Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/TogS9nHyZGzv1TAvy3-9W8eu5yM.roa
File: TogS9nHyZGzv1TAvy3-9W8eu5yM.roa (raw, json)
Hash identifier: iEFr5JNfXkciatGYHNszIBu/RMDxusElqZ9rJzl5Ot8=
Subject key identifier: 4E:88:12:F6:71:F2:64:6C:EF:D5:30:2F:CB:7F:BD:5B:C7:AE:E7:23
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: 01887A87128BCF53376029A6C97641CC297A
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/TogS9nHyZGzv1TAvy3-9W8eu5yM.roa
Signing time: Fri 02 Jun 2023 05:14:12 +0000
ROA not before: Fri 02 Jun 2023 05:14:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7a:87:12:8b:cf:53:37:60:29:a6:c9:76:41:cc:29:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: Jun 2 05:14:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e8812f671f2646cefd5302fcb7fbd5bc7aee723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2a:70:e3:6f:b7:38:ac:17:fd:37:33:55:30:
00:b9:bb:61:27:c7:08:47:16:7b:f7:7c:d4:1d:b6:
60:30:8b:bb:3d:8c:79:31:9f:f3:53:42:cf:05:33:
a9:38:b8:56:93:51:f8:c8:9b:42:68:a5:dc:b3:1a:
39:54:cd:32:3a:38:1e:a3:3b:31:40:ea:30:7a:fa:
15:98:4b:a7:89:09:78:42:7c:e0:72:be:ed:3f:04:
b6:ba:a2:7a:ea:7c:ac:bf:61:db:04:85:a3:92:e2:
71:8e:65:ad:24:84:77:d1:07:05:f1:3d:99:a2:a4:
48:31:a9:96:57:b9:24:fd:d2:3e:24:fe:6d:70:65:
75:99:90:e7:37:18:1f:1d:f8:cf:57:17:a4:68:00:
18:d7:3a:07:96:26:93:23:d6:56:dc:54:ac:cf:5c:
b4:60:3a:20:c1:6e:0d:26:d7:0e:49:fa:a4:66:3e:
0f:72:58:85:d5:b2:e6:09:28:36:59:ad:3e:21:0b:
30:e8:43:c7:f4:a1:ce:7e:d1:60:d3:31:dd:5a:07:
4c:54:85:17:73:ee:2e:8d:11:38:62:66:f2:fc:d0:
bc:23:46:ba:a4:76:6d:df:ed:70:a5:c6:d1:bf:3a:
04:d7:40:a9:57:c1:b6:41:34:52:ca:2b:0a:03:f5:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:88:12:F6:71:F2:64:6C:EF:D5:30:2F:CB:7F:BD:5B:C7:AE:E7:23
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/TogS9nHyZGzv1TAvy3-9W8eu5yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
96:9d:06:e1:21:e2:33:46:b9:5d:82:71:99:07:33:3e:f2:8c:
04:51:8a:a9:3d:08:da:76:96:7d:30:98:7b:ef:14:cd:26:7a:
d4:a9:af:6e:f7:ff:1d:d5:e3:96:39:b2:4f:2b:3e:63:6f:b5:
79:7f:24:5f:b7:de:10:06:8d:6d:de:08:ac:60:f5:73:9d:55:
71:55:54:fd:bc:42:7f:cc:de:b9:01:73:d0:cf:7a:81:fe:46:
66:29:13:00:be:cc:e9:da:cc:0f:8d:61:96:9c:92:50:bd:96:
60:98:e4:69:ae:25:5b:28:5d:1f:69:b5:a2:19:c7:37:38:da:
93:57:05:44:b3:b4:cf:cf:92:9e:2a:c2:9d:9c:9c:b7:76:b7:
4e:63:58:77:d3:ba:ac:f7:dc:11:0f:4c:72:e7:4d:13:0e:a4:
9f:8d:9f:73:c4:6a:88:ad:48:6c:26:fc:eb:30:b4:c1:12:4e:
22:01:e5:50:4d:5e:c6:7e:58:f3:c3:56:ff:ef:f3:e4:55:b2:
55:c8:ab:73:6f:db:37:5a:ed:36:4c:9f:ea:a9:2a:61:2b:e2:
a5:da:07:35:35:71:e6:65:7b:02:34:9c:71:c1:fe:a6:72:47:
e7:79:61:54:c5:94:ac:7c:7c:b0:ce:c7:9d:e3:aa:8a:ec:16:
ef:4c:25:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:31 2024 by rpki-client on console-ams.rpki-client.org