Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/732555-8eb5-4dbd-a082-6b837ee2ecec/1/0MPrWcS3tMsdvCKTL4QToSxjDkc.roa
File: 0MPrWcS3tMsdvCKTL4QToSxjDkc.roa (raw, json)
Hash identifier: uLeYJNm1TjAWgdmESqvXQD4lhraP4nLeDMc0VBRwvx8=
Subject key identifier: D0:C3:EB:59:C4:B7:B4:CB:1D:BC:22:93:2F:84:13:A1:2C:63:0E:47
Certificate issuer: /CN=647f607854be5196ca373a2027f6589931250d61
Certificate serial: 018570D520DE1FF062E182499B9B5AE5E01E
Authority key identifier: 64:7F:60:78:54:BE:51:96:CA:37:3A:20:27:F6:58:99:31:25:0D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZH9geFS-UZbKNzogJ_ZYmTElDWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/732555-8eb5-4dbd-a082-6b837ee2ecec/1/0MPrWcS3tMsdvCKTL4QToSxjDkc.roa
Signing time: Mon 02 Jan 2023 04:54:53 +0000
ROA not before: Mon 02 Jan 2023 04:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 62.233.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:20:de:1f:f0:62:e1:82:49:9b:9b:5a:e5:e0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=647f607854be5196ca373a2027f6589931250d61
Validity
Not Before: Jan 2 04:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0c3eb59c4b7b4cb1dbc22932f8413a12c630e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b5:9b:53:5e:88:19:ef:40:cf:a8:2c:b1:04:
70:40:18:1d:de:1e:7c:8b:4e:93:01:7d:c1:20:b9:
14:14:88:fb:08:a3:7a:92:2c:42:54:31:84:f4:ec:
bf:d1:af:83:20:3e:37:fc:df:1d:b4:6e:9e:63:71:
6f:58:e6:f4:9c:d4:1e:8d:3c:3a:07:e0:d3:38:7d:
3b:1f:d4:25:c3:bb:eb:a1:c5:b6:ca:b6:2b:5d:87:
60:8e:7a:85:02:2c:b9:3a:5d:07:5f:45:a8:0b:3a:
13:6e:9e:61:17:86:5a:80:63:4d:32:ae:ef:f8:6b:
f7:43:81:7c:26:f1:c3:aa:39:24:74:a4:83:29:6c:
8a:cb:05:99:6c:f7:b2:9c:3d:f9:4d:b3:a6:e2:e9:
ef:23:bf:fe:a8:65:b8:d6:fc:8e:3a:ba:67:79:7a:
33:07:0f:dc:3f:e5:ed:a9:1f:77:00:b9:78:f2:8b:
46:65:01:1a:05:15:8f:a0:76:d1:01:d1:74:65:d1:
45:21:6b:13:5e:12:ed:fa:db:30:25:bf:a4:d2:30:
18:e3:c6:51:9f:28:1a:c0:99:66:3d:12:ea:36:48:
e8:34:64:46:4e:33:8a:15:ad:27:e1:ef:37:37:4c:
13:98:45:57:2a:47:8d:0c:c0:6b:f6:b9:13:71:d6:
13:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C3:EB:59:C4:B7:B4:CB:1D:BC:22:93:2F:84:13:A1:2C:63:0E:47
X509v3 Authority Key Identifier:
keyid:64:7F:60:78:54:BE:51:96:CA:37:3A:20:27:F6:58:99:31:25:0D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZH9geFS-UZbKNzogJ_ZYmTElDWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/732555-8eb5-4dbd-a082-6b837ee2ecec/1/0MPrWcS3tMsdvCKTL4QToSxjDkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/732555-8eb5-4dbd-a082-6b837ee2ecec/1/ZH9geFS-UZbKNzogJ_ZYmTElDWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.56.0/24
