Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9bc52e-c6f6-4a67-824a-24d9c5fe3fa4/1/2hXVerB9UsO1YxRJpDbdQXK96zc.roa
File: 2hXVerB9UsO1YxRJpDbdQXK96zc.roa (raw, json)
Hash identifier: SZBDTtV7w+B0KmcvtIoU4WTO0K7BYEIWstBrupFnWIw=
Subject key identifier: DA:15:D5:7A:B0:7D:52:C3:B5:63:14:49:A4:36:DD:41:72:BD:EB:37
Certificate issuer: /CN=51b3ba1c4b116ec7cf193c0b2f6551139837fad2
Certificate serial: 75DCD0
Authority key identifier: 51:B3:BA:1C:4B:11:6E:C7:CF:19:3C:0B:2F:65:51:13:98:37:FA:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbO6HEsRbsfPGTwLL2VRE5g3-tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9bc52e-c6f6-4a67-824a-24d9c5fe3fa4/1/2hXVerB9UsO1YxRJpDbdQXK96zc.roa
Signing time: Sat 01 Jan 2022 03:53:43 +0000
ROA not before: Sat 01 Jan 2022 03:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 62.3.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7724240 (0x75dcd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b3ba1c4b116ec7cf193c0b2f6551139837fad2
Validity
Not Before: Jan 1 03:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da15d57ab07d52c3b5631449a436dd4172bdeb37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ae:58:fc:a5:3d:ff:ab:4f:45:da:88:e2:98:
48:1d:db:95:f4:27:9a:a5:8e:d0:6b:fd:28:60:ea:
f2:b2:5d:b7:98:36:67:c7:cf:e1:ad:38:4b:65:ad:
fe:7d:e5:8b:ca:7a:a4:21:70:a9:cc:72:af:eb:86:
75:cb:5d:d4:dc:93:bd:20:76:f9:d3:fb:89:b1:3e:
83:8d:82:88:08:c7:28:22:85:74:85:a7:8e:ad:3b:
b2:9e:45:e9:72:5a:a9:80:b7:12:7c:e4:bb:bb:5b:
1e:4d:e9:1f:19:33:0b:5c:c3:11:39:5a:b5:a1:6c:
d8:bd:96:39:4a:e3:ad:21:5a:c4:62:9e:c1:62:c0:
0f:1d:7a:0d:8a:ce:15:31:bb:04:64:5a:3d:f3:23:
1b:36:b0:23:13:9f:8e:56:9e:1d:7c:82:a0:53:56:
6a:c3:56:5d:08:17:32:00:5b:10:bb:15:9a:92:d6:
ef:07:0e:3d:df:af:4e:fd:21:34:e3:a4:5a:ff:8b:
f5:7e:7a:36:a7:24:93:44:ec:23:73:ce:a3:cc:3b:
a6:17:23:3c:24:9c:ad:b5:ff:04:81:f6:82:26:f2:
10:1c:38:87:9b:81:ab:1d:00:69:fc:ab:00:70:be:
21:79:bb:fb:54:b3:56:77:73:40:2a:6d:65:62:6d:
79:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:15:D5:7A:B0:7D:52:C3:B5:63:14:49:A4:36:DD:41:72:BD:EB:37
X509v3 Authority Key Identifier:
keyid:51:B3:BA:1C:4B:11:6E:C7:CF:19:3C:0B:2F:65:51:13:98:37:FA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbO6HEsRbsfPGTwLL2VRE5g3-tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9bc52e-c6f6-4a67-824a-24d9c5fe3fa4/1/2hXVerB9UsO1YxRJpDbdQXK96zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9bc52e-c6f6-4a67-824a-24d9c5fe3fa4/1/UbO6HEsRbsfPGTwLL2VRE5g3-tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.11.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:9a:1e:8f:01:be:c4:89:37:ff:e0:00:4d:25:20:62:cc:a7:
68:d3:5b:73:2a:b4:97:6d:fe:73:5a:9f:02:3f:ca:01:71:e6:
e2:4e:4d:dd:a2:4d:06:4f:ee:78:d3:64:d9:f3:a6:a8:b5:a6:
76:79:c2:ea:1d:b1:76:c8:d4:af:0b:ae:3d:d1:a8:50:0f:01:
72:7e:48:97:4c:04:04:dd:3a:eb:a0:e5:fe:e0:ea:7f:7f:75:
fe:c4:02:47:3e:b2:22:4f:80:5a:de:ac:3c:fa:01:3d:58:e8:
73:f5:a6:f0:43:00:e3:67:2a:a6:21:de:7f:08:21:45:ac:8c:
f6:e5:e1:d8:a7:47:d9:63:c6:bb:9f:46:ad:0d:11:e0:68:d0:
4c:cb:76:eb:13:52:26:e2:fc:c9:60:54:b7:01:41:d2:b6:31:
04:35:56:9d:7e:b3:06:e6:05:7d:14:26:24:fd:0c:44:26:66:
b5:3c:92:98:5e:13:54:f4:59:4e:1e:cf:b1:88:3c:9a:ac:31:
7d:e3:e9:64:a8:ab:0b:d7:4a:2c:ad:16:99:4d:87:c2:c8:1e:
eb:42:8f:bc:28:48:2c:57:d2:fe:27:82:63:85:bd:65:14:3c:
fd:96:9f:6e:1f:21:a4:ab:e2:17:a2:a3:75:fc:d3:84:df:b2:
a8:0b:ff:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:18 2025 by rpki-client