Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/0UgI6Xj1TZ1B2eUsvewE01vpIoY.roa
File: 0UgI6Xj1TZ1B2eUsvewE01vpIoY.roa (raw, json)
Hash identifier: 7/hhgebKA7KxsSyIKlRCTipE9pwKikcvqVeUsZetwJI=
Subject key identifier: D1:48:08:E9:78:F5:4D:9D:41:D9:E5:2C:BD:EC:04:D3:5B:E9:22:86
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: AB228D
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/0UgI6Xj1TZ1B2eUsvewE01vpIoY.roa
Signing time: Sat 01 Jan 2022 09:57:00 +0000
ROA not before: Sat 01 Jan 2022 09:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11215501 (0xab228d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: Jan 1 09:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d14808e978f54d9d41d9e52cbdec04d35be92286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:29:cd:78:7f:6f:a7:7e:83:e3:69:fd:41:00:
33:31:de:42:89:95:06:e0:16:a9:fd:e4:ba:26:7d:
d4:ab:ae:13:78:7b:7b:c1:fa:d2:55:7b:47:a1:5e:
d6:83:44:16:d6:fb:7b:09:88:2f:88:b3:4b:5b:ca:
61:c4:72:d9:4a:7f:0b:49:65:d8:c7:5b:4b:18:9b:
29:e6:dc:7b:24:1d:d2:14:2e:81:2f:7d:ff:bd:55:
bc:bf:69:35:20:15:e5:d0:d6:93:3b:54:e6:8c:73:
2b:66:32:b0:83:6c:67:e5:2d:37:1d:2a:18:de:5e:
3c:73:b7:0e:2a:b6:8b:b1:92:07:db:95:5f:41:fb:
37:de:7f:24:c6:ce:f7:c5:b9:2a:60:66:8c:d0:98:
a4:7f:5d:6a:ae:1c:42:1c:8d:75:cb:97:03:00:a6:
60:4a:33:97:30:7d:d7:58:14:49:67:df:b1:96:60:
32:44:9f:05:55:ce:ed:70:98:8a:98:32:b3:7c:78:
fa:1e:b3:bf:c7:5e:c4:65:93:7e:a1:ee:26:4c:10:
fe:c9:75:ef:c9:74:93:30:60:59:93:af:fa:84:5f:
47:af:72:2f:53:c4:28:03:9b:52:06:8a:b4:3a:c1:
2c:0f:32:24:9f:91:14:7f:d2:e8:5a:c5:12:4f:10:
35:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:48:08:E9:78:F5:4D:9D:41:D9:E5:2C:BD:EC:04:D3:5B:E9:22:86
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/0UgI6Xj1TZ1B2eUsvewE01vpIoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a1:d6:30:20:eb:24:97:cd:5b:6b:09:09:4b:2a:19:9f:87:
be:d4:41:ae:f5:5b:8f:1a:aa:ea:0d:61:6b:ef:1b:e0:1f:3c:
f5:10:34:71:f7:b9:79:1b:b3:5e:65:ff:d2:d1:9c:6e:c1:1c:
55:9b:7b:49:07:39:72:2a:2f:e2:3e:01:d2:87:97:41:87:ce:
05:3e:45:2e:f3:0e:9a:22:cd:3a:1e:80:d6:8b:64:82:85:c2:
67:e0:82:3d:05:93:68:86:6b:2b:1b:b7:60:e9:ae:5d:1e:2a:
14:86:2b:57:2e:d5:dc:a7:fd:e8:8e:d5:c4:d2:44:fe:89:21:
4a:1f:87:42:95:a2:95:11:51:b0:0f:55:7e:d9:65:11:aa:ed:
d3:2a:07:58:01:3b:eb:70:56:6d:4a:67:c8:78:6b:ce:95:7e:
7b:6d:c1:25:c6:0e:c1:9f:a1:d6:26:5b:90:c1:a1:f7:9e:33:
a1:ce:97:a7:1a:1f:a6:fe:e3:c8:8e:7a:f5:e0:c6:81:02:e6:
a7:ac:11:e9:7b:96:c0:7c:dc:5f:ab:0d:48:cd:f0:22:d5:73:
24:cc:a5:cc:a3:bc:3a:e1:82:bb:92:8f:3c:87:c2:f2:84:65:
b8:36:03:cc:cd:1e:f8:ba:ad:9c:fa:f7:bb:6d:ff:b9:c1:f8:
4e:79:ca:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:33 2025 by rpki-client