Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/79iP6UHMcii30os0r0M6lQWe7TI.roa
File: 79iP6UHMcii30os0r0M6lQWe7TI.roa (raw, json)
Hash identifier: VCB4imloFiV2hZ8AYp2GUzA5MzaXdDiSu4ZLBtSV+Rg=
Subject key identifier: EF:D8:8F:E9:41:CC:72:28:B7:D2:8B:34:AF:43:3A:95:05:9E:ED:32
Certificate issuer: /CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Certificate serial: 01856F94975144B2DD638566DA4B069D261A
Authority key identifier: 4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/79iP6UHMcii30os0r0M6lQWe7TI.roa
Signing time: Sun 01 Jan 2023 23:04:47 +0000
ROA not before: Sun 01 Jan 2023 23:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 62.3.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:97:51:44:b2:dd:63:85:66:da:4b:06:9d:26:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Validity
Not Before: Jan 1 23:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efd88fe941cc7228b7d28b34af433a95059eed32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c2:92:b9:56:02:aa:cc:39:b5:4b:f2:10:e4:
4b:52:f5:8d:bd:ea:4b:f3:73:cd:65:ab:19:3a:f9:
e6:31:ff:66:32:f2:d4:81:e3:d4:62:fb:12:18:89:
e7:bd:44:76:47:f9:07:a3:88:6a:39:d8:f4:89:1e:
d5:96:70:73:04:b7:92:9b:42:42:a0:5f:09:8a:65:
2e:df:a2:23:11:ab:9e:a2:49:b1:37:c0:61:38:03:
9b:ac:8e:58:5f:8c:a1:c3:3f:08:07:57:6f:f3:bb:
2b:95:00:16:de:17:f3:99:70:cb:db:f4:ba:4a:a4:
ba:15:9f:88:fd:4b:31:d1:33:39:14:23:d1:ec:97:
34:ef:61:41:dd:3a:b2:ce:c5:fc:e9:77:fe:39:fe:
35:e1:73:49:61:24:28:55:cd:ac:e5:f3:29:fa:f7:
42:ad:f7:4b:96:4c:2a:44:18:8d:5b:a7:06:21:16:
8d:3a:d8:4b:18:9c:c9:5e:64:b7:cc:91:f8:07:55:
d5:53:e4:68:8c:0d:c7:35:c4:19:06:9a:b9:9f:b2:
a6:38:f6:25:29:48:24:85:82:0b:70:91:07:a7:ac:
39:fe:c4:26:f5:68:82:65:68:59:38:06:80:02:95:
8d:fa:79:27:7d:61:0a:e0:de:74:57:6b:f4:9d:67:
4c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D8:8F:E9:41:CC:72:28:B7:D2:8B:34:AF:43:3A:95:05:9E:ED:32
X509v3 Authority Key Identifier:
keyid:4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/79iP6UHMcii30os0r0M6lQWe7TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/TMjwLSKG13_ifUlMtspPfZM94vE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.57.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c9:3f:ca:ad:69:83:31:2d:a0:0a:69:b4:36:e2:bb:af:e9:
28:20:94:46:15:fa:d0:c7:5b:20:98:55:ae:cf:0e:b9:b7:ae:
4c:59:f2:4b:7d:64:2e:42:4d:1a:c6:b1:ce:e2:0b:7e:e8:8d:
5e:f8:4e:08:f0:6a:ca:9d:74:72:85:a3:c3:d2:c8:0c:e0:74:
69:cd:d7:76:e3:cc:1a:0b:7d:88:fd:63:da:9e:48:45:17:3c:
e4:29:df:0e:0d:fa:6f:ab:bf:a8:dc:f2:e8:9e:fa:6a:55:5b:
19:e7:48:e7:3f:66:91:76:93:03:84:f3:8f:07:40:94:7a:47:
67:dd:c3:5c:e4:c2:bf:4f:b9:c1:5f:81:eb:04:e2:64:75:c0:
8e:14:4c:a1:b3:c5:90:b7:3d:24:e2:23:73:f8:6f:5b:44:8c:
5f:f6:12:5b:35:b2:d7:fd:76:f7:21:0b:7e:a3:8e:5c:35:3a:
98:04:f0:28:6f:f7:cc:50:c8:c8:1a:5e:5a:96:b6:74:9f:4d:
6f:66:c8:77:74:1a:af:94:70:e8:20:09:91:e9:65:c6:38:0a:
4d:08:a5:40:41:2a:b7:66:d8:bb:bb:dc:ed:cc:25:f5:6e:c3:
54:ce:e9:59:bf:52:d4:ff:83:7e:02:8d:95:0d:3e:ba:a7:14:
36:2a:e6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:57:55 2025 by rpki-client