Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/ZGtRDITeW-mbgy7G2qcPjD8a7t8.roa
File: ZGtRDITeW-mbgy7G2qcPjD8a7t8.roa (raw, json)
Hash identifier: M/3uHVbZRElsYsF6D4rGFbGYc1JKPgqxVgfZsl2k6KM=
Subject key identifier: 64:6B:51:0C:84:DE:5B:E9:9B:83:2E:C6:DA:A7:0F:8C:3F:1A:EE:DF
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: 0184BEDCC8E50A69B0611F48ABA2AEFEB53E
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/ZGtRDITeW-mbgy7G2qcPjD8a7t8.roa
Signing time: Mon 28 Nov 2022 15:30:51 +0000
ROA not before: Mon 28 Nov 2022 15:30:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:dc:c8:e5:0a:69:b0:61:1f:48:ab:a2:ae:fe:b5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: Nov 28 15:30:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=646b510c84de5be99b832ec6daa70f8c3f1aeedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:80:4f:cf:cf:3e:d4:bc:cd:4f:25:f4:cd:c1:
d3:1a:8c:8c:b3:f7:b9:e6:75:74:29:1e:b1:f9:39:
6c:6d:a9:8d:14:20:a2:99:bf:ae:c7:a7:7a:74:d8:
d1:fc:a3:23:fa:ae:67:a2:fa:f3:53:37:2a:cd:dd:
f2:f6:bb:19:77:5b:5b:a8:72:23:2b:b1:e4:76:47:
24:fa:9c:2e:c2:b8:05:2b:b2:41:a6:39:31:42:b2:
cf:25:29:ed:62:ee:fd:7f:25:41:3e:04:d7:ce:54:
b2:14:13:ee:c2:73:38:aa:0c:74:1e:4a:ff:85:a4:
41:d4:c9:44:28:c7:30:1d:e0:b1:0c:11:89:c1:c0:
c2:81:ad:28:3d:3f:d4:31:f9:fe:3a:bf:31:a4:69:
d2:f5:65:88:6d:b3:99:e1:23:2b:17:79:7b:c1:48:
69:0a:0b:b6:0f:af:bc:19:cb:6b:94:76:3c:14:9f:
54:83:f3:a4:f9:09:8c:5f:5b:d1:9c:91:08:d5:41:
fd:98:ac:6c:00:3e:b1:7b:35:87:a2:44:16:34:7f:
2d:07:40:e6:e1:4b:48:8e:df:a3:89:02:b0:20:0b:
b3:93:6a:e2:2b:dd:98:b8:89:5e:58:77:fa:7e:d0:
23:41:f4:9c:1f:c6:7d:ed:86:9b:e0:2e:d8:b4:41:
ac:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:6B:51:0C:84:DE:5B:E9:9B:83:2E:C6:DA:A7:0F:8C:3F:1A:EE:DF
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/ZGtRDITeW-mbgy7G2qcPjD8a7t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7d:b5:86:aa:69:77:48:c4:f5:ae:eb:6f:b9:fb:15:d4:3d:
cb:e7:40:d0:98:03:ea:47:42:99:e0:7c:31:18:ec:6d:8e:c1:
49:d8:29:79:0b:57:69:3f:99:ae:c7:71:e1:03:74:1f:6b:8d:
11:ef:4c:3f:e3:30:c3:fb:c9:0a:da:da:79:60:44:b2:56:6e:
d1:0d:c2:90:1d:cd:42:98:bd:38:f9:e2:8c:f6:c7:8a:73:13:
43:43:81:e5:72:af:2d:45:d6:b6:29:b3:d1:07:17:d3:00:54:
57:38:9d:62:67:de:fb:38:c3:e5:d1:21:5f:2b:e6:08:e3:26:
e8:a7:c9:f4:51:d1:25:47:d7:a8:f2:e6:8d:65:1c:66:4f:60:
84:63:7b:24:59:90:94:aa:5c:31:3a:a6:b2:5b:32:a9:6a:bd:
8d:15:04:39:3e:be:c1:0e:b1:b4:63:ee:27:30:52:a4:12:0e:
dc:62:0c:58:b3:76:6b:65:3b:d1:9b:7a:01:11:95:af:dc:a6:
7a:2d:fc:ce:be:4d:64:75:bb:1d:42:83:58:c6:6a:66:29:55:
a7:8c:13:c0:82:7e:ee:e9:37:2a:20:90:52:01:02:88:91:61:
08:14:23:ca:ae:68:3a:00:c1:06:eb:8a:c6:6a:8a:9f:aa:bf:
eb:f7:77:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:53:01 2025 by rpki-client