Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/dded9c-8548-44ef-919e-5fc72bbbc192/1/Pfi0fq8NvTbasLrpwfZ2hQ2HC3Y.roa
File: Pfi0fq8NvTbasLrpwfZ2hQ2HC3Y.roa (raw, json)
Hash identifier: l/CLJROTu/Kiz5/TAmDpwyX69Sa84HRB3Uyy9XIloV0=
Subject key identifier: 3D:F8:B4:7E:AF:0D:BD:36:DA:B0:BA:E9:C1:F6:76:85:0D:87:0B:76
Certificate issuer: /CN=308e4f050668d45e3918384500b175a87680199c
Certificate serial: 018596284295EC589682BE419F9768C317D6
Authority key identifier: 30:8E:4F:05:06:68:D4:5E:39:18:38:45:00:B1:75:A8:76:80:19:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MI5PBQZo1F45GDhFALF1qHaAGZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/dded9c-8548-44ef-919e-5fc72bbbc192/1/Pfi0fq8NvTbasLrpwfZ2hQ2HC3Y.roa
Signing time: Mon 09 Jan 2023 10:51:38 +0000
ROA not before: Mon 09 Jan 2023 10:51:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 62.204.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:28:42:95:ec:58:96:82:be:41:9f:97:68:c3:17:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=308e4f050668d45e3918384500b175a87680199c
Validity
Not Before: Jan 9 10:51:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3df8b47eaf0dbd36dab0bae9c1f676850d870b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2f:2b:5e:f9:c9:15:63:12:79:16:eb:74:87:
87:34:81:06:4b:99:7a:44:9a:7e:18:e0:a6:dc:3e:
13:0d:c9:be:0c:70:fb:d3:1c:6c:15:c6:29:ac:d6:
67:19:32:fe:39:50:c1:5e:bb:b4:32:b1:c3:76:ec:
2b:ef:57:20:ea:48:b6:ba:93:0c:6a:23:d6:56:00:
a2:44:80:ed:aa:12:3c:b1:e6:74:a6:cf:55:a8:35:
86:dc:31:82:b8:38:4b:92:83:b5:f1:23:e6:e7:d9:
89:67:f9:24:79:21:d2:ce:cb:df:30:d2:65:23:29:
1f:64:d3:3c:e1:91:0f:2a:ae:5d:54:ca:dc:bc:c3:
93:dc:b9:2e:a9:e3:05:7b:fa:ea:d7:7d:9d:8f:5f:
25:fb:ed:27:0f:cc:db:85:56:32:fa:01:a7:27:38:
37:c4:84:16:84:ce:e6:11:f6:f1:41:93:37:0f:66:
06:0b:a7:0d:77:69:fc:1e:6d:d5:c1:18:53:81:51:
d5:31:29:78:1f:57:ae:07:fa:42:75:5b:7d:91:97:
df:42:b2:09:a0:11:61:c9:bc:0a:25:f8:45:d4:e5:
f6:96:07:ca:b5:94:3e:08:a7:10:df:6d:74:19:0d:
9a:bb:2a:c1:58:62:0c:6b:85:65:84:78:a0:1e:80:
75:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F8:B4:7E:AF:0D:BD:36:DA:B0:BA:E9:C1:F6:76:85:0D:87:0B:76
X509v3 Authority Key Identifier:
keyid:30:8E:4F:05:06:68:D4:5E:39:18:38:45:00:B1:75:A8:76:80:19:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MI5PBQZo1F45GDhFALF1qHaAGZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/dded9c-8548-44ef-919e-5fc72bbbc192/1/Pfi0fq8NvTbasLrpwfZ2hQ2HC3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/dded9c-8548-44ef-919e-5fc72bbbc192/1/MI5PBQZo1F45GDhFALF1qHaAGZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:fc:2f:9a:6b:d9:b1:82:94:69:df:a1:a4:77:10:a2:1c:9c:
fe:4c:af:e4:f1:e9:e4:d4:b4:99:4e:86:ce:8c:88:81:62:ab:
7a:f8:0a:cb:9e:0f:06:95:51:ad:ad:ce:60:64:22:44:d2:f1:
95:97:7b:40:c3:7d:53:b7:dc:38:98:bb:a2:07:f3:a9:2a:15:
59:c4:54:1e:04:5e:84:2c:65:a9:37:76:49:e1:d7:8e:35:bd:
60:60:23:40:49:8b:9e:2d:b5:65:a6:f1:f6:a5:8b:57:00:2a:
63:c8:2a:0d:0c:53:3c:cc:f3:d5:09:47:b3:31:3d:64:90:ae:
84:a6:01:f6:ce:35:d4:cd:b7:cb:ba:63:09:cc:4e:58:0c:71:
73:e0:ef:a9:08:87:d2:70:16:64:27:4f:2c:41:e7:25:cd:6a:
c2:f8:78:c2:27:ed:01:bd:48:f6:57:6d:ad:1b:19:b9:bc:47:
77:b7:45:d4:ea:53:7f:64:cd:65:cd:cb:19:40:f7:34:64:fe:
1a:c2:39:8d:47:23:77:13:d8:67:52:36:ed:02:dc:c0:23:bb:
bf:fc:f3:47:96:fb:cb:d4:14:7a:1b:65:cc:5e:52:35:af:d9:
36:68:33:b8:e1:b8:65:f2:7f:b5:72:fa:d5:21:2c:b4:30:bd:
3f:d7:f7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:03 2025 by rpki-client