Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/LurlPP9CqIb-GTBCOQulsRmsrxo.roa
File: LurlPP9CqIb-GTBCOQulsRmsrxo.roa (raw, json)
Hash identifier: pyEwtmZ3Mg91puwDM8OApbVtTLOKid6zokASDPPIIeE=
Subject key identifier: 2E:EA:E5:3C:FF:42:A8:86:FE:19:30:42:39:0B:A5:B1:19:AC:AF:1A
Certificate issuer: /CN=b17d969208e19f2fcb9d0ce0be8f72995081d6b7
Certificate serial: 01856D54177BB3B547D99FBD42BBBF71CF02
Authority key identifier: B1:7D:96:92:08:E1:9F:2F:CB:9D:0C:E0:BE:8F:72:99:50:81:D6:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sX2Wkgjhny_LnQzgvo9ymVCB1rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/LurlPP9CqIb-GTBCOQulsRmsrxo.roa
Signing time: Sun 01 Jan 2023 12:35:05 +0000
ROA not before: Sun 01 Jan 2023 12:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34412
IP address blocks: 62.204.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:17:7b:b3:b5:47:d9:9f:bd:42:bb:bf:71:cf:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b17d969208e19f2fcb9d0ce0be8f72995081d6b7
Validity
Not Before: Jan 1 12:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eeae53cff42a886fe193042390ba5b119acaf1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1f:c5:26:7e:75:56:a1:63:0c:dd:2d:78:01:
1a:a7:9d:b0:51:57:52:34:b3:ec:37:cc:16:c3:58:
5f:45:46:a6:c2:11:20:df:fb:36:b5:86:c9:bd:f9:
da:e1:e4:c6:56:8a:1c:40:a3:bd:57:19:ff:d6:9c:
58:f2:40:c0:37:da:07:97:b6:31:1d:91:5a:e3:08:
73:bd:36:00:7d:e7:e7:45:55:b2:d1:0c:fa:19:d0:
f0:16:65:88:3c:9e:66:51:11:e8:77:88:16:37:b5:
f1:39:0a:5b:3c:74:3f:52:d6:e2:a5:b7:0a:c1:34:
c3:c6:6d:ea:c7:9e:e1:12:3c:73:b9:5c:8a:a9:b1:
f9:4c:f8:aa:67:3d:6c:ea:04:0f:fa:cd:b4:e5:48:
89:24:ae:0e:de:95:22:0b:52:93:b4:7a:a3:cd:12:
79:85:f6:c8:d1:f8:dc:22:e1:62:69:4e:94:66:47:
8e:71:64:61:07:75:32:54:6e:0a:6c:61:2b:2e:1f:
e4:ab:29:0d:29:51:5b:78:34:0d:6f:77:58:cf:cc:
4c:76:26:cd:1c:52:e5:ab:c2:ea:4e:49:e2:20:3e:
0c:15:b6:1c:55:47:c6:23:18:c8:98:c9:f8:96:5b:
ad:db:4c:ce:65:86:24:3e:6e:b6:ce:67:9f:dc:f2:
9b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EA:E5:3C:FF:42:A8:86:FE:19:30:42:39:0B:A5:B1:19:AC:AF:1A
X509v3 Authority Key Identifier:
keyid:B1:7D:96:92:08:E1:9F:2F:CB:9D:0C:E0:BE:8F:72:99:50:81:D6:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sX2Wkgjhny_LnQzgvo9ymVCB1rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/LurlPP9CqIb-GTBCOQulsRmsrxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0bd823-a81f-4824-9f5d-fcca19c3f635/1/sX2Wkgjhny_LnQzgvo9ymVCB1rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.61.0/24
Signature Algorithm: sha256WithRSAEncryption
