Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/BQeTt7dmHmLt1JVsdkTjKGo7JUk.roa
File: BQeTt7dmHmLt1JVsdkTjKGo7JUk.roa (raw, json)
Hash identifier: bX3EjNBW9ASzvvTlwWvsnQTXZsdFTaq0t2V8yDed9oI=
Subject key identifier: 05:07:93:B7:B7:66:1E:62:ED:D4:95:6C:76:44:E3:28:6A:3B:25:49
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 01857EDC8E976E3DC3FD1FE0B33CFAD35F7B
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/BQeTt7dmHmLt1JVsdkTjKGo7JUk.roa
Signing time: Wed 04 Jan 2023 22:17:41 +0000
ROA not before: Wed 04 Jan 2023 22:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 2.59.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7e:dc:8e:97:6e:3d:c3:fd:1f:e0:b3:3c:fa:d3:5f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 4 22:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=050793b7b7661e62edd4956c7644e3286a3b2549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4f:0f:e3:66:a6:b3:70:2e:bb:be:a4:60:77:
2e:cb:62:13:ed:46:21:c0:5d:19:1f:94:a9:59:86:
5e:e0:55:cc:d6:e7:60:13:fa:f3:e9:64:e6:c4:05:
77:97:40:99:cf:6c:e5:e8:e5:a5:59:85:45:84:5e:
17:7e:33:8a:3d:5a:18:19:52:2f:2a:7b:32:b5:67:
43:b3:d8:a5:c9:82:95:74:a3:33:be:f3:e0:7e:58:
9a:0e:03:da:1a:d3:bd:7b:aa:bb:df:9f:3a:4e:ec:
ab:9e:fa:6d:f1:55:b3:98:fc:7a:9e:0b:67:a3:02:
bf:5f:2b:eb:05:8a:ad:ff:c1:d1:69:3c:d9:95:97:
89:a1:b6:02:c9:54:c7:c5:38:87:6f:5f:5e:d2:1e:
c4:ed:51:d5:d5:e8:0b:19:a8:e4:92:87:7b:48:82:
0e:de:47:f8:31:f8:03:c5:ee:dd:f8:90:ec:e6:58:
c9:8a:ca:83:54:75:5f:c9:5b:31:8e:3a:b4:4d:30:
ef:a1:be:c4:79:1b:60:a6:d8:f4:cc:bf:2e:c1:78:
1c:a5:d4:4a:21:44:10:5c:46:cd:03:c6:88:32:fb:
3c:ff:9f:ee:e6:96:60:f1:65:fb:92:7f:5a:5b:b9:
39:57:b8:1d:29:a1:82:d3:1f:f5:57:be:63:25:a1:
fb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:93:B7:B7:66:1E:62:ED:D4:95:6C:76:44:E3:28:6A:3B:25:49
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/BQeTt7dmHmLt1JVsdkTjKGo7JUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.63.0/24
Signature Algorithm: sha256WithRSAEncryption
55:50:dc:d3:a0:d1:06:94:21:1b:09:45:74:1b:5d:8d:6b:bd:
0d:2d:d3:57:9d:1e:f9:b5:4b:5e:56:e3:1b:7f:37:b3:a7:06:
a2:11:3b:01:ae:79:9a:e9:83:2e:b2:b5:ae:30:40:b7:53:15:
2d:09:5a:d7:e5:e4:30:7c:11:70:d0:e1:ac:65:ce:18:b8:a7:
46:07:c5:06:1e:37:25:66:dc:d0:55:d0:1f:b8:79:c5:02:b5:
1a:bf:c8:63:34:bf:ca:30:a0:34:1b:fc:bd:f1:dc:d5:d5:2f:
84:eb:86:30:12:60:4c:77:0c:fe:3e:e5:67:04:34:dd:5a:9d:
f6:1e:46:3a:bd:90:4f:c5:1a:ec:d8:42:31:ba:c9:13:64:4b:
83:34:ff:36:f2:06:42:e7:6c:5b:7a:a5:f5:c6:14:1d:f0:24:
b7:b0:fb:ab:6f:c9:42:cb:1c:c0:d4:85:73:15:30:61:ae:39:
36:35:42:a2:f1:5d:30:58:0a:cb:12:81:4b:d9:e2:8c:ef:f9:
4f:a8:dd:6f:08:39:ab:53:8c:39:02:85:6c:b7:0a:c6:d8:49:
28:f4:67:28:b3:a0:f9:d9:e7:04:7e:c7:cd:e9:e8:61:eb:6a:
08:57:23:3f:64:2b:0d:83:70:7e:46:ac:98:97:52:23:e7:56:
f9:2c:12:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:46 2025 by rpki-client