Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/9c39f8-05a4-49cc-aedc-cbdcecba41d4/1/k1qI_IetkMFGYaVN-DI9YtweX5M.roa
File: k1qI_IetkMFGYaVN-DI9YtweX5M.roa (raw, json)
Hash identifier: 9MzjodeN14f0PVXQOyZVlIEBBCqwVMNl83KJBW5fF9w=
Subject key identifier: 93:5A:88:FC:87:AD:90:C1:46:61:A5:4D:F8:32:3D:62:DC:1E:5F:93
Certificate issuer: /CN=71ccc380844d0330d4bf28d255b022ef072d4dee
Certificate serial: 0185735F01D6D00DAEB5B8869127A9D9EABB
Authority key identifier: 71:CC:C3:80:84:4D:03:30:D4:BF:28:D2:55:B0:22:EF:07:2D:4D:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cczDgIRNAzDUvyjSVbAi7wctTe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/9c39f8-05a4-49cc-aedc-cbdcecba41d4/1/k1qI_IetkMFGYaVN-DI9YtweX5M.roa
Signing time: Mon 02 Jan 2023 16:44:44 +0000
ROA not before: Mon 02 Jan 2023 16:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 62.204.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:5f:01:d6:d0:0d:ae:b5:b8:86:91:27:a9:d9:ea:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71ccc380844d0330d4bf28d255b022ef072d4dee
Validity
Not Before: Jan 2 16:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=935a88fc87ad90c14661a54df8323d62dc1e5f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:f0:9b:40:18:f3:3e:f2:fe:db:3c:3e:63:
e2:59:c1:65:67:59:70:0a:3b:51:9c:34:1b:e7:f8:
d3:92:6c:bc:c8:9e:f6:e3:19:5d:68:e7:09:e7:ab:
00:7c:3d:8d:c7:1a:5a:44:e3:94:fd:7d:c7:b1:df:
6c:8c:26:15:53:ac:3c:fb:a5:5c:6d:aa:d6:74:07:
36:21:8e:06:46:bd:fd:6d:0c:7e:ef:b7:0c:d4:41:
7c:b4:6f:c1:e7:e4:cc:78:50:24:05:68:30:07:45:
47:0b:21:f1:08:06:b3:b9:7d:e1:b5:e0:41:27:8c:
05:89:ca:17:41:76:be:05:36:b4:64:0d:88:8b:0f:
2b:77:db:6e:f1:b2:a9:6f:8b:c5:bc:0c:29:62:93:
67:e0:33:6b:95:c3:ab:ba:24:00:df:eb:59:75:44:
53:38:6c:05:bb:31:a9:10:8f:80:b8:cf:bc:28:06:
e3:74:09:31:3c:ae:ae:31:9c:d0:a0:08:a7:3b:4f:
37:fb:98:12:54:91:5a:65:4d:0a:57:eb:8d:a1:5b:
16:c6:41:b5:8a:7b:70:e2:08:23:c2:11:e7:0f:7a:
b2:7a:f9:67:fe:29:63:02:42:b9:c6:ad:ff:37:c3:
6e:6a:fa:76:5a:af:8d:e6:18:e2:f9:8a:15:c7:5c:
74:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5A:88:FC:87:AD:90:C1:46:61:A5:4D:F8:32:3D:62:DC:1E:5F:93
X509v3 Authority Key Identifier:
keyid:71:CC:C3:80:84:4D:03:30:D4:BF:28:D2:55:B0:22:EF:07:2D:4D:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cczDgIRNAzDUvyjSVbAi7wctTe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/9c39f8-05a4-49cc-aedc-cbdcecba41d4/1/k1qI_IetkMFGYaVN-DI9YtweX5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/9c39f8-05a4-49cc-aedc-cbdcecba41d4/1/cczDgIRNAzDUvyjSVbAi7wctTe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.58.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:88:e5:7a:60:1d:51:95:00:ef:66:82:f0:38:77:45:f0:61:
c1:89:b1:9d:56:78:6c:06:f6:ab:d0:15:05:7a:63:5c:de:f7:
49:3a:ad:d7:4f:4a:4f:f4:ba:7b:f4:cc:18:12:9f:fe:59:bf:
c4:63:42:c6:3a:33:4f:b0:82:db:92:d6:7e:19:d4:f6:98:4e:
7c:47:70:b8:18:20:c2:22:1a:53:aa:9c:3c:1b:f5:04:06:ea:
b4:4f:cd:94:8f:6d:54:42:e4:67:27:fc:ff:9c:f0:9f:7b:73:
be:89:d4:df:7b:b1:14:35:90:77:47:7c:45:85:96:1a:39:09:
00:ba:24:51:49:25:67:cf:e1:07:ec:5a:ef:01:a1:dd:5d:ff:
98:38:54:70:0c:21:9e:bd:09:c3:a4:50:a7:8b:9d:02:2e:b5:
ef:bb:9e:fb:6c:a9:da:49:ad:a4:db:35:40:98:a6:7c:0e:e3:
6e:79:5c:0a:f3:67:e1:17:e8:84:48:ea:4e:6a:00:0c:89:1e:
52:35:6b:71:68:82:5a:c4:c9:1e:5c:72:d2:ab:f7:2a:ff:5c:
04:7a:6e:83:e3:a7:5b:69:c7:57:e5:5b:1f:25:ff:3b:e0:02:
0b:e1:cf:1d:69:f0:a4:61:f8:3d:03:25:48:a2:63:e2:bd:3c:
27:dc:20:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 12:22:55 2023 by rpki-client on console-ams.rpki-client.org