Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/MLIxQ6OGCL6HPi0aXnHUx3BgbgQ.roa
File: MLIxQ6OGCL6HPi0aXnHUx3BgbgQ.roa (raw, json)
Hash identifier: kMtpd4Zg730vJFqALMtbU14OlAIG6HLmgDHf5VnVvuU=
Subject key identifier: 30:B2:31:43:A3:86:08:BE:87:3E:2D:1A:5E:71:D4:C7:70:60:6E:04
Certificate issuer: /CN=164646b628bc27d2fb26b499a5edb2e1c4c5088a
Certificate serial: 01856BCA51EA3120C7DFB93F171B295DD692
Authority key identifier: 16:46:46:B6:28:BC:27:D2:FB:26:B4:99:A5:ED:B2:E1:C4:C5:08:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FkZGtii8J9L7JrSZpe2y4cTFCIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/MLIxQ6OGCL6HPi0aXnHUx3BgbgQ.roa
Signing time: Sun 01 Jan 2023 05:24:59 +0000
ROA not before: Sun 01 Jan 2023 05:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 62.233.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:51:ea:31:20:c7:df:b9:3f:17:1b:29:5d:d6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=164646b628bc27d2fb26b499a5edb2e1c4c5088a
Validity
Not Before: Jan 1 05:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30b23143a38608be873e2d1a5e71d4c770606e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:03:3d:8c:d7:46:f3:21:b1:62:a6:94:a3:d2:
e9:65:b9:7d:0f:05:91:66:d2:ac:5b:9e:98:32:8b:
df:96:f6:68:06:d1:ab:57:36:4b:fa:ca:31:55:53:
52:1d:94:93:ad:23:36:3c:b0:18:d4:8a:30:4d:e2:
1a:42:e9:13:a7:dc:60:b2:46:1c:7f:27:76:28:1f:
54:c6:2c:bb:da:e1:78:90:6f:7b:e2:b4:f2:1e:d3:
e1:ef:40:f0:a6:d8:f0:00:a1:07:f4:dd:eb:d3:ee:
19:f0:1d:b0:2a:ce:87:b2:32:fd:5f:a9:ef:a5:7f:
fb:5c:e6:be:4f:ba:c0:5a:bd:d2:c0:f7:99:7f:89:
fe:d7:2a:24:19:29:0d:d2:b9:c0:7a:55:86:f5:93:
1d:2a:e6:25:07:3c:3c:ba:6f:f9:ef:25:7f:4c:1f:
1e:a1:65:cd:2b:93:0c:a6:4c:a6:63:12:cf:4c:63:
da:97:28:71:58:53:0e:a9:83:06:1e:2b:c7:fe:32:
2e:aa:ae:4c:e7:c3:bb:98:cb:d0:3d:e9:78:5d:50:
a8:a5:b1:91:2c:c5:3c:e4:48:10:7f:a4:02:96:54:
9b:f2:0d:0e:ff:aa:86:d8:1b:71:52:42:aa:10:e9:
8a:d9:bc:f5:5d:43:a2:75:82:61:84:89:66:b3:f4:
44:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B2:31:43:A3:86:08:BE:87:3E:2D:1A:5E:71:D4:C7:70:60:6E:04
X509v3 Authority Key Identifier:
keyid:16:46:46:B6:28:BC:27:D2:FB:26:B4:99:A5:ED:B2:E1:C4:C5:08:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FkZGtii8J9L7JrSZpe2y4cTFCIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/MLIxQ6OGCL6HPi0aXnHUx3BgbgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/FkZGtii8J9L7JrSZpe2y4cTFCIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.38.0/24
Signature Algorithm: sha256WithRSAEncryption
28:da:6b:08:ca:e9:bb:19:4b:ac:1e:b9:4f:05:73:d1:60:87:
7a:79:14:58:01:ce:57:21:97:db:86:0e:a9:47:ee:8e:e0:24:
22:46:e6:08:19:f8:a6:f6:56:04:2a:58:c9:42:4b:3b:53:12:
18:3a:0f:29:c3:ae:f6:11:50:77:e7:c5:db:01:c4:7f:af:64:
39:21:a3:50:41:9f:7c:a5:a5:35:3d:8e:7a:c7:b3:bf:71:62:
86:09:42:ce:95:1d:8c:f0:96:3f:c3:88:d2:61:07:a7:fb:5c:
87:26:29:44:fe:5e:1c:28:38:f6:9b:52:dc:2d:c9:df:e5:d2:
ba:15:a0:7d:b1:7e:5d:2a:dd:9d:fe:d8:98:2e:6c:9e:3d:8d:
79:fa:54:e5:69:c9:0e:7f:06:06:d2:37:e1:fc:72:21:56:88:
f7:6c:b3:99:02:73:b8:3f:48:9b:ac:d7:b1:d4:2e:75:8b:38:
20:9b:55:ab:a2:c7:ab:4b:06:41:e8:df:a0:56:5c:5f:3b:26:
fe:d7:75:6d:6f:5b:96:db:d7:46:5d:7f:72:64:ad:f2:f4:3e:
54:31:fb:ad:69:61:7c:26:96:91:b0:e0:6e:05:9f:93:61:c6:
bb:17:c0:ac:a0:b7:99:db:4d:29:a8:76:72:61:e9:df:9d:74:
e0:7d:69:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:01 2024 by rpki-client on console-fra.rpki-client.org