39:3c:c2:04:ab:e3:58:47:80:fd:98:68:6e:ca:
b8:05:2c:24:ef:46:e4:54:8d:5d:42:b8:20:bb:3a:
78:e6:96:13:af:73:e7:65:14:89:38:19:36:c1:73:
d4:69:cf:b6:fe:cd:56:30:24:c6:64:c4:f6:f9:7a:
72:50:b1:8a:56:e1:06:51:5a:1f:66:5c:eb:bf:b4:
0e:57:c4:5d:5e:4d:2b:f7:99:d1:b2:3a:7e:05:dc:
e8:a8:97:30:b0:3d:cd:1f:81:ab:5e:70:ef:7f:9c:
14:60:4e:2a:bd:0f:67:b3:6b:1e:ae:f0:05:91:66:
18:82:7b:de:ed:3b:48:06:8d:41:9b:d9:1a:af:48:
08:c8:e3:39:42:1e:72:63:55:a2:5b:98:d6:4a:c9:
fb:cd:0d:00:21:98:8f:47:9c:83:41:50:00:29:42:
01:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C6:50:06:C7:63:7E:12:4C:74:F4:37:7D:8E:D3:23:D5:C3:51:E6
X509v3 Authority Key Identifier:
keyid:E3:91:76:C5:A6:02:52:75:33:C2:B5:41:40:6A:E8:3F:20:9E:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45F2xaYCUnUzwrVBQGroPyCeYgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/X8ZQBsdjfhJMdPQ3fY7TI9XDUeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e55563-ccf7-4e79-a3e9-7adbd2136ac1/1/45F2xaYCUnUzwrVBQGroPyCeYgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.68.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d0:ac:80:5a:f1:0a:2a:a9:72:7d:57:bf:41:13:fc:71:75:
43:87:a0:6e:b4:aa:32:92:5e:d5:4c:3e:40:b3:00:62:ba:63:
4a:69:af:c6:52:54:ef:de:ed:7b:0c:77:21:4f:6d:4e:aa:06:
1f:b0:71:91:95:f1:c5:d7:e3:af:3a:6b:a3:ce:95:0b:e1:54:
ba:05:74:c0:c0:59:37:86:66:09:6e:65:0a:c5:b2:ed:c8:18:
79:13:90:a6:fb:f1:08:d6:b7:99:72:25:20:4a:62:50:43:e6:
9e:18:7c:47:8e:b7:95:c7:61:68:bc:b6:84:d4:bc:64:f9:1b:
e4:53:09:40:8a:fe:4e:fd:77:90:47:62:5b:a2:31:58:0e:6d:
8a:cc:1f:00:47:60:53:2e:bb:32:1e:45:52:31:d8:d1:80:cd:
42:81:e1:f3:b1:18:53:69:7c:f1:d2:c7:32:15:1a:de:a8:da:
a3:67:23:2f:56:35:54:a1:35:12:3c:ac:3d:2b:54:3c:d0:37:
ec:e9:a9:e2:39:a4:d7:91:b6:25:dc:26:ba:df:45:e8:40:8d:
73:53:53:cd:21:8d:2a:3e:e5:cf:cb:92:b0:50:5f:e4:20:b4:
0e:a0:4e:40:2e:d4:88:24:c3:d4:00:5b:c9:f8:a9:04:44:70:
06:4c:18:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org