Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/5kzzesXDqM-C8HhW-EuvB-QzHMU.roa
File: 5kzzesXDqM-C8HhW-EuvB-QzHMU.roa (raw, json)
Hash identifier: FMBWHzeD8J4aTJbB1YLbgHy8//aVeNGjicSH4RuhLFs=
Subject key identifier: E6:4C:F3:7A:C5:C3:A8:CF:82:F0:78:56:F8:4B:AF:07:E4:33:1C:C5
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 040C7AAD
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/5kzzesXDqM-C8HhW-EuvB-QzHMU.roa
Signing time: Sat 01 Jan 2022 08:03:36 +0000
ROA not before: Sat 01 Jan 2022 08:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399746
IP address blocks: 2.59.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67926701 (0x40c7aad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 08:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e64cf37ac5c3a8cf82f07856f84baf07e4331cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:3b:e3:ea:ae:bd:5f:7a:7a:d1:5b:83:13:
c2:1e:de:60:09:d5:25:78:51:a3:4b:19:92:30:04:
40:48:a0:91:13:8a:f2:34:c9:6d:25:36:01:b1:72:
41:eb:b8:00:66:51:50:b9:bb:25:d0:22:b6:0b:fc:
7d:56:09:47:32:e2:69:e6:bf:cd:1b:cb:35:70:72:
19:ea:31:e5:95:b2:c3:cb:24:6a:ab:c3:09:c0:a5:
51:4a:71:b1:5e:d8:95:e9:af:22:3c:03:0a:17:dd:
4b:b8:17:60:22:09:d4:e2:88:c6:44:4a:81:c3:16:
33:dd:20:ca:0f:8b:6f:fa:8e:1f:ab:0e:01:6d:42:
28:98:72:ab:c0:39:56:96:a2:f5:fd:f2:6a:e6:2a:
6d:06:c2:2c:ef:d2:c8:b5:50:2c:de:d9:a3:75:a9:
e3:5a:ca:b9:11:19:93:c7:cd:35:fd:15:45:56:44:
fd:00:68:59:db:55:cc:9d:08:db:79:fa:db:62:00:
41:02:9e:68:49:fc:31:8d:5e:45:45:78:22:77:08:
10:56:93:de:6e:ba:64:c3:27:6b:03:bd:4c:a2:b8:
97:8b:37:02:76:82:1a:05:35:ec:2d:a9:50:72:3b:
f6:6f:16:45:b8:71:1d:a1:3e:87:13:dd:89:95:96:
e8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:4C:F3:7A:C5:C3:A8:CF:82:F0:78:56:F8:4B:AF:07:E4:33:1C:C5
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/5kzzesXDqM-C8HhW-EuvB-QzHMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.60.0/22
Signature Algorithm: sha256WithRSAEncryption
96:ea:b3:87:7e:f1:30:07:f6:97:11:84:a6:1b:db:b1:a5:4b:
48:a5:62:88:ca:e5:4c:ba:61:b6:2b:a8:c5:90:08:06:22:e0:
78:13:2d:bd:bb:cd:52:51:bf:27:7f:93:26:86:cf:58:90:a0:
72:30:f8:79:46:88:74:a2:e1:db:42:5e:b9:6a:2a:fa:96:fd:
27:da:01:bd:07:72:a4:51:ca:aa:ad:cb:67:d0:57:e0:69:55:
eb:5a:a8:f1:19:b1:bd:16:ec:70:18:32:49:dc:14:ad:4f:16:
7b:e3:f7:36:75:4e:4d:d2:e9:1e:08:30:3e:71:f1:26:4f:bc:
2a:89:19:40:19:7c:a2:ab:c2:31:57:3b:d8:2f:25:e0:79:d4:
b3:77:00:1c:da:77:f7:92:bd:3c:aa:aa:63:30:bc:6d:02:5b:
2d:de:8a:9f:f9:25:3a:2e:01:b8:2e:f2:01:ba:60:c1:d1:02:
7e:c4:00:50:31:47:47:4a:ac:ad:7c:f5:9b:2f:78:0b:ae:7e:
f1:6b:20:02:d6:a8:ff:f0:b5:b4:e5:cc:86:f6:dc:80:9d:d9:
4e:2e:83:e8:4f:d9:93:bf:b4:90:df:47:b3:54:b2:74:34:f8:
39:18:ee:9c:02:f5:c6:0f:3d:36:7c:74:fc:c7:bf:5c:8a:f4:
25:65:70:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:01 2025 by rpki-client