Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/XfOhFKk0NQWozk0pM3ag2lCEX10.roa
File: XfOhFKk0NQWozk0pM3ag2lCEX10.roa (raw, json)
Hash identifier: epUN7GOOJpjxW7yX1+J+8u2nkPAlUUbiP4ODTyQkwZY=
Subject key identifier: 5D:F3:A1:14:A9:34:35:05:A8:CE:4D:29:33:76:A0:DA:50:84:5F:5D
Certificate issuer: /CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Certificate serial: 018964C0601D907D5D50A755304BC62D42FC
Authority key identifier: AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/XfOhFKk0NQWozk0pM3ag2lCEX10.roa
Signing time: Mon 17 Jul 2023 16:47:56 +0000
ROA not before: Mon 17 Jul 2023 16:47:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 62.106.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:60:1d:90:7d:5d:50:a7:55:30:4b:c6:2d:42:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af203900017653cc4e0dc1b13bea177a0653fb2d
Validity
Not Before: Jul 17 16:47:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5df3a114a9343505a8ce4d293376a0da50845f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:d9:35:72:f0:ad:5e:a6:e4:8c:f8:50:28:
12:84:b7:b6:e8:44:44:35:1f:28:b2:ab:40:f7:f3:
e2:e0:32:c0:24:98:2b:8f:40:eb:a7:8f:4a:85:67:
1a:07:b5:a8:73:9a:2f:2a:1e:e0:28:7b:ce:6e:b9:
a1:59:67:fc:d7:90:20:08:1a:44:61:5a:8f:82:2b:
d3:63:c3:4a:6f:3e:be:ac:b9:97:f5:df:54:bd:23:
ca:8c:cf:38:e7:9a:2d:71:91:a8:84:c3:d0:1d:91:
d5:4d:aa:68:5c:7c:24:ac:20:0f:23:96:8d:40:fa:
03:eb:91:97:a9:6d:b5:1a:63:90:09:e7:1f:9b:37:
71:21:ab:96:da:7a:da:bc:da:e0:aa:2d:84:c4:e0:
82:a1:a8:ec:8f:a5:bc:9e:02:d5:03:cc:a3:fd:b6:
03:59:30:41:d2:40:a7:83:bc:15:7b:89:35:dc:ab:
a2:60:ba:a8:95:70:52:f7:49:fb:07:b6:da:df:40:
77:df:b4:24:81:81:13:dc:64:7e:57:1d:1e:38:e4:
7e:d0:ba:67:3b:8a:65:3a:97:a0:89:92:42:72:f4:
37:28:03:bf:ad:5a:9a:00:76:97:bf:f3:46:82:35:
56:c0:e4:6c:0b:4b:b1:a3:09:66:c7:b1:4a:3a:76:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F3:A1:14:A9:34:35:05:A8:CE:4D:29:33:76:A0:DA:50:84:5F:5D
X509v3 Authority Key Identifier:
keyid:AF:20:39:00:01:76:53:CC:4E:0D:C1:B1:3B:EA:17:7A:06:53:FB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryA5AAF2U8xODcGxO-oXegZT-y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/XfOhFKk0NQWozk0pM3ag2lCEX10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/009445-c9c7-49e5-a8ca-0aaee4f3651b/1/ryA5AAF2U8xODcGxO-oXegZT-y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.69.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ba:1c:fe:03:68:0b:ac:f8:28:f4:1a:62:e7:9d:8e:a2:8e:
