Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/PHApMklLVi60iRZpZownn-1ctto.roa
File: PHApMklLVi60iRZpZownn-1ctto.roa (raw, json)
Hash identifier: cNivT1eRjHFcnI5q2rxJOkjxuGG3T0Tz/XU/ka58Fwc=
Subject key identifier: 3C:70:29:32:49:4B:56:2E:B4:89:16:69:66:8C:27:9F:ED:5C:B6:DA
Certificate issuer: /CN=4366c43872731a268bf5c963ddf661774ef9cae1
Certificate serial: 018CC9BC7B9994DD10D1780DACC23CD828FC
Authority key identifier: 43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2bEOHJzGiaL9clj3fZhd075yuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/PHApMklLVi60iRZpZownn-1ctto.roa
Signing time: Tue 02 Jan 2024 10:33:41 +0000
ROA not before: Tue 02 Jan 2024 10:33:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 62.68.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:7b:99:94:dd:10:d1:78:0d:ac:c2:3c:d8:28:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4366c43872731a268bf5c963ddf661774ef9cae1
Validity
Not Before: Jan 2 10:33:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c702932494b562eb4891669668c279fed5cb6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:59:d9:51:bc:f8:7b:22:98:4c:fd:4d:2f:cd:
73:61:7a:7a:70:d0:35:b7:99:b9:a1:b7:67:5e:14:
09:42:f4:3f:d2:d8:0c:23:c9:3d:82:67:3d:6c:57:
60:11:19:4c:86:21:02:c7:1e:50:1b:f7:9d:a3:54:
bd:ae:73:7a:dc:58:c0:99:ce:f4:c9:50:5e:af:f3:
fa:19:4d:71:aa:d4:87:84:07:55:35:12:60:42:ab:
a9:e4:f3:04:9d:9d:b4:4b:18:7e:86:3d:97:8f:29:
75:86:97:a4:75:88:2d:24:94:45:bf:5a:c8:b4:06:
38:da:a1:3d:56:f4:11:6e:99:77:cd:22:bd:d4:19:
93:14:14:db:d7:1c:73:67:68:51:c2:51:e8:16:d1:
06:4d:5a:9d:14:6a:3d:66:e2:5b:3c:e4:27:69:cc:
4e:03:d7:2e:5f:c3:f4:c3:30:78:83:47:bb:87:a1:
15:39:1b:c2:fa:29:a3:36:ad:e0:ec:52:c4:68:19:
a0:7b:b4:f2:26:78:fc:24:1e:25:ff:92:ce:c5:08:
de:ad:fb:4f:05:16:1a:b3:75:fe:f6:cf:6d:61:e6:
01:2a:a6:12:ee:16:f6:19:44:7d:2c:57:d1:b6:b8:
07:31:98:d5:ed:61:8d:ff:75:bc:2d:d5:26:6f:28:
59:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:70:29:32:49:4B:56:2E:B4:89:16:69:66:8C:27:9F:ED:5C:B6:DA
X509v3 Authority Key Identifier:
keyid:43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2bEOHJzGiaL9clj3fZhd075yuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/PHApMklLVi60iRZpZownn-1ctto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ab:41:12:ca:73:28:7e:9d:86:6b:09:b9:e0:27:50:39:12:
ad:98:34:85:c3:f4:e2:94:75:59:93:8a:81:94:fb:2c:18:9b:
af:a6:73:a4:f0:ba:5f:af:af:39:ba:20:ed:fc:35:3c:31:e5:
61:24:38:c2:d1:af:b5:3e:66:72:46:f7:d1:f0:49:63:b1:eb:
a4:c8:f3:71:b8:f2:a3:5d:02:79:38:e2:39:31:5d:28:8f:fd:
a2:c7:fb:20:44:6a:55:2d:0a:1f:f2:72:41:85:84:dc:3e:aa:
79:04:8d:b4:fc:d2:6f:42:aa:79:2f:59:79:98:c9:7e:44:2d:
c0:33:fb:36:d3:b3:4a:65:b5:ad:a0:70:c8:9c:8e:76:c3:a0:
74:bf:67:59:58:27:b8:da:88:ef:4c:78:d4:7f:18:ba:6f:2d:
9b:ee:c1:f5:0b:c4:ee:59:8a:f5:eb:2a:d9:6b:6e:3e:f7:6b:
da:a9:db:16:02:77:6a:7b:26:3e:ee:08:32:70:8a:8d:92:38:
87:75:67:ae:29:f8:3f:66:df:00:a0:8d:90:bc:81:ff:5e:51:
a3:1b:00:3a:ad:6d:2d:8d:ba:38:1d:2b:64:6c:53:a2:3b:24:
60:1f:1b:48:4e:7d:74:5b:33:61:4f:a6:89:b1:2a:42:72:a6:
e6:6d:35:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:38 2024 by rpki-client on console-fra.rpki-client.org