92:57:3a:5a:3c:e4:fa:f7:d2:82:88:de:e5:1a:25:96:cc:2c:
ab:4c:85:84:04:9b:f7:32:a6:36:4b:39:48:b8:1e:92:af:ce:
5c:11:90:00:e6:25:99:27:98:10:18:02:11:21:db:bd:9f:71:
97:41:c0:ad:81:de:04:29:fc:9e:20:fa:9b:c6:a5:c4:a0:5e:
80:92:f0:f6:23:52:45:70:0f:36:fc:10:43:3b:c0:35:67:81:
a4:2a:26:f5:ee:72:c0:93:aa:34:80:72:3b:ce:73:9b:0f:a7:
e4:c5:03:c1:5e:a2:1a:62:8e:0a:7d:8e:22:09:c1:57:24:84:
2b:89:a5:47:59:1c:ea:20:28:f2:cb:39:7b:21:93:91:30:ec:
85:6b:d3:d6:b7:7f:ca:ff:10:84:07:ef:11:92:b9:fa:42:e2:
ec:ce:da:0d:8d:41:ea:83:a5:7d:ff:17:ed:9c:ad:23:12:15:
c3:68:cd:d3:8b:c4:59:80:eb:35:4f:9f:83:a1:89:4e:95:ba:
04:a8:38:b4:df:94:83:b8:ec:9d:da:64:8d:3f:26:d5:a4:ad:
8c:46:0e:17:8c:6c:ca:67:00:4d:bd:5c:bb:b4:8b:65:c3:4f:
90:44:50:c2:c1:2a:73:8f:ca:0f:67:8e:df:03:76:c6:d8:37:
bd:85:b2:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtVBd7s7VH2Z+9Qru/cc8CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxN2Q5NjkyMDhlMTlmMmZjYjlkMGNlMGJlOGY3Mjk5NTA4
MWQ2YjcwHhcNMjMwMTAxMTIzNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWVhZTUzY2ZmNDJhODg2ZmUxOTMwNDIzOTBiYTViMTE5YWNhZjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4R/FJn51VqFjDN0teAEap52wUVdS
NLPsN8wWw1hfRUamwhEg3/s2tYbJvfna4eTGVoocQKO9Vxn/1pxY8kDAN9oHl7Yx
HZFa4whzvTYAfefnRVWy0Qz6GdDwFmWIPJ5mURHod4gWN7XxOQpbPHQ/UtbipbcK
wTTDxm3qx57hEjxzuVyKqbH5TPiqZz1s6gQP+s205UiJJK4O3pUiC1KTtHqjzRJ5
hfbI0fjcIuFiaU6UZkeOcWRhB3UyVG4KbGErLh/kqykNKVFbeDQNb3dYz8xMdibN
HFLlq8LqTkniID4MFbYcVUfGIxjImMn4llut20zOZYYkPm62zmef3PKbiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC7q5Tz/QqiG/hkwQjkLpbEZrK8aMB8GA1UdIwQY
MBaAFLF9lpII4Z8vy50M4L6PcplQgda3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1gyV2tnamhueV9MblF6Z3ZvOXltVkNCMXJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8wYmQ4MjMtYTgxZi00ODI0LTlmNWQt
ZmNjYTE5YzNmNjM1LzEvTHVybFBQOUNxSWItR1RCQ09RdWxzUm1zcnhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8wYmQ4MjMtYTgxZi00ODI0LTlmNWQtZmNjYTE5YzNmNjM1
LzEvc1gyV2tnamhueV9MblF6Z3ZvOXltVkNCMXJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPsw9MA0G
CSqGSIb3DQEBCwUAA4IBAQCSVzpaPOT699KCiN7lGiWWzCyrTIWEBJv3MqY2SzlI
uB6Sr85cEZAA5iWZJ5gQGAIRIdu9n3GXQcCtgd4EKfyeIPqbxqXEoF6AkvD2I1JF
cA82/BBDO8A1Z4GkKib17nLAk6o0gHI7znObD6fkxQPBXqIaYo4KfY4iCcFXJIQr
iaVHWRzqICjyyzl7IZORMOyFa9PWt3/K/xCEB+8Rkrn6QuLsztoNjUHqg6V9/xft
nK0jEhXDaM3Ti8RZgOs1T5+DoYlOlboEqDi035SDuOyd2mSNPybVpK2MRg4XjGzK
ZwBNvVy7tItlw0+QRFDCwSpzj8oPZ47fA3bG2De9hbI5
-----END CERTIFICATE-----
Generated at Tue Nov 21 11:06:46 2023 by rpki-client on console-fra.rpki-client.org