1f:b5:05:d3:1a:92:a1:91:c8:ac:63:e3:d4:f0:47:ee:f4:ac:
11:23:28:51:00:50:67:e2:b7:80:44:66:05:a5:5c:ce:81:6f:
91:a6:d2:83:6b:7b:da:d3:52:c2:d7:49:2b:09:05:5c:79:b9:
c9:4a:94:cd:3a:54:b2:f9:39:1f:0f:0d:14:6f:d6:9c:5a:7b:
b5:07:4e:08:fa:fb:16:2c:32:44:ac:0a:23:fe:f9:9d:3d:94:
1f:db:d2:53:bf:e4:65:7a:0a:e1:57:67:61:c4:24:76:60:16:
13:e1:9f:21:78:88:66:63:79:bd:da:ca:54:be:a8:1e:ef:75:
88:2e:b8:e1:41:e4:3d:47:2b:51:1d:72:17:2a:ca:99:a6:68:
04:d1:a2:b3:ad:26:f9:a5:f4:60:26:ff:ce:fb:fe:44:1a:21:
59:4c:86:c7:49:7b:0f:9a:17:3e:53:c0:2c:af:43:a0:f4:6b:
de:b3:81:b1:0e:16:bc:07:6d:b5:dd:12:f1:43:09:16:68:81:
e3:f6:8f:89:aa:ff:00:18:95:d9:77:06:65:8a:ea:16:8e:56:
98:11:31:8b:21:12:e0:5e:cf:7f:dc:5f:2b:7f:14:ca:e9:9c:
62:5e:b4:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwGAdkH1dUKdVMEvGLUL8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMjAzOTAwMDE3NjUzY2M0ZTBkYzFiMTNiZWExNzdhMDY1
M2ZiMmQwHhcNMjMwNzE3MTY0NzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGYzYTExNGE5MzQzNTA1YThjZTRkMjkzMzc2YTBkYTUwODQ1ZjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5rZNXLwrV6m5Iz4UCgShLe26ERE
NR8osqtA9/Pi4DLAJJgrj0Drp49KhWcaB7Woc5ovKh7gKHvObrmhWWf815AgCBpE
YVqPgivTY8NKbz6+rLmX9d9UvSPKjM8455otcZGohMPQHZHVTapoXHwkrCAPI5aN
QPoD65GXqW21GmOQCecfmzdxIauW2nravNrgqi2ExOCCoajsj6W8ngLVA8yj/bYD
WTBB0kCng7wVe4k13KuiYLqolXBS90n7B7ba30B337QkgYET3GR+Vx0eOOR+0Lpn
O4plOpegiZJCcvQ3KAO/rVqaAHaXv/NGgjVWwORsC0uxowlmx7FKOnZRPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF3zoRSpNDUFqM5NKTN2oNpQhF9dMB8GA1UdIwQY
MBaAFK8gOQABdlPMTg3BsTvqF3oGU/stMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnlBNUFBRjJVOHhPRGNHeE8tb1hlZ1pULXkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8wMDk0NDUtYzljNy00OWU1LWE4Y2Et
MGFhZWU0ZjM2NTFiLzEvWGZPaEZLazBOUVdvemswcE0zYWcybENFWDEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC8wMDk0NDUtYzljNy00OWU1LWE4Y2EtMGFhZWU0ZjM2NTFi
LzEvcnlBNUFBRjJVOHhPRGNHeE8tb1hlZ1pULXkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPmpFMA0G
CSqGSIb3DQEBCwUAA4IBAQAKuhz+A2gLrPgo9Bpi552Ooo4ftQXTGpKhkcisY+PU
8Efu9KwRIyhRAFBn4reARGYFpVzOgW+RptKDa3va01LC10krCQVcebnJSpTNOlSy
+TkfDw0Ub9acWnu1B04I+vsWLDJErAoj/vmdPZQf29JTv+RlegrhV2dhxCR2YBYT
4Z8heIhmY3m92spUvqge73WILrjhQeQ9RytRHXIXKsqZpmgE0aKzrSb5pfRgJv/O
+/5EGiFZTIbHSXsPmhc+U8Asr0Og9Gves4GxDha8B2213RLxQwkWaIHj9o+Jqv8A
GJXZdwZliuoWjlaYETGLIRLgXs9/3F8rfxTK6ZxiXrRI
-----END CERTIFICATE-----
Generated at Mon Oct 16 08:29:47 2023 by rpki-client on console-ams.rpki-client.org