Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/8a8feb-b462-487d-b7fe-b7371a0bae26/1/nekNHr0gCwrV0dJDFicJh8sWjYw.roa
File: nekNHr0gCwrV0dJDFicJh8sWjYw.roa (raw, json)
Hash identifier: /1VtsbIVS8FGfb0o7+DCkTfUEBEU1UOu4rVDAiPwmao=
Subject key identifier: 9D:E9:0D:1E:BD:20:0B:0A:D5:D1:D2:43:16:27:09:87:CB:16:8D:8C
Certificate issuer: /CN=568af4853e9bef5303b5073d17e5384e664d3451
Certificate serial: 036C9A
Authority key identifier: 56:8A:F4:85:3E:9B:EF:53:03:B5:07:3D:17:E5:38:4E:66:4D:34:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vor0hT6b71MDtQc9F-U4TmZNNFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/8a8feb-b462-487d-b7fe-b7371a0bae26/1/nekNHr0gCwrV0dJDFicJh8sWjYw.roa
Signing time: Mon 14 Feb 2022 05:47:46 +0000
ROA not before: Mon 14 Feb 2022 05:47:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210110
IP address blocks: 62.3.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224410 (0x36c9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568af4853e9bef5303b5073d17e5384e664d3451
Validity
Not Before: Feb 14 05:47:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9de90d1ebd200b0ad5d1d24316270987cb168d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:80:b0:af:c3:b2:e8:a0:d2:d8:91:4f:02:ce:
8e:24:0a:8c:e5:aa:a6:8f:e7:3b:8c:05:81:7b:a3:
1b:d3:7c:f6:00:32:e6:17:27:15:d6:24:6f:ca:80:
8e:0b:e9:f5:ec:4f:ee:35:5c:80:e2:84:aa:46:a7:
17:fd:85:2b:7b:66:d2:53:0c:39:d5:8c:10:40:85:
af:5d:b4:fe:48:9c:b5:97:bb:b2:f5:3f:bc:5a:db:
37:54:a4:3c:df:77:a9:88:58:75:27:83:67:a7:53:
24:5b:d6:f3:79:19:a3:22:05:7e:25:4f:9f:50:78:
c3:41:a8:3d:2c:cd:ed:a5:6f:eb:bf:0c:6c:f5:c7:
bc:2d:f5:0f:33:a2:7b:0f:f0:ce:6c:36:09:78:29:
39:d9:9c:f4:17:44:88:af:00:7d:18:06:2a:ab:66:
cb:68:b2:a8:ee:4a:2f:01:75:64:e1:23:ca:99:05:
de:b8:4f:21:8b:d4:f4:9b:27:f7:08:87:1f:60:24:
5e:15:32:d8:5b:3d:fd:ea:77:d5:8c:7b:b5:13:04:
59:63:37:86:1e:e2:76:e5:cf:c7:49:b3:38:49:a3:
bf:6a:ae:3d:7b:ad:9a:97:e4:03:dc:24:12:cb:ba:
5a:e8:05:91:cd:e4:30:3f:7c:55:03:ad:7e:32:7f:
58:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E9:0D:1E:BD:20:0B:0A:D5:D1:D2:43:16:27:09:87:CB:16:8D:8C
X509v3 Authority Key Identifier:
keyid:56:8A:F4:85:3E:9B:EF:53:03:B5:07:3D:17:E5:38:4E:66:4D:34:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vor0hT6b71MDtQc9F-U4TmZNNFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/8a8feb-b462-487d-b7fe-b7371a0bae26/1/nekNHr0gCwrV0dJDFicJh8sWjYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/8a8feb-b462-487d-b7fe-b7371a0bae26/1/Vor0hT6b71MDtQc9F-U4TmZNNFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.6.0/24
Signature Algorithm: sha256WithRSAEncryption
64:4a:3e:2d:2f:17:2c:1b:16:dd:c3:e6:25:6e:71:0c:0d:39:
9a:ce:b0:80:70:49:40:84:0b:57:b8:37:7c:88:53:a2:76:e3:
c9:9b:20:3c:1f:97:05:04:9a:c2:0a:a6:70:d0:b4:fa:70:3e:
1c:df:cf:d9:0a:7d:e9:33:16:b7:e5:62:f2:40:9a:fc:37:51:
d8:0f:26:3d:4b:19:34:74:3d:21:a0:ab:02:6a:03:da:81:15:
ea:ce:e7:40:7f:d1:55:74:5c:fe:56:63:85:c0:21:95:bf:ee:
b6:93:83:ba:8a:5a:0a:6a:00:d0:07:b8:d4:1a:1c:44:a9:8e:
7a:6b:7d:c7:c3:1a:3a:75:db:98:a8:dd:9a:62:ff:77:40:36:
d8:a2:0f:5c:70:9e:3b:a3:13:7a:4f:f6:28:a3:a1:c4:52:a0:
65:c5:1a:73:47:db:f2:1e:9b:ac:11:75:32:4c:1b:97:2e:33:
8c:47:9a:07:34:fd:67:18:6b:95:30:71:db:ca:33:a1:03:37:
35:33:80:b6:f4:c0:b1:84:12:c1:09:88:cc:be:59:36:62:99:
34:af:84:73:35:04:35:82:b8:07:6d:ee:27:15:c3:b8:46:b1:
62:92:38:d7:91:54:74:b3:ee:3a:d3:2b:0a:10:43:d9:d0:af:
3f:24:7c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:10:28 2025 by rpki-client