Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/TV7xqB1rRPygg6UJYfqIb36iCJE.roa
File: TV7xqB1rRPygg6UJYfqIb36iCJE.roa (raw, json)
Hash identifier: 2GCfIwcTc+jsSG6ON8KI/A/7+xVHlaXJ1BqNv+/FYxQ=
Subject key identifier: 4D:5E:F1:A8:1D:6B:44:FC:A0:83:A5:09:61:FA:88:6F:7E:A2:08:91
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019425FD590887C4DD460BFFC4E07698D270
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/TV7xqB1rRPygg6UJYfqIb36iCJE.roa
Signing time: Thu 02 Jan 2025 07:49:07 +0000
ROA not before: Thu 02 Jan 2025 07:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51054
IP address blocks: 62.76.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:59:08:87:c4:dd:46:0b:ff:c4:e0:76:98:d2:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 07:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d5ef1a81d6b44fca083a50961fa886f7ea20891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c0:e2:de:6c:68:8e:cf:5d:f8:98:80:b7:a3:
f5:b2:7f:87:1e:b8:73:64:4d:8c:3c:5e:d3:dd:f3:
d7:18:8e:2a:ff:3c:45:eb:a6:f8:71:78:1d:9a:3e:
ee:01:12:cb:33:b3:19:e2:32:c4:5c:44:1e:63:3c:
f9:97:5d:0a:27:14:e9:25:11:2c:a5:10:8e:2f:15:
84:66:0b:bb:bc:70:83:3a:76:8e:3b:b6:11:43:d2:
6e:4a:4b:39:33:23:9e:22:b7:25:26:9e:e8:79:91:
02:26:e7:26:03:e0:a8:d2:96:28:84:c7:fd:59:2d:
f0:11:fe:fd:72:66:54:24:51:bd:a0:18:4d:58:f0:
3b:d8:ef:4e:38:aa:f3:a4:1a:73:08:e3:53:64:62:
3a:89:3b:3d:de:69:98:92:e4:92:63:54:3b:4b:e1:
be:37:14:d6:0f:27:62:47:11:93:16:53:a6:f1:54:
1f:55:d4:65:31:f3:fc:e8:09:3a:0e:91:24:5b:7c:
87:c0:f2:4b:4a:be:19:cf:fd:23:9c:cf:2e:45:1a:
57:28:75:a2:4a:73:44:af:30:13:57:43:5c:53:52:
ff:8c:99:37:9e:c2:67:a9:19:85:93:27:25:c3:19:
0a:fc:4a:41:d5:64:37:27:f4:7f:39:1d:41:cd:89:
4e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5E:F1:A8:1D:6B:44:FC:A0:83:A5:09:61:FA:88:6F:7E:A2:08:91
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/TV7xqB1rRPygg6UJYfqIb36iCJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.70.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:e6:05:d6:c8:66:27:e9:d9:5c:c4:97:8f:52:ff:2a:60:e2:
5b:a0:e7:41:98:2f:0e:9c:cc:50:e1:44:0a:48:0a:43:d0:e6:
f2:03:24:c5:61:a5:b8:a6:61:4b:68:a8:a1:dd:e1:80:4e:0b:
7e:03:a8:89:c8:00:86:a3:0c:f7:6f:cb:01:1a:e2:f5:8f:6c:
81:7a:c6:a1:60:86:3f:fc:19:77:5b:5c:d6:d3:9d:55:6d:98:
85:26:ad:41:a6:9e:c1:84:fc:43:f2:42:20:78:d2:c8:f1:55:
27:37:d1:87:eb:13:4c:22:93:50:38:73:a5:af:d0:a6:39:1c:
3e:8d:34:ce:31:26:ce:1e:7a:e0:da:b6:bd:a8:5d:a0:0d:c1:
d8:33:a7:bc:5f:b2:bc:0d:93:fa:93:5e:ef:13:cf:38:f4:2d:
80:f4:ac:cc:54:da:2f:f4:0d:2d:9f:e1:61:8d:15:db:15:f8:
b7:83:8f:af:ef:40:3b:bf:58:cb:77:25:21:0a:4e:37:be:fc:
0c:d3:4a:1f:f2:bf:b5:cb:f7:17:2c:6c:fa:1a:92:66:3e:ce:
1f:9a:cc:19:ef:fd:6d:8a:91:d6:9b:4f:a3:38:af:d7:4b:a7:
99:f3:a0:0e:ec:69:d8:2c:39:0c:8c:e3:41:61:48:a7:ad:1c:
ca:c1:04:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:04:57 2025 by rpki-client