Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a64edb-4ff0-4d5c-b153-75752a205a0f/1/nnrXhNLHLDNyPT-bTUqmHFmK4I4.roa
File: nnrXhNLHLDNyPT-bTUqmHFmK4I4.roa (raw, json)
Hash identifier: EDEx0uIeIH+hD9yMzgLgGIf1GmOFOhhlqb20zDA2Cws=
Subject key identifier: 9E:7A:D7:84:D2:C7:2C:33:72:3D:3F:9B:4D:4A:A6:1C:59:8A:E0:8E
Certificate issuer: /CN=cdbadc4938878971f916dc26093e5b17199e81df
Certificate serial: 018572BA74BE90E5B7C45A471386EBDB6468
Authority key identifier: CD:BA:DC:49:38:87:89:71:F9:16:DC:26:09:3E:5B:17:19:9E:81:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbrcSTiHiXH5FtwmCT5bFxmegd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a64edb-4ff0-4d5c-b153-75752a205a0f/1/nnrXhNLHLDNyPT-bTUqmHFmK4I4.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 62.204.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:74:be:90:e5:b7:c4:5a:47:13:86:eb:db:64:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdbadc4938878971f916dc26093e5b17199e81df
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e7ad784d2c72c33723d3f9b4d4aa61c598ae08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a6:df:09:cb:c5:bf:b9:4d:e4:dc:08:de:84:
01:bd:7d:5f:7c:d9:59:2a:73:92:4b:cf:8f:fc:98:
46:c7:be:cd:ce:9d:33:6d:22:ce:21:d9:43:2f:ba:
dd:e9:50:16:82:44:f7:41:dd:85:84:b9:e5:02:d2:
17:bd:f6:68:fd:ca:6d:4c:15:78:73:87:68:f0:4e:
21:18:f3:e5:5b:66:6c:d6:57:ae:49:c3:04:e2:d3:
c1:8e:3f:0f:9b:e3:5d:ce:7a:d6:a8:6e:25:f6:b3:
b4:ab:a8:41:9a:17:bf:a0:d6:00:f0:7c:38:f7:50:
50:27:9f:d4:cc:cf:09:50:42:b6:be:3c:af:c2:53:
66:d5:93:c2:d0:20:5a:e1:d8:a5:58:e4:bd:58:f6:
e5:6c:ff:77:07:ba:14:83:d3:23:cb:22:95:6f:0d:
ac:95:85:84:89:4b:11:df:2f:8f:4a:00:cc:ed:2f:
78:6a:13:4f:d5:fd:8a:a6:35:db:bd:ec:38:ab:9c:
2b:3c:15:8a:f3:74:a1:2e:09:4a:73:3b:47:1a:0b:
a3:c9:ac:a4:5c:79:df:fa:a7:56:7f:12:b1:20:00:
8c:e6:8e:b3:61:22:ce:b5:43:b1:5f:c7:0e:36:f4:
7a:cc:3f:21:54:46:d8:be:2f:63:13:4e:e4:00:b5:
d2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7A:D7:84:D2:C7:2C:33:72:3D:3F:9B:4D:4A:A6:1C:59:8A:E0:8E
X509v3 Authority Key Identifier:
keyid:CD:BA:DC:49:38:87:89:71:F9:16:DC:26:09:3E:5B:17:19:9E:81:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbrcSTiHiXH5FtwmCT5bFxmegd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a64edb-4ff0-4d5c-b153-75752a205a0f/1/nnrXhNLHLDNyPT-bTUqmHFmK4I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a64edb-4ff0-4d5c-b153-75752a205a0f/1/zbrcSTiHiXH5FtwmCT5bFxmegd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:df:02:24:3a:19:8a:ea:48:eb:2e:76:8e:3b:53:75:35:69:
3f:3c:13:1d:c4:78:42:a8:cf:99:15:e0:98:8c:67:e1:cf:70:
0a:bd:68:44:c8:d5:f9:23:51:6e:2a:8d:2c:9a:de:81:b4:67:
dc:33:7c:fc:45:49:ff:c1:5c:e7:1a:a6:cc:e8:8c:47:16:65:
81:e9:ce:58:e1:3d:75:05:30:83:ee:f6:47:cc:02:05:4c:b9:
c8:39:22:46:f0:ef:0c:b7:f0:fd:58:ce:21:16:18:0c:7c:11:
33:e1:c0:4c:ce:bd:62:7b:4f:15:5d:88:3e:b9:9c:26:68:33:
45:33:4b:a2:02:d8:fa:d3:f1:12:97:3d:ef:c2:39:cf:5b:dc:
66:bc:11:36:f2:d6:98:38:5d:5c:e3:3f:fd:e1:7e:92:41:12:
d0:44:78:9f:3d:df:9e:69:15:5e:47:07:48:55:99:c6:6d:2e:
3c:63:db:31:ae:dd:2b:16:ed:d1:03:cb:40:66:48:37:cf:29:
e7:35:45:4c:9c:cd:c0:5a:4a:47:da:3d:79:27:96:1d:f1:90:
a3:8f:40:aa:fc:f0:b0:59:09:e5:43:77:a0:83:af:56:0f:83:
58:4c:16:ba:69:4e:fb:84:5b:0b:c3:0b:4a:aa:f3:44:40:9b:
62:9f:12:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:37 2025 by rpki-client