Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/679f68-3de2-461e-a3ef-00599f882578/1/YIGh09OMpYvydD5qcHMX637PpGY.roa
File: YIGh09OMpYvydD5qcHMX637PpGY.roa (raw, json)
Hash identifier: JG7sRNrRaUy653jGTpVMvdz6BF72UH+832lT4S4UxVE=
Subject key identifier: 60:81:A1:D3:D3:8C:A5:8B:F2:74:3E:6A:70:73:17:EB:7E:CF:A4:66
Certificate issuer: /CN=6417cae95d7114210ab2cd475328bc870427e5eb
Certificate serial: 0188208675A8F92C25350545C61061579D92
Authority key identifier: 64:17:CA:E9:5D:71:14:21:0A:B2:CD:47:53:28:BC:87:04:27:E5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBfK6V1xFCEKss1HUyi8hwQn5es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/679f68-3de2-461e-a3ef-00599f882578/1/YIGh09OMpYvydD5qcHMX637PpGY.roa
Signing time: Mon 15 May 2023 17:47:42 +0000
ROA not before: Mon 15 May 2023 17:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 62.3.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:75:a8:f9:2c:25:35:05:45:c6:10:61:57:9d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6417cae95d7114210ab2cd475328bc870427e5eb
Validity
Not Before: May 15 17:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6081a1d3d38ca58bf2743e6a707317eb7ecfa466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:22:f1:69:94:c7:3c:a2:4e:6a:8b:98:c9:9b:
6f:78:d3:95:b3:54:e2:b9:45:f9:b5:9a:8c:d9:1e:
45:9b:9d:ba:04:04:1c:c4:e0:c7:8a:3d:af:f1:4b:
9e:ff:89:aa:9c:c4:00:d3:2d:1d:db:11:82:7b:a5:
7b:52:b6:d1:20:97:6c:72:fd:e5:d2:f0:92:a5:f2:
4e:b3:be:a0:90:84:60:03:84:09:eb:0d:cd:30:1e:
5a:b4:7c:45:3a:f2:58:8f:4a:1c:85:5d:13:52:68:
28:82:eb:0c:bd:f3:bc:df:d4:78:62:d7:d5:25:34:
f1:15:19:05:5d:ad:d2:69:7c:b8:c0:e4:68:36:00:
8e:ea:7e:3a:6a:74:4c:18:bf:be:e5:c1:0e:42:c3:
1f:55:d6:ea:2f:ec:92:c6:97:ac:dc:0f:29:5e:ef:
50:cd:35:0c:d7:2e:3c:9e:2a:c7:c1:3b:a3:e3:4c:
9c:de:40:e2:4f:6c:93:b5:91:e0:44:e1:b1:9f:2d:
54:b4:89:7c:1b:3b:12:00:8c:d7:b4:9f:7f:b3:aa:
de:d3:68:45:04:2a:7d:fe:f6:c2:49:2b:1c:ed:f8:
8b:97:c3:0b:d1:31:d3:f5:e4:63:3e:d8:0c:c1:8a:
d0:49:07:c9:5a:4a:fb:85:3f:b8:17:f4:d5:bc:93:
8d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:81:A1:D3:D3:8C:A5:8B:F2:74:3E:6A:70:73:17:EB:7E:CF:A4:66
X509v3 Authority Key Identifier:
keyid:64:17:CA:E9:5D:71:14:21:0A:B2:CD:47:53:28:BC:87:04:27:E5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBfK6V1xFCEKss1HUyi8hwQn5es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/679f68-3de2-461e-a3ef-00599f882578/1/YIGh09OMpYvydD5qcHMX637PpGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/679f68-3de2-461e-a3ef-00599f882578/1/ZBfK6V1xFCEKss1HUyi8hwQn5es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:f8:c9:ac:60:de:a3:ee:ac:fe:40:e3:85:2c:ae:11:5b:7f:
c6:a5:9e:19:c1:63:60:2b:aa:73:17:70:7a:0b:c7:bf:f5:20:
bb:9a:73:ce:67:83:2b:ba:38:28:06:a2:f0:ce:c4:7c:b0:03:
f9:98:4d:5f:62:d0:af:4b:19:5a:b5:8c:0f:23:49:a7:71:eb:
2d:bb:94:4d:c8:a7:95:92:b2:cf:16:13:7f:c2:ce:c5:ec:31:
33:12:1c:20:98:20:33:8c:2e:22:dd:30:aa:0f:28:44:38:96:
41:56:65:c2:88:29:95:cd:e2:56:6c:98:0d:1a:f3:f4:91:88:
89:5b:71:9e:5b:75:06:d7:59:bc:d2:f8:50:f0:59:68:7e:8e:
b5:62:95:92:2c:26:ee:df:d4:9a:5d:43:cb:d8:eb:79:87:bf:
e8:86:c0:c1:c8:7c:9c:b4:27:2b:e9:86:84:f6:8c:ca:dc:0e:
ef:d8:f6:94:43:44:3b:df:75:5b:87:16:7a:00:cf:5a:9b:13:
24:8a:a9:55:15:c6:00:2b:61:04:8f:eb:b5:00:29:f6:74:84:
37:7e:b3:60:72:91:6a:8b:fa:5c:b0:5a:e4:b4:c3:d3:a8:cb:
81:72:d6:e1:66:1b:b9:55:55:03:ca:aa:8e:2e:f9:bd:28:4a:
2f:c0:0c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:02 2025 by rpki-client