Signature Algorithm: sha256WithRSAEncryption
64:86:c4:7e:43:9b:ee:ab:fe:ca:5c:9c:ef:d0:c6:86:1b:31:
a6:25:a0:28:ac:f9:1b:8a:a2:15:86:b0:ef:47:69:a0:fa:13:
73:29:7b:e1:c2:01:32:7e:f0:a9:dd:01:0b:e6:c9:87:95:1b:
b4:25:e5:c6:c8:81:7c:8f:a4:4a:9f:7a:36:d7:8f:19:ec:cc:
aa:89:c9:a0:09:1d:c9:2e:15:8b:8e:6a:01:e3:ff:9a:4f:2e:
31:a2:68:4a:f6:16:54:1d:bb:f1:a3:bb:cf:5c:10:4d:85:e5:
d9:e1:05:c6:31:ef:7c:46:c0:2f:c8:0c:fc:8f:46:9b:21:ae:
2c:32:84:83:79:3a:31:55:57:e1:3c:16:58:5d:86:a3:23:74:
89:a1:8d:52:9e:8f:d0:d5:8e:1d:72:0a:f7:69:0d:da:b6:01:
4c:0c:be:0d:c3:1a:df:24:18:a3:84:68:98:eb:0e:10:c2:9d:
21:d7:44:f2:7c:ce:8f:49:17:5c:8e:99:7a:58:e3:36:d7:6c:
58:5c:3c:61:c2:fa:75:4e:8d:30:9a:2d:31:5c:48:9a:9b:1d:
91:f0:84:4e:5e:75:ad:bd:6e:4c:98:61:57:ec:bc:e1:a9:8c:
fd:57:de:b3:6f:78:d6:9a:c5:b9:46:eb:d5:63:e4:c9:b6:a4:
22:15:9c:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw1SDeH/Bi4YJJm5ta5eAeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0N2Y2MDc4NTRiZTUxOTZjYTM3M2EyMDI3ZjY1ODk5MzEy
NTBkNjEwHhcNMjMwMTAyMDQ1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGMzZWI1OWM0YjdiNGNiMWRiYzIyOTMyZjg0MTNhMTJjNjMwZTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrWbU16IGe9Az6gssQRwQBgd3h58
i06TAX3BILkUFIj7CKN6kixCVDGE9Oy/0a+DID43/N8dtG6eY3FvWOb0nNQejTw6
B+DTOH07H9Qlw7vrocW2yrYrXYdgjnqFAiy5Ol0HX0WoCzoTbp5hF4ZagGNNMq7v
+Gv3Q4F8JvHDqjkkdKSDKWyKywWZbPeynD35TbOm4unvI7/+qGW41vyOOrpneXoz
Bw/cP+XtqR93ALl48otGZQEaBRWPoHbRAdF0ZdFFIWsTXhLt+tswJb+k0jAY48ZR
nygawJlmPRLqNkjoNGRGTjOKFa0n4e83N0wTmEVXKkeNDMBr9rkTcdYT9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNDD61nEt7TLHbwiky+EE6EsYw5HMB8GA1UdIwQY
MBaAFGR/YHhUvlGWyjc6ICf2WJkxJQ1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkg5Z2VGUy1VWmJLTnpvZ0pfWlltVEVsRFdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83MzI1NTUtOGViNS00ZGJkLWEwODIt
NmI4MzdlZTJlY2VjLzEvME1QcldjUzN0TXNkdkNLVEw0UVRvU3hqRGtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy83MzI1NTUtOGViNS00ZGJkLWEwODItNmI4MzdlZTJlY2Vj
LzEvWkg5Z2VGUy1VWmJLTnpvZ0pfWlltVEVsRFdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPuk4MA0G
CSqGSIb3DQEBCwUAA4IBAQBkhsR+Q5vuq/7KXJzv0MaGGzGmJaAorPkbiqIVhrDv
R2mg+hNzKXvhwgEyfvCp3QEL5smHlRu0JeXGyIF8j6RKn3o2148Z7MyqicmgCR3J
LhWLjmoB4/+aTy4xomhK9hZUHbvxo7vPXBBNheXZ4QXGMe98RsAvyAz8j0abIa4s
MoSDeToxVVfhPBZYXYajI3SJoY1Sno/Q1Y4dcgr3aQ3atgFMDL4NwxrfJBijhGiY
6w4Qwp0h10TyfM6PSRdcjpl6WOM212xYXDxhwvp1To0wmi0xXEiamx2R8IROXnWt
vW5MmGFX7LzhqYz9V96zb3jWmsW5RuvVY+TJtqQiFZwk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org