Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/AUZ2KyQ2ferUXaBaPEhPFEOkS00.roa
File: AUZ2KyQ2ferUXaBaPEhPFEOkS00.roa (raw, json)
Hash identifier: I+upJDWWELzvEcNt3UgD3GXGG6RmNHhqtJ4PHm5FZs8=
Subject key identifier: 01:46:76:2B:24:36:7D:EA:D4:5D:A0:5A:3C:48:4F:14:43:A4:4B:4D
Certificate issuer: /CN=0ee51a1dd6c876c3824caca83ae4d09baa730b87
Certificate serial: 018CC3B6921C534B1487C558A40D53A897C4
Authority key identifier: 0E:E5:1A:1D:D6:C8:76:C3:82:4C:AC:A8:3A:E4:D0:9B:AA:73:0B:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DuUaHdbIdsOCTKyoOuTQm6pzC4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/AUZ2KyQ2ferUXaBaPEhPFEOkS00.roa
Signing time: Mon 01 Jan 2024 06:29:31 +0000
ROA not before: Mon 01 Jan 2024 06:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 62.68.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:92:1c:53:4b:14:87:c5:58:a4:0d:53:a8:97:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ee51a1dd6c876c3824caca83ae4d09baa730b87
Validity
Not Before: Jan 1 06:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0146762b24367dead45da05a3c484f1443a44b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:7d:bb:59:a1:de:a4:37:e3:ff:5e:7a:eb:
a7:9d:2e:18:c9:cb:6b:02:f6:4e:71:24:7d:5a:7c:
a3:6f:ed:c6:68:36:a4:ec:ca:95:8e:12:7d:65:20:
f8:59:47:01:d4:4c:18:f4:d0:8c:2a:1b:e6:e8:ce:
18:0f:f0:f8:a2:95:2c:39:c6:b7:12:69:37:a5:42:
3f:c6:af:22:f8:0c:84:38:28:56:3d:29:6a:13:ad:
0a:40:0d:1a:d6:09:5e:f7:58:5b:92:fa:e0:40:44:
33:56:84:84:25:07:4c:be:be:7c:7f:02:3d:86:f0:
af:c7:8e:da:6f:ad:d2:9d:dd:a0:f6:45:34:e3:65:
82:4c:9a:42:80:a4:14:46:95:09:77:9d:66:20:dd:
d5:f3:6a:fe:9e:9f:2b:89:7f:3e:fb:04:32:dc:e2:
15:10:d2:3f:7c:3a:be:4c:bb:5a:2e:3f:4f:88:0f:
9d:07:b3:79:68:15:54:51:d8:e8:72:11:8d:e8:88:
2b:47:37:98:bf:91:94:c3:80:e1:af:30:d1:47:72:
56:b7:1c:6e:73:a6:03:78:04:f3:fb:d9:57:f5:a8:
ef:9d:93:cf:dd:3f:93:fe:53:2a:70:c2:45:b1:f0:
4a:04:4d:d7:a9:64:0e:26:6b:ca:74:ff:db:4a:a4:
48:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:46:76:2B:24:36:7D:EA:D4:5D:A0:5A:3C:48:4F:14:43:A4:4B:4D
X509v3 Authority Key Identifier:
keyid:0E:E5:1A:1D:D6:C8:76:C3:82:4C:AC:A8:3A:E4:D0:9B:AA:73:0B:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DuUaHdbIdsOCTKyoOuTQm6pzC4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/AUZ2KyQ2ferUXaBaPEhPFEOkS00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/DuUaHdbIdsOCTKyoOuTQm6pzC4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.85.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:4a:a4:03:39:46:70:c1:d4:12:11:35:0b:d2:4b:4f:40:06:
74:ce:75:56:bb:d1:1c:96:09:33:d5:a9:a6:35:a1:bc:1d:8b:
8c:2e:16:ab:30:31:ab:b7:82:ae:df:a7:3f:c3:cc:23:ac:3e:
79:f9:bb:26:37:73:d0:f5:5d:7b:2d:d6:68:ee:5b:f7:22:b2:
66:67:0b:75:d9:3a:ac:d9:19:44:79:43:fa:9a:0e:e4:d2:43:
b9:49:a6:3d:f6:74:3f:d1:54:4f:02:1f:c8:44:44:18:3c:7d:
0a:49:d1:49:2b:d4:6e:fa:f0:f7:d9:d6:a0:98:f9:76:c8:37:
ca:f7:9e:53:27:b3:70:1a:ba:de:11:a4:b1:76:7b:49:7c:a2:
0f:4f:76:25:dd:20:8f:23:b7:9e:14:f3:45:8e:14:97:17:59:
7b:77:73:4d:e6:61:69:3a:b7:69:08:48:93:26:2e:4e:ef:39:
6c:70:3c:78:4a:63:6e:06:f7:72:50:63:0c:6a:70:8a:39:55:
a2:e5:82:b5:9c:03:1a:95:4b:55:13:60:2a:1f:22:e5:31:82:
a9:80:d7:0f:8d:86:c6:f1:03:ab:89:74:8e:09:d8:33:f1:a5:
cc:c8:8a:7a:14:42:b2:e5:7d:6a:ec:57:ec:ed:bb:4c:2a:10:
48:7c:7a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:12 2025 by rpki-client