Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/b3b4bb-20f5-48ad-a61b-fe8e5e0bfa0f/1/QU70CmEhQYRNQhcRFSnbOP6aq60.roa
File: QU70CmEhQYRNQhcRFSnbOP6aq60.roa (raw, json)
Hash identifier: xATn4J9Fh6ziNUVbsAwqOrroSJs5FdAPeYSmJYczGhE=
Subject key identifier: 41:4E:F4:0A:61:21:41:84:4D:42:17:11:15:29:DB:38:FE:9A:AB:AD
Certificate issuer: /CN=083996c6f2e7a38871f8c001f4f8ba4a705e8799
Certificate serial: 1160D2FF
Authority key identifier: 08:39:96:C6:F2:E7:A3:88:71:F8:C0:01:F4:F8:BA:4A:70:5E:87:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmWxvLno4hx-MAB9Pi6SnBeh5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/b3b4bb-20f5-48ad-a61b-fe8e5e0bfa0f/1/QU70CmEhQYRNQhcRFSnbOP6aq60.roa
Signing time: Tue 21 Jun 2022 13:17:59 +0000
ROA not before: Tue 21 Jun 2022 13:17:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12713
IP address blocks: 62.75.58.0/24 maxlen: 24
62.75.54.0/24 maxlen: 24
62.75.64.0/24 maxlen: 24
62.75.62.0/24 maxlen: 24
62.75.69.0/24 maxlen: 24
62.75.3.0/24 maxlen: 24
62.75.1.0/24 maxlen: 24
62.75.2.0/24 maxlen: 24
62.75.10.0/24 maxlen: 24
62.75.8.0/24 maxlen: 24
62.75.15.0/24 maxlen: 24
62.75.16.0/23 maxlen: 23
62.75.13.0/24 maxlen: 24
62.75.24.0/23 maxlen: 23
62.75.22.0/24 maxlen: 24
62.75.23.0/24 maxlen: 24
62.75.20.0/24 maxlen: 24
62.75.21.0/24 maxlen: 24
62.75.18.0/23 maxlen: 23
62.75.107.0/24 maxlen: 24
62.75.108.0/24 maxlen: 24
2a00:1cb8:1::/48 maxlen: 48
2a00:1cb8:2:3::/64 maxlen: 64
2a00:1cb8:2:8::/64 maxlen: 64
2a00:1cb8:2:d::/64 maxlen: 64
2a00:1cb8:2:a::/64 maxlen: 64
2a00:1cb8:2::/48 maxlen: 48
2a00:1cb8:2:7::/64 maxlen: 64
2a00:1cb8:2:2::/64 maxlen: 64
2a00:1cb8:2:c::/64 maxlen: 64
2a00:1cb8:2000::/35 maxlen: 35
2a00:1cb8:2:6::/64 maxlen: 64
2a00:1cb8:2:b::/64 maxlen: 64
2a00:1cb8:2:1::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291558143 (0x1160d2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=083996c6f2e7a38871f8c001f4f8ba4a705e8799
Validity
Not Before: Jun 21 13:17:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414ef40a612141844d4217111529db38fe9aabad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:81:3b:c0:f1:dc:c4:df:d6:48:42:f5:89:
14:89:ab:96:96:b1:79:6f:d8:86:6f:98:ac:46:53:
be:68:0c:4e:29:de:d2:ed:d1:4f:f8:eb:ea:44:eb:
78:88:bd:29:c1:0d:24:fd:64:db:e3:55:03:f2:b8:
36:a5:e3:10:cd:e7:70:f6:73:91:49:b6:39:58:e5:
