Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/de3fc4-e00f-4a3a-8966-7bb1e31d088f/1/X65bh33_sDOtj-ADDt5wy900gQ0.roa
File: X65bh33_sDOtj-ADDt5wy900gQ0.roa (raw, json)
Hash identifier: cFfV3CGUXnIYBmH3H+K6ZcwNJ8El4+45VVrDwMIEI+Q=
Subject key identifier: 5F:AE:5B:87:7D:FF:B0:33:AD:8F:E0:03:0E:DE:70:CB:DD:34:81:0D
Certificate issuer: /CN=cd61790219ebfd8f21fe51284464320cd609f9ef
Certificate serial: 811A36
Authority key identifier: CD:61:79:02:19:EB:FD:8F:21:FE:51:28:44:64:32:0C:D6:09:F9:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWF5Ahnr_Y8h_lEoRGQyDNYJ-e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/de3fc4-e00f-4a3a-8966-7bb1e31d088f/1/X65bh33_sDOtj-ADDt5wy900gQ0.roa
Signing time: Sat 01 Jan 2022 00:58:58 +0000
ROA not before: Sat 01 Jan 2022 00:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 62.3.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8460854 (0x811a36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd61790219ebfd8f21fe51284464320cd609f9ef
Validity
Not Before: Jan 1 00:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fae5b877dffb033ad8fe0030ede70cbdd34810d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:a4:d0:1d:d8:8e:bd:28:cf:96:b2:f7:70:
7b:81:ce:9b:cf:47:ea:15:04:18:a6:99:61:a3:fb:
5d:53:ed:8c:68:44:53:c7:94:45:a8:f6:3d:72:99:
62:b8:5d:e9:5e:7b:34:d7:7a:0e:30:93:4e:c1:9b:
c0:0e:e8:58:5f:2d:be:72:12:07:eb:01:4f:35:b6:
3d:2d:21:b9:c2:fc:60:01:d6:99:98:19:e7:e4:64:
8b:5b:b3:7b:bc:78:22:04:88:f7:cb:28:03:b0:7d:
26:2e:8e:61:f8:08:ed:54:5d:20:76:a6:7e:92:17:
b1:3e:93:bf:c9:9e:db:10:03:4e:8e:8c:51:d4:79:
84:12:b3:ed:fc:35:57:92:40:a2:63:9f:43:f0:01:
41:a4:9d:10:d0:79:ab:81:af:d5:80:9f:6a:9f:7d:
0b:34:a8:40:7b:28:de:34:c9:21:b1:c0:4e:a8:1c:
ff:4d:ce:36:07:93:d5:21:09:3c:ce:a1:15:d0:2e:
fe:48:f7:ce:09:71:e3:f7:28:f4:2c:75:ad:69:01:
7b:18:d0:1a:53:77:9d:6b:76:0b:b5:dd:b8:d9:37:
f5:6b:32:1c:9f:92:a7:74:65:2f:9d:91:04:d1:51:
1e:a3:f7:eb:b2:c6:ca:9e:e3:3b:83:71:8c:7d:4f:
60:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:AE:5B:87:7D:FF:B0:33:AD:8F:E0:03:0E:DE:70:CB:DD:34:81:0D
X509v3 Authority Key Identifier:
keyid:CD:61:79:02:19:EB:FD:8F:21:FE:51:28:44:64:32:0C:D6:09:F9:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWF5Ahnr_Y8h_lEoRGQyDNYJ-e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/de3fc4-e00f-4a3a-8966-7bb1e31d088f/1/X65bh33_sDOtj-ADDt5wy900gQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/de3fc4-e00f-4a3a-8966-7bb1e31d088f/1/zWF5Ahnr_Y8h_lEoRGQyDNYJ-e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.22.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:c5:0f:43:e9:e7:6f:63:86:0a:38:00:ff:8c:0b:1d:ac:71:
3c:54:87:09:4b:f2:ff:83:d1:bb:70:4e:7e:76:22:b9:2e:f2:
51:f9:0b:90:bb:27:4e:c2:52:2b:62:35:0b:31:56:22:e5:7b:
21:73:bf:43:c2:63:5d:53:6f:d5:3a:1b:6f:23:74:01:6e:51:
bc:17:87:82:8e:83:07:2d:c1:93:87:28:29:8c:f8:fe:e5:ab:
1d:e1:06:05:0c:c2:9b:e3:6c:98:ff:35:e0:8e:87:e3:b4:a2:
ca:cd:2f:ed:f4:47:62:07:73:58:e1:41:6b:d8:f8:f5:c6:a2:
58:8e:4e:e5:82:e0:7c:6b:e6:4b:46:81:de:7d:7b:e3:a6:85:
3b:ba:c8:18:0d:ed:a4:e8:8d:3b:9e:ed:11:69:5b:b7:03:cc:
56:9b:86:95:4a:11:7e:3e:8c:c0:4d:bf:4a:48:9b:ab:66:e3:
cc:27:ec:53:0d:75:ab:5b:11:1b:e5:d3:cf:b1:33:5d:80:6a:
c5:fd:ee:88:ab:44:d1:eb:e4:6a:66:26:ae:78:f6:9d:55:6a:
90:38:78:b0:80:0a:5a:eb:47:3c:f6:ab:48:fa:4f:f6:4a:8c:
2f:7f:b9:5f:5e:b2:55:c2:c0:b7:f2:5a:29:53:35:fd:a4:63:
8e:9c:ed:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:59 2024 by rpki-client on console-fra.rpki-client.org