Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bbec8d-2be0-4bf4-9dce-0a22b35abc80/1/mDkOgEkRn44FBCmZCMSc0m3faGo.roa
File: mDkOgEkRn44FBCmZCMSc0m3faGo.roa (raw, json)
Hash identifier: LXA+u4Iz8LRYHspTGD2tb8vpJObnMdUgymhuIkvW7GY=
Subject key identifier: 98:39:0E:80:49:11:9F:8E:05:04:29:99:08:C4:9C:D2:6D:DF:68:6A
Certificate issuer: /CN=5265f9bfdd3a7855a617dc957227b9eedda433a9
Certificate serial: 018CC50076DA2D0F4AF898F19F907FADF19D
Authority key identifier: 52:65:F9:BF:DD:3A:78:55:A6:17:DC:95:72:27:B9:EE:DD:A4:33:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmX5v906eFWmF9yVcie57t2kM6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bbec8d-2be0-4bf4-9dce-0a22b35abc80/1/mDkOgEkRn44FBCmZCMSc0m3faGo.roa
Signing time: Mon 01 Jan 2024 12:29:51 +0000
ROA not before: Mon 01 Jan 2024 12:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 62.68.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:76:da:2d:0f:4a:f8:98:f1:9f:90:7f:ad:f1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5265f9bfdd3a7855a617dc957227b9eedda433a9
Validity
Not Before: Jan 1 12:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98390e8049119f8e0504299908c49cd26ddf686a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a2:60:4f:6b:c6:71:ea:81:3d:31:ee:ff:8d:
77:0f:98:bf:c9:8f:9b:61:d4:16:a6:7b:a1:0c:ee:
7f:e7:5b:de:eb:17:d4:2d:12:86:6f:8f:46:cb:78:
0f:89:95:ea:a0:47:80:45:85:12:04:60:63:49:ae:
79:45:24:c2:f9:02:bc:60:3c:51:0c:00:a7:f6:86:
ca:65:83:9e:7e:38:31:b2:83:27:f6:b8:f8:b9:11:
b1:74:2a:4c:da:f1:fb:6f:11:c9:fd:1c:b4:e8:ec:
52:a0:49:36:46:91:b4:4c:a1:47:99:cb:dd:2c:9e:
dc:ee:43:6a:75:89:9d:af:a9:54:00:a0:ec:62:f7:
52:16:ba:4e:63:5d:f5:f1:59:07:52:09:d8:a2:34:
00:5d:d4:c2:21:d3:bf:70:7b:28:5b:eb:a2:4b:b6:
42:d0:75:a1:5a:79:f4:dc:d5:e9:1f:50:db:69:65:
c1:15:fc:1f:2d:42:0e:a3:de:20:bd:78:72:75:0a:
ac:e9:cc:7d:0b:7a:c6:b0:6d:cf:08:45:65:6a:e9:
1f:d5:ea:83:91:2f:0e:19:df:24:93:66:e9:2a:c6:
98:94:36:d2:b8:01:d6:a6:1d:20:ed:f5:f1:a7:a7:
03:4e:66:ee:70:5c:06:68:49:2c:a7:cf:c6:95:47:
f0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:39:0E:80:49:11:9F:8E:05:04:29:99:08:C4:9C:D2:6D:DF:68:6A
X509v3 Authority Key Identifier:
keyid:52:65:F9:BF:DD:3A:78:55:A6:17:DC:95:72:27:B9:EE:DD:A4:33:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmX5v906eFWmF9yVcie57t2kM6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bbec8d-2be0-4bf4-9dce-0a22b35abc80/1/mDkOgEkRn44FBCmZCMSc0m3faGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bbec8d-2be0-4bf4-9dce-0a22b35abc80/1/UmX5v906eFWmF9yVcie57t2kM6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.83.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a8:23:4b:0e:8a:8a:f1:47:83:62:74:be:6e:60:6f:cd:cb:
