Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/tDz7rmTPpJR84Qd565eMP6QtrDI.roa
File: tDz7rmTPpJR84Qd565eMP6QtrDI.roa (raw, json)
Hash identifier: zdXOXHHeJieel1O/WoeHoq/qBMHI57mpcN5cQuHaMEw=
Subject key identifier: B4:3C:FB:AE:64:CF:A4:94:7C:E1:07:79:EB:97:8C:3F:A4:2D:AC:32
Certificate issuer: /CN=164646b628bc27d2fb26b499a5edb2e1c4c5088a
Certificate serial: 018820867264528B53F17197715BF3AC44D3
Authority key identifier: 16:46:46:B6:28:BC:27:D2:FB:26:B4:99:A5:ED:B2:E1:C4:C5:08:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FkZGtii8J9L7JrSZpe2y4cTFCIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/tDz7rmTPpJR84Qd565eMP6QtrDI.roa
Signing time: Mon 15 May 2023 17:47:41 +0000
ROA not before: Mon 15 May 2023 17:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 62.233.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:72:64:52:8b:53:f1:71:97:71:5b:f3:ac:44:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=164646b628bc27d2fb26b499a5edb2e1c4c5088a
Validity
Not Before: May 15 17:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b43cfbae64cfa4947ce10779eb978c3fa42dac32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7d:47:38:75:ab:c6:56:87:46:6f:7d:de:d8:
a9:8c:4d:fc:65:e2:b5:96:ef:ce:fc:b7:25:0a:1d:
c7:d3:17:9c:0b:b3:f1:70:5b:53:12:31:9f:72:be:
af:11:46:96:0b:c1:4b:0a:34:f7:34:81:a2:36:d3:
55:16:6b:0d:94:47:fe:1a:d5:4f:49:90:87:d2:1d:
a0:dd:86:ff:cd:27:6f:6c:39:25:9f:d6:54:81:fb:
50:a5:55:32:4b:aa:bc:01:7b:c4:c4:71:75:42:65:
f3:fe:d4:89:eb:9d:a2:e9:52:62:4e:b3:ce:d2:7d:
07:2b:d2:38:b5:69:0b:e6:b0:7d:da:3f:88:6a:65:
3d:8e:93:3a:10:04:a5:96:dd:a6:3b:66:e4:85:44:
c3:af:6d:f6:74:70:3b:00:4c:88:b2:a0:e6:be:0a:
bc:29:95:11:3f:d3:fb:96:ff:95:1d:8b:c1:56:ff:
b2:e9:d2:a1:97:08:07:b4:c1:85:8a:de:5b:9f:09:
82:d2:58:57:7c:18:fa:83:0a:3b:b7:f5:c2:fc:51:
83:78:11:8d:e1:31:b1:f2:fd:a1:e2:3a:30:92:5b:
bb:f7:b8:03:23:1b:ff:d4:15:9a:c8:c7:e3:15:e2:
6b:85:dc:b8:bb:24:0e:aa:c1:38:45:46:46:8f:8d:
5f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3C:FB:AE:64:CF:A4:94:7C:E1:07:79:EB:97:8C:3F:A4:2D:AC:32
X509v3 Authority Key Identifier:
keyid:16:46:46:B6:28:BC:27:D2:FB:26:B4:99:A5:ED:B2:E1:C4:C5:08:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FkZGtii8J9L7JrSZpe2y4cTFCIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/tDz7rmTPpJR84Qd565eMP6QtrDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/506fe1-9255-4f42-9d4a-9073d20c2d92/1/FkZGtii8J9L7JrSZpe2y4cTFCIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.38.0/24
Signature Algorithm: sha256WithRSAEncryption
88:bb:0e:8e:2a:be:c6:cd:49:07:8f:41:eb:21:40:23:dc:1c:
80:b4:45:e2:e5:b8:21:d1:c4:33:51:6f:cd:dc:76:96:21:05:
90:41:46:58:41:ad:c1:a7:6e:db:7f:69:62:c7:b9:8a:0e:f8:
f0:6a:86:4b:12:0a:94:38:8a:9a:ec:dd:a3:ee:38:96:16:5b:
3a:6a:cc:8a:04:f5:dd:a9:77:cd:2f:a1:b8:c6:42:bb:8e:b1:
17:02:9b:bb:27:9a:7c:5f:b8:e4:e2:dd:ee:25:ef:77:98:37:
21:22:ce:14:6d:30:ee:8d:9d:ce:dd:4b:5a:aa:90:a1:49:bf:
67:8f:0a:1a:fd:29:e8:43:5f:3a:d4:8c:13:09:91:0b:47:6b:
11:9d:06:a1:0b:60:b6:7e:c4:11:2e:1b:fe:21:ab:9a:2a:f9:
0a:78:f1:99:67:48:a2:fe:78:94:d9:20:52:36:52:07:54:73:
80:4c:90:1f:53:e1:2b:51:8d:53:81:79:45:fc:9b:1f:68:ba:
12:c0:ae:41:ff:a3:e4:6f:67:ca:3f:78:4e:12:bf:1c:b7:46:
f5:0a:36:e1:0e:4e:12:62:cf:65:e5:22:71:ce:bb:ad:cc:d7:
12:e5:fa:9e:a2:00:ee:a6:c3:d6:e1:f1:ae:dc:5f:45:e9:38:
ec:49:0a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:53 2025 by rpki-client