Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d4bbdc-c00f-4b41-9945-753c39afc2cc/1/flhPlnc1FdUHfXXMbU5us6hjzII.roa
File: flhPlnc1FdUHfXXMbU5us6hjzII.roa (raw, json)
Hash identifier: a+sZ0d+pgkcguDl6FnK+PsV8qBXl2E01haVDSknodKk=
Subject key identifier: 7E:58:4F:96:77:35:15:D5:07:7D:75:CC:6D:4E:6E:B3:A8:63:CC:82
Certificate issuer: /CN=3062ddac4f2e28735b2b21f73ca19f42a18e1e7e
Certificate serial: 0185729ECA2CEA1BFEBF24AE629C4943BEA0
Authority key identifier: 30:62:DD:AC:4F:2E:28:73:5B:2B:21:F7:3C:A1:9F:42:A1:8E:1E:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGLdrE8uKHNbKyH3PKGfQqGOHn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d4bbdc-c00f-4b41-9945-753c39afc2cc/1/flhPlnc1FdUHfXXMbU5us6hjzII.roa
Signing time: Mon 02 Jan 2023 13:14:47 +0000
ROA not before: Mon 02 Jan 2023 13:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212667
IP address blocks: 62.204.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:ca:2c:ea:1b:fe:bf:24:ae:62:9c:49:43:be:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3062ddac4f2e28735b2b21f73ca19f42a18e1e7e
Validity
Not Before: Jan 2 13:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e584f96773515d5077d75cc6d4e6eb3a863cc82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:93:77:18:91:5b:7f:cb:34:0a:ec:fe:4e:97:
b3:19:63:5f:5f:eb:9f:cb:32:cb:85:84:5c:4e:a3:
42:f3:7c:76:2d:3c:32:91:57:16:5a:65:9d:26:27:
0b:b7:52:33:95:5c:3b:94:57:b9:bb:4f:15:6b:75:
e2:c1:e9:c0:4b:ed:bf:c1:7f:ad:64:e0:7b:e4:fa:
e7:77:9a:52:79:a2:3a:a7:a8:db:df:4a:2e:e3:2d:
c8:17:04:2c:a6:70:83:95:d4:e9:36:f7:97:8d:47:
8c:11:9b:91:aa:74:40:77:1d:ca:c0:9f:08:2b:d6:
73:0f:2e:1a:b3:57:9d:6c:6d:79:4e:06:a0:86:55:
cd:3d:5f:e0:76:ae:d6:20:9e:df:25:0c:fa:8e:b5:
0a:d1:06:f3:b6:35:e4:df:d6:25:6b:de:d8:33:13:
a0:fa:de:54:12:32:79:22:00:58:99:7d:06:31:76:
f0:ec:99:d2:87:08:dc:9d:b6:a1:1a:f2:89:49:ff:
be:e5:88:e4:e3:46:82:14:83:52:6a:b1:1a:e2:b4:
bf:09:79:3d:fb:41:e1:be:20:f1:1d:a2:b7:1b:5b:
4c:ad:7d:56:75:60:c5:d6:f7:a4:31:fe:a7:9c:d1:
3b:14:88:c0:ba:c1:3c:31:37:a1:d7:41:a5:c3:30:
d7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:58:4F:96:77:35:15:D5:07:7D:75:CC:6D:4E:6E:B3:A8:63:CC:82
X509v3 Authority Key Identifier:
keyid:30:62:DD:AC:4F:2E:28:73:5B:2B:21:F7:3C:A1:9F:42:A1:8E:1E:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGLdrE8uKHNbKyH3PKGfQqGOHn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d4bbdc-c00f-4b41-9945-753c39afc2cc/1/flhPlnc1FdUHfXXMbU5us6hjzII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d4bbdc-c00f-4b41-9945-753c39afc2cc/1/MGLdrE8uKHNbKyH3PKGfQqGOHn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.32.0/24
Signature Algorithm: sha256WithRSAEncryption
11:af:f7:a1:93:01:c9:f5:91:ae:bf:01:0a:a2:65:02:3f:e2:
a8:35:d9:9d:d8:f3:a1:2b:8f:1d:1b:cd:08:df:3c:3a:27:5b:
5c:cf:c7:c1:5d:61:a1:fa:df:6c:a8:8c:e1:32:80:38:80:7b:
95:02:d2:21:5f:d2:2d:1a:ab:81:1c:45:ac:d4:cc:2a:cb:62:
b0:29:13:98:a6:d5:b9:53:5d:51:39:35:5c:06:dc:01:c0:14:
d0:dc:5b:86:f7:6d:ea:3d:6e:b9:1e:e9:2c:5b:00:2a:48:fa:
de:e0:ba:b1:1e:49:c3:37:f8:8f:03:9c:aa:4e:48:ef:95:53:
0a:8a:f1:27:6d:31:c0:c1:0d:db:2b:69:5b:b9:af:59:69:29:
a7:8e:a1:83:66:f4:c3:73:a3:7f:ed:d4:93:27:54:e6:42:b8:
5a:7d:fd:2a:4b:bb:85:87:44:2e:cf:f2:e6:44:5b:db:be:a5:
b8:8c:49:31:96:a4:96:3b:ff:29:6b:0d:30:03:5a:2c:da:6c:
da:46:5b:8b:a0:43:57:fc:47:9e:01:4e:f0:f8:f5:bd:3e:47:
7d:6f:10:53:03:76:e8:af:72:f1:8b:b3:0d:bc:79:8f:b7:69:
15:ac:c6:4c:20:63:01:e4:08:15:21:f3:41:0f:b9:72:39:4d:
0b:f4:63:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org