Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/faad5a-66cc-4ded-94c3-b2236b61b95a/1/O3IfKXEk7hBbmboS6z45BZUcz9Y.roa
File: O3IfKXEk7hBbmboS6z45BZUcz9Y.roa (raw, json)
Hash identifier: 6wSMbhrFPRwCMsppIqXm7AH5CcgyGmM9MlF5ElfZLV4=
Subject key identifier: 3B:72:1F:29:71:24:EE:10:5B:99:BA:12:EB:3E:39:05:95:1C:CF:D6
Certificate issuer: /CN=7ae285caaceb60ad952fcd745b014dae33056847
Certificate serial: 01856CF84AF72E0B1CD7386551B41521440D
Authority key identifier: 7A:E2:85:CA:AC:EB:60:AD:95:2F:CD:74:5B:01:4D:AE:33:05:68:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/euKFyqzrYK2VL810WwFNrjMFaEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/faad5a-66cc-4ded-94c3-b2236b61b95a/1/O3IfKXEk7hBbmboS6z45BZUcz9Y.roa
Signing time: Sun 01 Jan 2023 10:54:49 +0000
ROA not before: Sun 01 Jan 2023 10:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 62.204.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:4a:f7:2e:0b:1c:d7:38:65:51:b4:15:21:44:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ae285caaceb60ad952fcd745b014dae33056847
Validity
Not Before: Jan 1 10:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b721f297124ee105b99ba12eb3e3905951ccfd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:09:94:4d:97:5e:24:f5:03:7c:c1:b8:c7:9c:
d0:ec:86:88:2a:00:ec:77:19:32:ad:c3:1d:0a:aa:
df:63:4f:7d:25:94:a5:1b:60:b2:51:0a:02:94:76:
6d:83:2b:ee:a1:32:4e:f3:25:d2:f0:bc:1b:91:95:
97:8f:ef:04:0c:33:08:a9:1a:d9:23:15:cd:77:6d:
df:42:fa:c2:1f:ef:a6:95:a1:eb:4b:ac:23:bd:e1:
67:83:9e:55:34:ca:49:61:c9:cf:ec:59:79:91:22:
76:93:71:e8:a6:9a:9b:45:a7:68:1b:37:94:02:5e:
93:bd:0a:04:33:e0:bf:4f:2e:ed:bb:8b:72:2b:13:
20:96:36:22:dd:3c:f2:58:ca:f3:28:be:b2:22:4a:
b5:47:34:3b:8a:36:f9:f1:04:71:4a:06:f2:da:f1:
46:10:d5:38:9c:fe:ce:bd:2d:a3:5a:99:df:79:a9:
7b:df:18:44:3a:7a:b9:40:ee:56:aa:1d:a4:47:d6:
04:09:61:2f:4e:1b:13:00:e1:57:90:11:41:01:de:
a7:5a:23:69:73:4f:1c:27:50:f3:31:66:cc:a1:f1:
ec:f6:f6:05:66:6e:72:7c:66:05:7e:15:ee:a3:a3:
14:ec:61:64:1c:6e:f1:d4:f2:06:d2:ce:eb:94:1c:
71:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:72:1F:29:71:24:EE:10:5B:99:BA:12:EB:3E:39:05:95:1C:CF:D6
X509v3 Authority Key Identifier:
keyid:7A:E2:85:CA:AC:EB:60:AD:95:2F:CD:74:5B:01:4D:AE:33:05:68:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/euKFyqzrYK2VL810WwFNrjMFaEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/faad5a-66cc-4ded-94c3-b2236b61b95a/1/O3IfKXEk7hBbmboS6z45BZUcz9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/faad5a-66cc-4ded-94c3-b2236b61b95a/1/euKFyqzrYK2VL810WwFNrjMFaEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.48.0/24
Signature Algorithm: sha256WithRSAEncryption
32:14:ad:d2:1c:17:d2:83:33:8b:37:ee:4b:e0:2a:93:91:40:
ed:b1:d3:d8:ad:70:6a:35:b9:eb:c4:d3:73:d3:67:78:d0:a4:
2f:7d:4a:52:01:42:96:4c:73:66:c9:fa:e5:c5:6a:8f:21:25:
40:fc:94:8c:52:03:35:e1:5d:48:20:b4:18:99:df:96:ea:87:
49:8a:db:eb:b5:05:83:47:cb:9c:80:2a:53:75:49:0e:dc:63:
53:64:a9:b2:72:8d:27:1f:d7:db:82:cb:82:97:11:69:08:f0:
69:3b:13:ce:76:1a:47:86:77:cd:f2:de:68:e5:cf:e0:d1:4b:
5c:cd:5b:55:f1:44:37:09:52:38:cf:4f:ba:1e:12:07:6e:2b:
0c:d9:a1:74:6a:72:cb:25:2b:5b:a7:7e:e0:14:72:20:7c:44:
67:a5:d4:39:36:53:d1:22:d8:eb:56:c3:5e:d4:7b:a3:11:17:
ef:1f:63:bd:50:7c:28:f5:1a:20:af:c0:48:bf:ca:9e:33:3d:
7f:19:f6:84:7c:e3:43:24:31:47:d4:cc:54:3f:81:da:d8:33:
3e:c3:1f:b9:f8:b0:a2:e8:06:4a:e9:2c:0a:eb:05:82:71:98:
f7:14:05:d3:0b:0c:e4:36:b4:cf:0f:88:67:ce:e5:68:6d:2c:
04:d0:03:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:32 2024 by rpki-client on console-ams.rpki-client.org