Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/20bf41-7f20-48f7-8609-517a6505dcb4/1/g3yYvqMCtcag2XKaZ3iQsxlqYR4.roa
File: g3yYvqMCtcag2XKaZ3iQsxlqYR4.roa (raw, json)
Hash identifier: PdWd6sjKkHkpOwuglSArKd4+g2md9Bb2a16QJT52VzY=
Subject key identifier: 83:7C:98:BE:A3:02:B5:C6:A0:D9:72:9A:67:78:90:B3:19:6A:61:1E
Certificate issuer: /CN=abc85b9a18400b845152ae2fbd28e859863e2f7e
Certificate serial: 018CC8715CCEE7E3FE04BAF72E20E9C065B8
Authority key identifier: AB:C8:5B:9A:18:40:0B:84:51:52:AE:2F:BD:28:E8:59:86:3E:2F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8hbmhhAC4RRUq4vvSjoWYY-L34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/20bf41-7f20-48f7-8609-517a6505dcb4/1/g3yYvqMCtcag2XKaZ3iQsxlqYR4.roa
Signing time: Tue 02 Jan 2024 04:32:01 +0000
ROA not before: Tue 02 Jan 2024 04:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 62.68.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:5c:ce:e7:e3:fe:04:ba:f7:2e:20:e9:c0:65:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc85b9a18400b845152ae2fbd28e859863e2f7e
Validity
Not Before: Jan 2 04:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=837c98bea302b5c6a0d9729a677890b3196a611e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:05:8a:8e:2c:28:0a:c2:ce:fa:bc:2c:93:b0:
73:9e:78:b8:7e:e5:98:ed:c1:bc:d1:0a:e3:30:d2:
d2:64:4e:5b:8c:87:a1:40:9d:fe:06:7e:ad:55:7f:
88:49:23:3b:9c:f9:06:d2:4c:ee:a0:7a:5b:bd:af:
ad:d3:a9:39:c6:4d:c1:bb:82:0e:1c:90:cb:ba:0b:
60:81:07:27:04:19:ae:ba:0a:bc:36:3a:4e:5d:cb:
dd:85:0c:de:56:d2:bc:aa:01:6f:61:45:b8:7d:78:
57:fc:38:4b:25:3f:7d:23:b1:fd:7e:6f:a1:13:a0:
8b:f8:bb:4e:32:b7:74:96:68:ad:8b:4b:46:50:6e:
7b:58:21:7a:0c:6e:f4:6a:14:68:db:b0:a0:2b:76:
70:e8:fd:c6:b6:ff:95:d7:ad:a1:fd:28:cc:5f:b0:
ef:9b:e5:92:27:39:65:cf:0c:4b:ba:54:96:e2:1d:
31:f8:d4:70:bb:71:1a:b9:5c:b7:1b:f7:ab:7f:b3:
90:0e:6a:1f:8f:35:65:5e:f2:f9:36:ac:24:80:bb:
b2:45:d4:e5:31:ea:d7:55:93:d6:f1:cb:c8:c2:e5:
aa:e7:44:84:10:6b:51:f2:a5:94:20:38:f9:1e:34:
83:02:86:6b:62:e6:df:6d:5f:02:b1:bb:39:e0:84:
44:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7C:98:BE:A3:02:B5:C6:A0:D9:72:9A:67:78:90:B3:19:6A:61:1E
X509v3 Authority Key Identifier:
keyid:AB:C8:5B:9A:18:40:0B:84:51:52:AE:2F:BD:28:E8:59:86:3E:2F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8hbmhhAC4RRUq4vvSjoWYY-L34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/20bf41-7f20-48f7-8609-517a6505dcb4/1/g3yYvqMCtcag2XKaZ3iQsxlqYR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/20bf41-7f20-48f7-8609-517a6505dcb4/1/q8hbmhhAC4RRUq4vvSjoWYY-L34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.89.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:02:0f:09:78:39:8d:68:f9:d3:be:97:d6:72:a8:43:ce:3f:
be:39:7b:48:85:66:63:06:84:13:85:ab:3d:55:08:e9:c8:f2:
39:69:33:87:fe:75:1d:0e:3b:52:98:3b:6a:54:27:37:67:51:
ca:03:fe:95:a8:9d:24:b9:e6:3e:ee:ba:14:f6:72:50:7f:cf:
17:71:b0:ca:cb:41:1e:36:6f:15:11:7d:00:9e:aa:8d:5e:24:
7b:31:0f:28:69:00:32:c5:a7:b5:fa:8c:b0:96:a4:b8:5f:b1:
dd:cf:3f:0a:4d:52:aa:29:40:86:95:82:a0:2d:ea:74:41:4e:
9a:61:ab:8e:43:9e:12:28:48:c4:cc:85:86:ac:df:5f:f1:15:
24:5f:14:ae:19:dd:70:be:63:26:b1:9b:41:5d:40:c4:24:9d:
5c:2e:fe:c8:06:26:c5:42:5f:d0:0b:8a:06:e8:51:51:23:1c:
dc:c1:6b:6f:ab:fc:77:bc:da:4d:a8:55:b6:df:2d:38:c2:d8:
d8:c7:a7:be:06:f7:6d:ce:4a:f7:a2:d5:1c:4b:5e:bb:72:f0:
f9:97:44:69:27:c1:25:48:2b:b8:cc:f8:0b:1d:b6:85:00:fb:
a8:37:d5:ac:d5:13:9e:17:b3:90:72:64:ec:dd:4a:ba:f9:22:
ea:bc:14:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:20 2024 by rpki-client on console-fra.rpki-client.org