36:7f:a0:39:39:e5:d3:3b:ad:d3:2e:f3:dd:7c:96:
69:b7:b1:1d:fc:a7:1c:8b:0a:7f:83:11:97:52:59:
a6:15:ee:1f:c3:c4:56:9b:0e:81:77:6f:1c:2f:48:
70:79:b3:4e:10:97:d8:10:61:88:a5:17:4d:61:9d:
c0:4d:84:45:71:c5:e5:07:0a:67:a0:ca:39:8b:ee:
5d:ff:fc:c7:d0:4f:6d:ec:75:f3:ce:6c:e9:b6:84:
24:a7:d7:89:2f:f1:15:a6:d1:42:33:96:77:97:fe:
27:da:5c:8d:e6:bd:a1:69:54:b3:8d:26:6b:e0:18:
8a:fb:da:86:b3:f8:0d:75:8d:06:47:7c:ce:8c:2b:
c3:64:24:40:c7:6c:37:1c:42:86:13:e9:8c:39:79:
ea:d0:4b:cf:8c:9b:b0:44:fd:7a:83:1f:68:5a:e7:
35:1f:e6:41:6e:05:c6:78:61:ba:20:15:d7:e1:3b:
31:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4E:F4:0A:61:21:41:84:4D:42:17:11:15:29:DB:38:FE:9A:AB:AD
X509v3 Authority Key Identifier:
keyid:08:39:96:C6:F2:E7:A3:88:71:F8:C0:01:F4:F8:BA:4A:70:5E:87:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmWxvLno4hx-MAB9Pi6SnBeh5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b3b4bb-20f5-48ad-a61b-fe8e5e0bfa0f/1/QU70CmEhQYRNQhcRFSnbOP6aq60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b3b4bb-20f5-48ad-a61b-fe8e5e0bfa0f/1/CDmWxvLno4hx-MAB9Pi6SnBeh5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.75.1.0-62.75.3.255
62.75.8.0/24
62.75.10.0/24
62.75.13.0/24
62.75.15.0-62.75.25.255
62.75.54.0/24
62.75.58.0/24
62.75.62.0/24
62.75.64.0/24
62.75.69.0/24
62.75.107.0-62.75.108.255
IPv6:
2a00:1cb8:1::-2a00:1cb8:2:ffff:ffff:ffff:ffff:ffff
2a00:1cb8:2000::/35
Signature Algorithm: sha256WithRSAEncryption
7c:7a:2d:1f:cc:b5:49:95:60:7e:b6:64:9b:28:32:36:1c:fe:
1d:5d:a5:82:eb:aa:1d:bc:ab:7e:e5:0f:65:2d:0c:7f:64:ba:
b9:23:ee:1f:9c:48:54:f4:b9:20:66:05:8d:b5:d3:05:8c:db:
ed:93:83:ac:c6:fd:51:99:c1:c3:90:eb:00:5d:d2:d2:8a:31:
73:69:10:31:90:18:49:83:48:0f:d9:2f:a0:c0:9b:f3:1a:b1:
3e:43:ef:d6:b9:c0:70:b8:ce:23:ee:3a:af:01:28:36:9c:35:
2e:a1:d9:54:d4:b7:b3:ad:79:7c:98:e0:9a:03:b9:72:e7:2e:
de:16:a3:6a:eb:74:ad:12:62:63:63:1e:2e:3b:5b:92:60:fe:
51:91:1b:70:ec:33:8a:75:d0:98:6e:f4:11:bc:fd:84:b4:90:
c4:a5:13:5b:09:ce:bf:30:0d:f5:03:c3:36:4b:c9:6e:a5:d4:
7d:72:13:df:82:51:c5:bd:e8:fa:74:56:e2:55:6d:ef:83:6d:
cc:c9:56:2e:1f:6b:16:10:0c:ee:f4:cf:e0:c0:1f:34:66:65:
3e:25:03:e6:3a:90:7f:cc:3c:c5:0b:83:6e:27:11:be:90:01:
20:79:4e:e3:ff:9a:56:9a:f8:87:89:ba:72:9d:8a:09:c1:f0:
96:9e:ea:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:20 2023 by rpki-client on console-fra.rpki-client.org