Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/8CAd2SZDoM9iZGfZRDQU3AKTUtw.roa
File: 8CAd2SZDoM9iZGfZRDQU3AKTUtw.roa (raw, json)
Hash identifier: r92m9Q4tqOe4GsRDgLx9iHnzrtBtIit6+ZziTcFgEqE=
Subject key identifier: F0:20:1D:D9:26:43:A0:CF:62:64:67:D9:44:34:14:DC:02:93:52:DC
Certificate issuer: /CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Certificate serial: 01889AC9D677741C7E3E24188074880685B6
Authority key identifier: 74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/8CAd2SZDoM9iZGfZRDQU3AKTUtw.roa
Signing time: Thu 08 Jun 2023 11:34:58 +0000
ROA not before: Thu 08 Jun 2023 11:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205124
IP address blocks: 149.62.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:c9:d6:77:74:1c:7e:3e:24:18:80:74:88:06:85:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Validity
Not Before: Jun 8 11:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0201dd92643a0cf626467d9443414dc029352dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1a:7c:db:46:c5:93:82:98:4d:b5:12:dc:48:
f9:90:b5:da:c7:55:af:20:e3:47:20:41:cf:d0:43:
25:b8:b6:bf:38:23:90:ad:bc:bc:7a:56:c6:cf:4f:
01:e7:48:e7:d1:ae:df:5c:cf:65:14:ce:2a:7a:82:
64:61:64:8d:52:00:a6:14:36:05:5e:0e:71:51:f5:
cb:cd:bc:02:a4:04:70:33:5d:36:35:36:70:6e:a3:
44:4c:d1:06:56:f5:0d:13:a3:60:bd:67:02:b5:ae:
10:d0:7d:65:2a:c6:08:8d:e5:d7:74:17:33:6e:fb:
d5:9f:86:f0:47:86:97:5a:da:97:2d:12:10:d3:16:
e6:4b:7e:44:60:a9:a3:d8:65:b7:8b:21:be:19:81:
17:74:a1:d6:01:8a:00:b7:a0:91:4a:5c:60:26:10:
f6:95:4d:9b:d7:a9:a5:d6:44:d4:eb:3b:d6:85:e9:
49:cb:39:a2:84:83:dc:2b:3a:84:b7:e4:0d:40:ce:
49:c8:e4:e5:e1:71:2e:a7:bc:e2:9b:ac:08:8b:b7:
c9:66:55:f7:59:42:bd:66:a6:8a:a0:01:ee:79:a8:
41:95:9a:41:91:e5:ee:32:f2:99:d6:90:b0:5c:10:
86:70:c1:1b:e0:ad:5e:37:4c:d2:15:04:7b:5e:fa:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:20:1D:D9:26:43:A0:CF:62:64:67:D9:44:34:14:DC:02:93:52:DC
X509v3 Authority Key Identifier:
keyid:74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/8CAd2SZDoM9iZGfZRDQU3AKTUtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/dHM-CN3CU2e-bzrYps79GOde7YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.33.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f0:fd:b8:a1:79:ca:4b:9f:06:85:16:89:c1:27:da:31:6c:
3a:8d:43:2c:7b:46:c4:64:9d:83:c6:48:1f:2d:72:71:5f:9b:
10:e6:c5:53:a1:30:fa:0a:b3:62:c8:42:82:c2:c3:f9:17:e9:
5c:d0:8c:77:5c:e1:8e:55:33:f0:97:56:98:83:94:f1:52:b0:
e9:f5:27:29:66:44:05:a9:c6:b8:b3:66:05:ba:d8:cb:ed:aa:
4d:18:f5:18:56:aa:05:1e:ae:1c:55:f4:59:68:ff:d6:da:8e:
0e:89:e6:48:63:ad:60:f7:4e:cc:3f:bc:b7:22:b1:a4:aa:12:
86:ef:17:3b:93:73:0a:b1:5c:21:5d:ce:94:f6:4c:d4:c2:0b:
be:2d:73:d4:bc:d3:0a:7f:b5:43:63:09:a0:12:13:49:7d:d9:
13:9b:2c:6c:85:31:97:56:72:cb:fc:8b:51:00:95:36:0c:19:
9f:d6:86:f5:8e:ca:87:57:a1:5d:59:2f:a6:2d:9c:a5:e5:91:
32:f0:c4:67:4b:07:a1:7d:40:b3:f3:69:78:aa:88:04:60:2c:
8f:7b:fd:fe:25:cf:89:67:75:63:20:a1:72:63:b9:33:44:9f:
f2:61:d2:0f:34:b1:05:74:f1:58:e2:01:af:2a:69:33:9b:f1:
01:39:c7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:46:23 2025 by rpki-client