Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/4AMTLE0ubKE8sDLL5f-IXJaPidY.roa
File: 4AMTLE0ubKE8sDLL5f-IXJaPidY.roa (raw, json)
Hash identifier: Uij3c8uEcBFRckdjh/Khou2k/vKUSkcuMFvYvC/iG50=
Subject key identifier: E0:03:13:2C:4D:2E:6C:A1:3C:B0:32:CB:E5:FF:88:5C:96:8F:89:D6
Certificate issuer: /CN=8d6ff72d9bbc5eef67360bc717c54b2ba1b0b3e4
Certificate serial: 0187A35EEDAC2D8EA5DF94830BFBE80A1B4A
Authority key identifier: 8D:6F:F7:2D:9B:BC:5E:EF:67:36:0B:C7:17:C5:4B:2B:A1:B0:B3:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/4AMTLE0ubKE8sDLL5f-IXJaPidY.roa
Signing time: Fri 21 Apr 2023 10:32:00 +0000
ROA not before: Fri 21 Apr 2023 10:32:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 62.106.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:5e:ed:ac:2d:8e:a5:df:94:83:0b:fb:e8:0a:1b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d6ff72d9bbc5eef67360bc717c54b2ba1b0b3e4
Validity
Not Before: Apr 21 10:32:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e003132c4d2e6ca13cb032cbe5ff885c968f89d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5e:c9:ea:3d:14:ac:9b:c3:d1:3a:31:d4:37:
b1:62:38:52:25:6c:b4:21:41:bf:10:81:82:e8:7b:
75:91:53:ef:49:84:49:26:5c:a5:0a:0f:cf:73:d4:
69:de:d2:92:3d:db:36:2f:be:8e:20:eb:84:2b:8a:
4c:b7:a8:60:d7:17:d6:1a:30:86:a7:0d:1e:45:91:
29:c5:f0:54:0a:97:0a:33:75:1b:ec:01:bd:89:0d:
a6:86:4e:1b:af:9e:b4:54:ce:74:0f:76:08:36:43:
ee:e5:19:53:6c:a4:68:ad:84:b5:09:44:a7:6c:a1:
67:d0:17:b2:a1:37:97:1d:15:39:18:35:31:87:c0:
6d:80:29:dc:b9:7e:eb:27:32:5a:00:3e:39:00:cf:
83:8e:78:4c:27:ff:cb:31:80:97:b3:dd:61:ee:fc:
e8:b8:1c:d0:f8:33:cf:9f:55:42:d1:2a:c5:dd:75:
56:18:7b:27:17:d0:50:1d:66:bf:7e:26:02:ea:76:
2e:13:41:af:14:08:4d:94:09:60:40:c3:19:f8:30:
8b:ef:71:ee:85:65:30:d6:48:56:55:dd:d7:d5:5e:
50:23:3a:ec:93:5e:94:bd:3c:c8:c1:3f:a2:fb:84:
9d:ab:15:d3:80:06:89:c8:0d:8b:d4:f4:47:2a:37:
3b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:03:13:2C:4D:2E:6C:A1:3C:B0:32:CB:E5:FF:88:5C:96:8F:89:D6
X509v3 Authority Key Identifier:
keyid:8D:6F:F7:2D:9B:BC:5E:EF:67:36:0B:C7:17:C5:4B:2B:A1:B0:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/4AMTLE0ubKE8sDLL5f-IXJaPidY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.89.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:93:85:6c:39:cd:d7:b9:ec:eb:c0:c0:a4:1b:06:62:72:8b:
d8:d0:13:82:27:b6:b5:61:95:d0:d7:56:88:4c:9d:6d:ed:7d:
13:ab:15:96:68:75:c5:d3:f8:a8:73:19:d1:a6:63:b6:90:d8:
69:33:7b:ab:9c:7c:6b:48:8d:b7:66:e9:e3:2c:ae:5e:f1:72:
17:25:e7:61:d1:3d:58:47:3b:45:79:ab:2f:b8:a6:1d:02:c2:
92:ff:bd:25:0f:5a:34:bb:31:e2:47:8d:1e:ce:e8:c2:22:08:
17:b2:2f:46:d4:64:e4:6e:23:52:c9:33:7a:ef:04:6c:bc:bd:
da:17:e4:07:78:dd:c2:d0:63:2b:3d:5a:ac:88:79:f2:c5:d6:
8f:2f:99:67:e7:56:54:eb:3e:ce:09:f0:88:e7:08:3a:0e:76:
dd:a8:05:89:79:7b:67:43:35:68:ef:29:69:f3:e4:c2:66:42:
02:1a:eb:74:7e:ff:10:91:54:d4:69:49:61:c4:6c:f1:4f:87:
a7:48:4b:26:de:c0:f9:30:f1:3a:83:98:33:81:bc:ea:7c:65:
ca:0c:cc:bf:4b:50:47:aa:f2:56:82:47:ab:01:1a:eb:db:42:
a1:c5:6f:cf:2d:6b:8e:49:c2:91:70:a1:d5:32:af:d5:38:2a:
21:b4:2c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:45 2025 by rpki-client