Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/269e16-26a9-4b19-8df6-cfbb77f3bd72/1/mpO_H7fy9NBGfxnvupPAUlQDKSQ.roa
File: mpO_H7fy9NBGfxnvupPAUlQDKSQ.roa (raw, json)
Hash identifier: 0oBrkyBWrQcEZgeJIoCunpxwFSgHI9r+wgHK4bm9L3s=
Subject key identifier: 9A:93:BF:1F:B7:F2:F4:D0:46:7F:19:EF:BA:93:C0:52:54:03:29:24
Certificate issuer: /CN=a76e0453e24186ac489641124630e37517aa22e4
Certificate serial: 01857271076B62B9820DD843C00F6744FC26
Authority key identifier: A7:6E:04:53:E2:41:86:AC:48:96:41:12:46:30:E3:75:17:AA:22:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p24EU-JBhqxIlkESRjDjdReqIuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/269e16-26a9-4b19-8df6-cfbb77f3bd72/1/mpO_H7fy9NBGfxnvupPAUlQDKSQ.roa
Signing time: Mon 02 Jan 2023 12:24:48 +0000
ROA not before: Mon 02 Jan 2023 12:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 62.3.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:07:6b:62:b9:82:0d:d8:43:c0:0f:67:44:fc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76e0453e24186ac489641124630e37517aa22e4
Validity
Not Before: Jan 2 12:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a93bf1fb7f2f4d0467f19efba93c05254032924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:8b:83:e4:27:fe:80:ac:f7:79:cf:25:10:
a3:b9:e0:ec:06:14:63:cf:bf:27:4a:07:e9:78:5f:
7c:b7:1e:13:1c:ed:79:8f:5b:5b:c4:da:e3:37:51:
a0:cd:a8:0d:0e:05:ef:75:3b:30:0c:7f:f2:00:d0:
f8:99:90:54:5f:79:db:07:eb:6e:a1:c8:cd:52:73:
9d:e9:75:39:10:e2:4e:3a:51:ca:5b:2e:d6:a2:cb:
2c:e1:11:0c:f4:67:48:49:f8:35:58:58:37:f0:f1:
ba:22:25:c2:45:a6:c5:ed:0d:e3:af:76:de:94:09:
9a:8e:20:d9:d9:9e:19:94:e6:c3:45:20:45:1b:a3:
28:6b:ec:c7:90:dc:07:96:e9:87:88:0e:df:45:86:
6b:be:1b:ce:f8:71:ba:5c:5b:fa:c5:e7:2f:12:d7:
fe:c3:4b:71:aa:ff:d8:eb:5f:c1:cf:c6:31:ec:3a:
c3:83:c9:1f:bd:68:b4:9b:82:6e:fb:34:80:2d:95:
0d:8a:95:6f:37:e7:78:59:c1:a9:5a:f1:d4:82:0b:
7d:16:02:87:cf:7c:02:4a:3e:a9:98:ff:53:47:8d:
58:36:bc:ef:44:ff:dd:a1:1b:a2:c9:a9:30:37:e6:
9d:48:49:eb:78:19:23:22:ed:f2:7c:01:ed:80:5c:
33:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:93:BF:1F:B7:F2:F4:D0:46:7F:19:EF:BA:93:C0:52:54:03:29:24
X509v3 Authority Key Identifier:
keyid:A7:6E:04:53:E2:41:86:AC:48:96:41:12:46:30:E3:75:17:AA:22:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p24EU-JBhqxIlkESRjDjdReqIuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/269e16-26a9-4b19-8df6-cfbb77f3bd72/1/mpO_H7fy9NBGfxnvupPAUlQDKSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/269e16-26a9-4b19-8df6-cfbb77f3bd72/1/p24EU-JBhqxIlkESRjDjdReqIuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.12.0/24
