Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8d58e4-88f6-4aed-ba43-7ae6359d3110/1/SgA3JfEdyYy73Z_F5sayA4iUXnE.roa
File: SgA3JfEdyYy73Z_F5sayA4iUXnE.roa (raw, json)
Hash identifier: e6fXy1YzoS8/97INymIbjQ45r2r8vgJVOvjgKGlIXJQ=
Subject key identifier: 4A:00:37:25:F1:1D:C9:8C:BB:DD:9F:C5:E6:C6:B2:03:88:94:5E:71
Certificate issuer: /CN=53129d048deb2e0bf62271399a090b9010160b39
Certificate serial: 018E7C7C9C56CF67EEF7F4727B54CCB55209
Authority key identifier: 53:12:9D:04:8D:EB:2E:0B:F6:22:71:39:9A:09:0B:90:10:16:0B:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxKdBI3rLgv2InE5mgkLkBAWCzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8d58e4-88f6-4aed-ba43-7ae6359d3110/1/SgA3JfEdyYy73Z_F5sayA4iUXnE.roa
Signing time: Tue 26 Mar 2024 20:38:45 +0000
ROA not before: Tue 26 Mar 2024 20:38:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 62.233.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7c:7c:9c:56:cf:67:ee:f7:f4:72:7b:54:cc:b5:52:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53129d048deb2e0bf62271399a090b9010160b39
Validity
Not Before: Mar 26 20:38:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a003725f11dc98cbbdd9fc5e6c6b20388945e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e7:0a:ed:66:c2:a5:a3:a8:83:2c:52:9d:a4:
6f:e0:01:b7:bd:9c:91:ff:dc:3d:41:16:85:3c:78:
6f:e1:96:a5:12:bc:00:f7:9c:95:85:cb:4d:5d:dd:
ea:1b:d3:34:0a:73:39:2c:bc:69:5e:99:f8:c3:26:
f8:23:32:ea:20:15:97:20:dc:62:5a:1c:1d:bc:e3:
b3:56:45:86:af:28:61:57:93:27:22:a8:bc:15:75:
ab:cc:8c:2f:66:fb:22:46:79:6a:e9:8f:cd:f2:da:
c4:93:2d:fa:2b:09:b5:d5:fd:6e:73:54:22:ae:c8:
17:05:94:d9:cf:48:86:7c:54:37:4f:bf:e5:32:c4:
bd:7e:d4:12:76:f6:50:97:b8:9e:fd:54:5e:aa:32:
b9:3b:7f:59:26:d7:6d:41:1c:99:3f:8c:18:c0:55:
57:49:ff:e4:2c:7b:98:a5:2d:f0:35:65:3c:87:70:
db:ad:e2:c4:00:e3:46:f4:14:04:78:bc:22:b8:96:
4f:28:1b:c0:89:11:aa:7c:4a:21:ae:69:24:97:ce:
fb:98:f0:6f:b5:25:de:19:ec:ab:48:6b:7a:6d:f1:
64:7f:e2:6c:a6:da:5a:9f:5d:27:46:85:92:81:5a:
35:6b:51:7a:60:68:c7:59:34:0a:58:e8:02:65:c2:
d5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:37:25:F1:1D:C9:8C:BB:DD:9F:C5:E6:C6:B2:03:88:94:5E:71
X509v3 Authority Key Identifier:
keyid:53:12:9D:04:8D:EB:2E:0B:F6:22:71:39:9A:09:0B:90:10:16:0B:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxKdBI3rLgv2InE5mgkLkBAWCzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8d58e4-88f6-4aed-ba43-7ae6359d3110/1/SgA3JfEdyYy73Z_F5sayA4iUXnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8d58e4-88f6-4aed-ba43-7ae6359d3110/1/UxKdBI3rLgv2InE5mgkLkBAWCzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.51.0/24
Signature Algorithm: sha256WithRSAEncryption
04:21:18:ca:25:9d:c2:11:d2:8e:f9:42:06:5b:33:2e:b0:99:
e5:1f:c1:82:1c:2d:67:40:71:44:39:d0:b0:83:c3:05:d5:03:
1c:00:ad:9d:0e:ba:ae:6c:f1:ed:df:6e:2c:fd:3b:2f:51:d7:
5b:ca:c9:5b:91:dd:4b:b8:aa:b7:4c:6b:10:fc:a8:dd:0c:cd:
b1:82:99:95:4a:45:29:62:61:87:8a:ae:f3:9a:de:72:88:63:
fd:8a:dd:34:9e:1a:85:43:0d:57:cc:d3:f3:ac:66:12:1e:5b:
53:15:a5:ee:8c:08:cd:7e:0a:bf:27:2a:14:04:30:09:07:47:
72:1d:8c:24:3a:9b:28:69:00:72:4c:c0:dd:cc:a9:d4:1e:9b:
01:48:c4:2e:bb:23:88:ec:d0:96:a1:0d:9b:fb:47:f7:88:d7:
68:39:bd:24:4b:59:c3:86:41:92:ee:47:be:61:ba:16:bc:7f:
99:5a:be:83:54:d8:cb:5b:96:80:e8:31:9b:e0:76:10:2f:56:
62:0a:a3:19:0a:16:66:87:41:4e:7f:db:cb:7b:28:e1:8f:a3:
e1:b7:0e:cc:87:07:2d:d3:13:b4:39:bd:9e:0c:a5:af:75:90:
5c:c8:4b:35:99:07:6e:e0:60:65:bd:f5:0c:d3:d5:f2:ea:42:
5a:10:59:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:31 2025 by rpki-client