Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/wLl6lCVEatnyvsUgQl25J-nldYs.roa
File: wLl6lCVEatnyvsUgQl25J-nldYs.roa (raw, json)
Hash identifier: dCMHDvmJTA1W67dFq4kRUcvXXlYVE+U6vasSR1d0F+c=
Subject key identifier: C0:B9:7A:94:25:44:6A:D9:F2:BE:C5:20:42:5D:B9:27:E9:E5:75:8B
Certificate issuer: /CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Certificate serial: B169
Authority key identifier: 74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/wLl6lCVEatnyvsUgQl25J-nldYs.roa
Signing time: Thu 24 Mar 2022 19:47:11 +0000
ROA not before: Thu 24 Mar 2022 19:47:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 149.62.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45417 (0xb169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74733e08ddc25367be6f3ad8a6cefd18e75eed82
Validity
Not Before: Mar 24 19:47:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0b97a9425446ad9f2bec520425db927e9e5758b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:00:52:e6:90:fb:de:92:29:37:0c:e0:54:
f4:ed:74:2c:db:5f:3e:cd:8e:ef:dc:4b:51:fe:cd:
55:16:1c:ac:cb:63:b9:e3:d1:c2:b5:cc:c3:14:90:
5e:f8:9a:89:d2:b1:47:76:17:c1:5e:aa:59:b9:1f:
fb:d7:65:cb:0a:58:64:82:d7:c6:18:c6:5c:95:92:
04:d8:bf:7b:af:d3:9b:cb:6d:f8:82:02:9b:33:87:
7a:cf:9a:68:2a:19:6d:83:61:9a:a3:32:5f:9f:98:
c6:81:73:af:51:ab:b8:10:ad:63:64:d0:de:62:0a:
34:d6:6a:57:b7:4f:8d:58:e3:44:6f:55:2e:95:37:
d5:92:8b:27:d2:47:a8:24:62:ac:89:ff:3b:b0:07:
72:74:db:f6:2f:2e:03:d1:7c:cd:a3:c0:d3:01:9b:
7a:e8:ab:88:da:3c:a7:72:9c:ec:86:a5:1f:d7:e0:
a9:ef:d1:1c:07:e9:d9:3a:9a:6b:d2:d8:52:7c:d4:
9d:5d:a4:11:16:87:0d:32:da:a4:48:7a:b6:12:ea:
e9:20:18:f6:2b:ad:6c:cf:c8:72:83:98:df:aa:2a:
73:53:66:9d:90:14:3a:1f:48:d7:75:e5:ff:b2:7e:
68:51:c0:64:91:ad:d1:a3:19:ef:f6:76:65:ff:70:
7b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B9:7A:94:25:44:6A:D9:F2:BE:C5:20:42:5D:B9:27:E9:E5:75:8B
X509v3 Authority Key Identifier:
keyid:74:73:3E:08:DD:C2:53:67:BE:6F:3A:D8:A6:CE:FD:18:E7:5E:ED:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHM-CN3CU2e-bzrYps79GOde7YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/wLl6lCVEatnyvsUgQl25J-nldYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f1c89-6ab3-4285-98eb-c918e2f729aa/1/dHM-CN3CU2e-bzrYps79GOde7YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.32.0/22
Signature Algorithm: sha256WithRSAEncryption
44:ff:1b:61:1a:df:64:50:5e:04:ad:4a:9e:62:55:04:98:3e:
a6:32:8e:a9:7c:a9:f9:80:7c:34:12:f3:91:62:1d:9c:98:e1:
25:89:17:91:a0:d8:7d:58:65:f0:d2:22:82:f1:25:8d:e4:f3:
98:16:85:0d:9d:5c:f9:78:4a:b1:53:e1:ae:43:7f:e1:fa:d1:
fe:f1:83:b6:96:db:6e:45:c5:22:0f:e4:84:40:39:50:3e:44:
d9:69:98:98:bd:0f:11:c6:62:14:a2:c3:06:c8:d3:85:2d:e1:
a5:d5:cb:6b:9e:87:6d:6b:50:65:2a:a5:78:ab:92:74:98:27:
fc:04:0f:da:fd:29:01:ee:17:64:38:1b:65:5f:e7:10:58:6d:
4e:66:01:bb:31:3f:0b:a7:30:e8:cb:81:83:12:ac:69:28:cb:
3b:9d:d3:cc:56:61:e0:28:a1:a0:51:86:89:da:42:6f:c8:75:
43:19:c4:ef:08:df:16:8a:86:8f:aa:15:d5:1b:67:f6:ac:f8:
4b:fe:53:4e:23:ce:ff:ed:d1:65:e0:6f:c8:48:f0:b0:1f:e3:
10:3f:6f:07:61:49:8f:89:cc:95:d3:cc:af:e5:de:69:d8:d1:
ac:e4:f6:b1:1a:27:3d:1a:6a:fe:0d:47:99:07:95:fb:82:d0:
3f:2b:15:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:37:00 2025 by rpki-client