Signature Algorithm: sha256WithRSAEncryption
88:89:5c:13:2f:68:5b:f3:80:e8:85:40:e7:ef:c3:eb:63:f6:
36:74:6b:5b:9c:56:67:a5:8e:f3:9b:81:40:50:bb:4d:ed:36:
33:5d:a9:37:14:97:fb:ea:30:87:af:85:9b:da:91:b1:d6:19:
c2:3f:ab:c1:78:9f:9d:08:dc:e0:42:18:57:2c:1d:2d:47:f8:
d2:5a:58:ce:60:b1:48:7d:d3:95:3f:23:f2:6a:51:8c:74:ee:
c9:ee:5e:8e:cf:f0:44:dc:c0:0e:97:13:e1:3d:4e:55:36:b7:
ea:5b:4d:c5:f0:7b:23:e2:11:3e:fe:49:1d:80:1f:7c:0d:4b:
ee:d9:6a:c5:1c:d2:53:f4:d9:3a:2e:21:16:9b:15:25:50:1c:
d6:fe:c5:71:e8:c3:0e:57:3c:b0:60:28:e9:73:27:14:e7:a6:
ce:28:c7:d6:46:ae:57:bf:49:b0:4c:50:63:47:1c:bf:19:76:
f3:23:42:62:d4:52:c0:0b:30:7d:24:74:66:53:6b:b3:c5:f6:
a1:2e:bf:db:18:19:93:ba:d3:ea:41:0f:d6:ef:24:99:4c:a5:
2f:14:35:82:c3:87:4d:5a:89:2d:e3:de:ae:a0:5b:7d:0e:df:
f7:4e:7b:24:5c:0f:dc:ad:79:36:97:41:bd:a6:50:92:2b:5e:
3a:6a:c8:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVycQdrYrmCDdhDwA9nRPwmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NmUwNDUzZTI0MTg2YWM0ODk2NDExMjQ2MzBlMzc1MTdh
YTIyZTQwHhcNMjMwMTAyMTIyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTkzYmYxZmI3ZjJmNGQwNDY3ZjE5ZWZiYTkzYzA1MjU0MDMyOTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppuLg+Qn/oCs93nPJRCjueDsBhRj
z78nSgfpeF98tx4THO15j1tbxNrjN1GgzagNDgXvdTswDH/yAND4mZBUX3nbB+tu
ocjNUnOd6XU5EOJOOlHKWy7Wosss4REM9GdISfg1WFg38PG6IiXCRabF7Q3jr3be
lAmajiDZ2Z4ZlObDRSBFG6Moa+zHkNwHlumHiA7fRYZrvhvO+HG6XFv6xecvEtf+
w0txqv/Y61/Bz8Yx7DrDg8kfvWi0m4Ju+zSALZUNipVvN+d4WcGpWvHUggt9FgKH
z3wCSj6pmP9TR41YNrzvRP/doRuiyakwN+adSEnreBkjIu3yfAHtgFwz3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJqTvx+38vTQRn8Z77qTwFJUAykkMB8GA1UdIwQY
MBaAFKduBFPiQYasSJZBEkYw43UXqiLkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDI0RVUtSkJocXhJbGtFU1JqRGpkUmVxSXVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8yNjllMTYtMjZhOS00YjE5LThkZjYt
Y2ZiYjc3ZjNiZDcyLzEvbXBPX0g3Znk5TkJHZnhudnVwUEFVbFFES1NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi8yNjllMTYtMjZhOS00YjE5LThkZjYtY2ZiYjc3ZjNiZDcy
LzEvcDI0RVUtSkJocXhJbGtFU1JqRGpkUmVxSXVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgMMMA0G
CSqGSIb3DQEBCwUAA4IBAQCIiVwTL2hb84DohUDn78PrY/Y2dGtbnFZnpY7zm4FA
ULtN7TYzXak3FJf76jCHr4Wb2pGx1hnCP6vBeJ+dCNzgQhhXLB0tR/jSWljOYLFI
fdOVPyPyalGMdO7J7l6Oz/BE3MAOlxPhPU5VNrfqW03F8Hsj4hE+/kkdgB98DUvu
2WrFHNJT9Nk6LiEWmxUlUBzW/sVx6MMOVzywYCjpcycU56bOKMfWRq5Xv0mwTFBj
Rxy/GXbzI0Ji1FLACzB9JHRmU2uzxfahLr/bGBmTutPqQQ/W7ySZTKUvFDWCw4dN
Wokt496uoFt9Dt/3TnskXA/crXk2l0G9plCSK146asgC
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:28 2025 by rpki-client