Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/l4sd7W7dtAVS1HaWEZYG8sjS6uI.roa
File: l4sd7W7dtAVS1HaWEZYG8sjS6uI.roa (raw, json)
Hash identifier: c3eVO35lY3AktPM1oamVbcd2uuaNm5IfBg3tyY4GvUA=
Subject key identifier: 97:8B:1D:ED:6E:DD:B4:05:52:D4:76:96:11:96:06:F2:C8:D2:EA:E2
Certificate issuer: /CN=a669dd121b8b5deb5129f3fdbaeba7ce3d6325ca
Certificate serial: F7949C
Authority key identifier: A6:69:DD:12:1B:8B:5D:EB:51:29:F3:FD:BA:EB:A7:CE:3D:63:25:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmndEhuLXetRKfP9uuunzj1jJco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/l4sd7W7dtAVS1HaWEZYG8sjS6uI.roa
Signing time: Thu 24 Feb 2022 22:09:27 +0000
ROA not before: Thu 24 Feb 2022 22:09:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 62.3.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16225436 (0xf7949c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a669dd121b8b5deb5129f3fdbaeba7ce3d6325ca
Validity
Not Before: Feb 24 22:09:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=978b1ded6eddb40552d47696119606f2c8d2eae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c0:dd:eb:d0:a3:a1:23:c0:e3:36:5a:78:17:
0c:d7:95:b4:94:e2:e0:ee:d5:5c:5a:a0:01:eb:be:
7a:40:33:b6:0c:a5:db:a2:59:30:87:a1:a1:36:bc:
9a:47:73:11:c2:e5:1b:b4:04:7b:87:f8:a9:d1:f6:
84:ad:25:a4:8d:84:02:08:8f:96:14:6d:9e:b0:8e:
a4:95:af:23:6b:32:af:e8:50:1d:eb:b2:54:f2:02:
56:62:55:4f:bd:28:7f:c3:b4:75:7a:77:07:b6:18:
5e:c8:9d:a5:21:b2:46:86:3d:92:d2:b7:12:b7:e1:
ef:e8:02:d3:e5:a4:43:2f:b0:70:5c:94:89:55:30:
5b:f9:44:81:23:a7:3f:d6:71:e1:87:07:c4:04:18:
24:bb:3e:bf:ef:53:0e:31:f0:ab:02:97:29:bc:ab:
96:99:57:2a:b3:bc:d8:e7:8c:ee:3d:b8:2c:41:99:
28:44:2c:5e:c9:b5:87:c4:54:b2:97:42:31:ca:56:
24:28:0a:da:ef:a8:e5:66:37:40:36:15:2d:b1:d0:
bd:c9:39:13:5a:dd:eb:bb:60:d2:3f:87:7a:de:e9:
23:91:c3:2d:d6:b6:f9:5d:5a:0e:43:98:39:e7:aa:
58:a6:90:37:14:bb:c2:fa:f4:b2:82:23:8e:39:0e:
e0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8B:1D:ED:6E:DD:B4:05:52:D4:76:96:11:96:06:F2:C8:D2:EA:E2
X509v3 Authority Key Identifier:
keyid:A6:69:DD:12:1B:8B:5D:EB:51:29:F3:FD:BA:EB:A7:CE:3D:63:25:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmndEhuLXetRKfP9uuunzj1jJco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/l4sd7W7dtAVS1HaWEZYG8sjS6uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/843f8a-dfa4-4bb8-9b07-dfc1930bbf84/1/pmndEhuLXetRKfP9uuunzj1jJco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b8:6c:ab:23:39:d9:b3:4f:2a:76:32:1d:e6:dc:e0:68:f0:
df:19:23:70:7d:f8:83:eb:42:a8:6c:e9:db:68:e4:e9:33:58:
8c:40:d6:37:0c:7e:ba:40:9e:05:f8:c7:72:aa:c8:1a:d2:ba:
47:09:ea:ec:e5:32:86:58:74:85:8c:d6:a9:e0:f1:bf:cd:ad:
67:b9:22:57:f1:47:9e:6f:05:f4:ef:0c:9b:ac:a0:2b:35:2a:
f3:70:e8:7a:0a:b9:4b:09:a7:38:ba:a7:94:1e:41:9e:51:c8:
cf:22:1f:94:46:04:a5:11:32:c3:a0:2d:8c:79:2c:a1:67:ce:
71:49:90:41:7f:be:79:f0:fe:54:0a:bb:b9:ac:d7:36:e7:37:
71:fc:44:47:e8:b1:6f:b8:39:be:06:6c:e1:59:c7:2b:b6:06:
92:1b:56:95:0a:fc:2a:65:fa:60:a2:87:02:5b:1d:09:49:46:
fe:27:ae:08:36:8b:da:e2:7d:dc:8c:c6:f0:41:35:b8:d7:b8:
da:a4:b5:8b:b8:29:6b:ef:74:22:1f:ff:5e:11:0d:39:81:b5:
0f:06:60:3d:52:2e:3d:4f:ea:6d:f9:4f:88:3d:d5:35:17:c0:
79:72:5f:64:81:fe:9d:31:bd:cd:73:2b:2b:81:a6:e3:c2:b9:
21:c5:42:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:50 2024 by rpki-client on console-ams.rpki-client.org