Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/3BK5e1BlKbhht-FU-E_nqvCfIo4.roa
File: 3BK5e1BlKbhht-FU-E_nqvCfIo4.roa (raw, json)
Hash identifier: TbMulfSxUUQYHpRZ74Zx7vWDQH1zBslyNz+Q4llzKxI=
Subject key identifier: DC:12:B9:7B:50:65:29:B8:61:B7:E1:54:F8:4F:E7:AA:F0:9F:22:8E
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0182589D0ABFA9E96716DEEEBCDE95353A63
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/3BK5e1BlKbhht-FU-E_nqvCfIo4.roa
Signing time: Mon 01 Aug 2022 08:54:23 +0000
ROA not before: Mon 01 Aug 2022 08:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 86.62.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:9d:0a:bf:a9:e9:67:16:de:ee:bc:de:95:35:3a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Aug 1 08:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc12b97b506529b861b7e154f84fe7aaf09f228e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:c2:d7:e6:a1:a7:4d:13:e2:ec:2f:f0:81:
0d:74:cf:aa:e8:50:39:18:e6:d6:66:41:28:24:3a:
8e:13:8a:b4:de:07:7c:7c:7b:40:30:20:5f:2e:5d:
93:8b:8e:bf:b8:f9:cd:8d:0d:bb:5a:b8:dd:47:62:
82:c6:a9:b7:96:2c:c3:e0:12:ad:29:c0:d4:4b:90:
71:4f:8b:0d:85:7b:6a:f5:60:28:97:c4:7c:1b:2f:
33:b4:43:86:fc:62:c4:bd:3f:e8:6e:c3:b7:55:04:
61:ff:d3:58:58:a8:bb:6a:61:ef:93:f3:b4:6b:39:
b9:bf:8d:5d:4a:03:c6:5d:d7:93:51:ac:00:c1:11:
d2:07:17:3c:b5:ac:8c:d6:e2:2e:f9:dc:a6:12:a5:
40:d0:a2:42:c5:1d:8b:73:bd:81:8c:f3:2d:1d:12:
49:a5:8c:de:f7:f3:26:fd:29:2b:45:ca:a1:5d:91:
b2:e6:27:da:70:5b:be:47:76:c6:ab:62:51:3d:97:
b2:92:92:9a:23:bc:ea:15:63:c9:9d:f4:a2:8e:79:
b8:f4:4f:c9:d0:2f:50:d4:70:8d:92:f7:04:43:83:
06:9b:19:59:0f:02:3e:5d:8a:06:52:72:4f:64:e1:
77:88:c8:6a:3b:d2:a2:4e:1d:7e:ab:0d:b7:ba:92:
2d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:12:B9:7B:50:65:29:B8:61:B7:E1:54:F8:4F:E7:AA:F0:9F:22:8E
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/3BK5e1BlKbhht-FU-E_nqvCfIo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.28.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a2:7f:c7:7c:1a:93:3e:e1:88:f0:32:f8:d4:b4:e8:b8:79:
00:41:bf:2c:27:02:3f:d6:70:62:c1:68:8d:6f:f3:3d:54:e7:
a5:0d:a1:10:bc:19:57:68:e1:61:00:4a:d4:7b:cd:f3:b0:c0:
95:c9:3a:59:86:13:3a:ae:36:a4:9d:69:d8:f1:b1:37:10:ae:
57:bc:3a:44:4d:c7:9d:64:9d:07:ec:d0:76:36:25:fc:85:59:
cd:cc:0d:9a:12:35:9a:e9:48:e2:8d:a0:f3:36:76:60:99:4a:
2b:a5:5d:a7:47:19:e0:29:6c:a1:bc:89:c8:f1:74:a5:0e:ab:
52:66:20:ff:90:5f:9b:d3:66:05:cd:87:34:02:0f:f8:b7:43:
8e:b6:5d:2e:3e:78:2c:5e:9d:b9:6e:de:ee:b3:6c:4f:3f:84:
6e:82:b2:7e:9e:2c:33:70:1a:a7:62:07:9d:8e:7e:ec:c4:fc:
50:d4:25:6e:41:50:47:d1:2d:f3:6b:54:8e:70:55:38:60:2e:
a0:11:d4:d9:ef:d8:a3:ea:11:e1:0d:b3:05:db:f6:1f:e3:bd:
88:46:df:ba:f8:73:c4:10:b0:15:e5:80:e5:95:03:4c:8e:86:
07:de:72:a9:f3:2a:e4:28:10:b0:42:56:80:da:2e:fb:d4:b5:
62:07:8a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:33 2025 by rpki-client