Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/613b2a-8cae-47db-8df0-607cd7f22469/1/sGrr249Gmk2w6ZlvNAT4nbMfS68.roa
File: sGrr249Gmk2w6ZlvNAT4nbMfS68.roa (raw, json)
Hash identifier: MMQcPM4ji906ecINJX0a3ltdva19pNAj9nYcOobID7Y=
Subject key identifier: B0:6A:EB:DB:8F:46:9A:4D:B0:E9:99:6F:34:04:F8:9D:B3:1F:4B:AF
Certificate issuer: /CN=2d6f1fd4ef454476d12410fdf61d4df8c3c7c21b
Certificate serial: 052CEC
Authority key identifier: 2D:6F:1F:D4:EF:45:44:76:D1:24:10:FD:F6:1D:4D:F8:C3:C7:C2:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LW8f1O9FRHbRJBD99h1N-MPHwhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/613b2a-8cae-47db-8df0-607cd7f22469/1/sGrr249Gmk2w6ZlvNAT4nbMfS68.roa
Signing time: Wed 26 Jan 2022 22:54:03 +0000
ROA not before: Wed 26 Jan 2022 22:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 62.68.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339180 (0x52cec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d6f1fd4ef454476d12410fdf61d4df8c3c7c21b
Validity
Not Before: Jan 26 22:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b06aebdb8f469a4db0e9996f3404f89db31f4baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:39:82:8f:98:d5:5f:e4:a3:fd:cf:93:51:
cd:36:54:54:59:68:b6:f3:1d:04:e0:80:d6:73:08:
1d:46:96:c6:e0:f6:50:e4:6b:ab:d2:7f:c0:32:65:
d2:62:26:67:f0:a0:51:47:cc:69:6c:f0:e9:70:c6:
36:a7:c6:3b:ae:ef:4d:37:08:c9:9b:47:8f:6e:13:
d8:15:b0:0d:57:a8:e2:bd:3e:3e:94:42:60:54:fe:
88:4b:0c:69:c1:a7:b0:26:1c:1f:4c:e6:63:ad:7b:
96:21:16:19:ec:86:ba:e0:62:74:78:24:ff:15:e1:
b7:ea:5c:52:43:c3:ce:51:8c:76:12:37:45:9a:d1:
67:03:b5:89:dc:8c:c8:b3:26:83:dd:49:14:8b:9e:
7e:5a:bb:ed:ea:97:1c:a8:54:31:47:6f:00:b4:8d:
a1:7f:3a:98:9a:e2:88:f7:d5:ff:13:f0:54:1f:d9:
c4:cd:84:da:73:26:08:f3:57:16:16:9e:06:3f:fc:
79:9a:dc:68:38:17:3d:f1:40:25:f5:6e:28:cd:48:
61:d1:ac:cf:77:8b:1d:36:c8:9e:9c:c1:25:bc:00:
8c:71:97:f7:f0:9c:eb:bc:6e:20:ce:18:53:e8:e3:
f8:1c:15:62:a1:41:a5:fe:08:68:43:69:36:d8:ec:
d8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:6A:EB:DB:8F:46:9A:4D:B0:E9:99:6F:34:04:F8:9D:B3:1F:4B:AF
X509v3 Authority Key Identifier:
keyid:2D:6F:1F:D4:EF:45:44:76:D1:24:10:FD:F6:1D:4D:F8:C3:C7:C2:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LW8f1O9FRHbRJBD99h1N-MPHwhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/613b2a-8cae-47db-8df0-607cd7f22469/1/sGrr249Gmk2w6ZlvNAT4nbMfS68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/613b2a-8cae-47db-8df0-607cd7f22469/1/LW8f1O9FRHbRJBD99h1N-MPHwhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.71.0/24
Signature Algorithm: sha256WithRSAEncryption
71:73:8a:58:c7:70:f4:97:89:2b:98:c4:58:d4:4f:03:90:89:
d2:ec:3c:9e:26:cc:74:c3:3e:e5:1e:04:0b:ea:c6:75:5f:d0:
6e:89:84:49:f0:53:91:04:44:4c:7f:37:bd:ab:0f:39:7a:3b:
bd:5d:d4:f4:30:e3:b2:71:bf:e9:27:0a:78:cc:53:e8:24:90:
70:ce:5e:7b:5d:d5:1b:4b:84:6a:ed:96:93:e0:2a:0c:cd:39:
f4:5b:08:f4:28:e2:4f:0f:13:07:b0:d9:74:cc:97:c2:1b:8b:
5d:0e:ff:cc:69:66:9c:1e:07:28:49:a1:b8:dd:4f:17:8d:0e:
7c:bb:f6:99:e5:b1:bb:16:e3:bb:28:5f:67:42:5b:a4:70:5b:
a3:b1:a5:79:33:a4:31:22:16:57:32:c1:6f:7f:7e:78:87:dd:
f2:d4:d9:b6:14:ca:d3:06:57:fa:e9:96:05:0b:04:7a:1e:e1:
3d:c3:22:39:96:d9:4e:12:26:c7:f0:f2:ea:5e:5c:8b:04:e9:
62:a5:cf:9a:2a:be:60:ad:2c:e4:60:c5:d6:97:a2:e2:1f:fb:
2a:c3:cf:fe:a8:f7:53:44:a7:d1:b1:3a:3b:78:6d:b6:df:6e:
a1:a2:b0:4c:28:b4:96:3a:7d:74:6c:21:20:7f:cf:98:f3:c6:
0d:15:a1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 12:10:00 2025 by rpki-client