8d:c1:52:a9:89:07:76:6c:e5:d7:3a:ac:71:6f:bb:2a:ab:42:
5b:ed:1c:22:12:b4:3f:dd:16:65:de:c8:70:ee:f0:74:a9:45:
eb:74:0d:aa:9f:2d:22:aa:30:31:9d:bc:81:54:af:89:f6:44:
e3:7d:d6:17:d9:70:29:db:1b:c2:7e:8f:c9:d5:84:f2:9f:a0:
7a:53:a8:cc:cb:f5:d5:42:37:1f:06:fc:3d:be:2a:2f:d4:b9:
cd:05:56:e3:2f:97:51:a1:a2:73:8c:d5:77:72:03:a9:28:cd:
97:45:7d:48:d8:2c:4a:fc:4a:b3:73:26:83:35:eb:6c:aa:6c:
2c:c7:63:fb:57:09:dd:b3:65:b3:85:22:1a:b5:e9:dd:83:f8:
1a:17:3e:72:b4:6e:6b:59:e5:f3:38:5d:58:07:f1:d9:3c:65:
3c:29:6b:cd:71:a7:68:65:9f:7c:1a:d3:f1:39:7a:fc:15:ef:
e6:24:00:0f:ca:d3:9c:fa:bf:7c:5f:e7:62:0a:8a:3e:37:c3:
c1:35:ee:25:a8:4a:1d:ac:c0:7d:d1:fb:2d:47:f6:6d:ff:db:
0a:fe:97:eb:30:25:cf:36:ce:63:1d:52:18:c2:98:13:84:b2:
65:a3:dc:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAHbaLQ9K+Jjxn5B/rfGdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjVmOWJmZGQzYTc4NTVhNjE3ZGM5NTcyMjdiOWVlZGRh
NDMzYTkwHhcNMjQwMTAxMTIyOTUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODM5MGU4MDQ5MTE5ZjhlMDUwNDI5OTkwOGM0OWNkMjZkZGY2ODZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiqJgT2vGceqBPTHu/413D5i/yY+b
YdQWpnuhDO5/51ve6xfULRKGb49Gy3gPiZXqoEeARYUSBGBjSa55RSTC+QK8YDxR
DACn9obKZYOefjgxsoMn9rj4uRGxdCpM2vH7bxHJ/Ry06OxSoEk2RpG0TKFHmcvd
LJ7c7kNqdYmdr6lUAKDsYvdSFrpOY1318VkHUgnYojQAXdTCIdO/cHsoW+uiS7ZC
0HWhWnn03NXpH1DbaWXBFfwfLUIOo94gvXhydQqs6cx9C3rGsG3PCEVlaukf1eqD
kS8OGd8kk2bpKsaYlDbSuAHWph0g7fXxp6cDTmbucFwGaEksp8/GlUfw4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJg5DoBJEZ+OBQQpmQjEnNJt32hqMB8GA1UdIwQY
MBaAFFJl+b/dOnhVphfclXInue7dpDOpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1YNXY5MDZlRldtRjl5VmNpZTU3dDJrTTZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iYmVjOGQtMmJlMC00YmY0LTlkY2Ut
MGEyMmIzNWFiYzgwLzEvbURrT2dFa1JuNDRGQkNtWkNNU2MwbTNmYUdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iYmVjOGQtMmJlMC00YmY0LTlkY2UtMGEyMmIzNWFiYzgw
LzEvVW1YNXY5MDZlRldtRjl5VmNpZTU3dDJrTTZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPkRTMA0G
CSqGSIb3DQEBCwUAA4IBAQAuqCNLDoqK8UeDYnS+bmBvzcuNwVKpiQd2bOXXOqxx
b7sqq0Jb7RwiErQ/3RZl3shw7vB0qUXrdA2qny0iqjAxnbyBVK+J9kTjfdYX2XAp
2xvCfo/J1YTyn6B6U6jMy/XVQjcfBvw9viov1LnNBVbjL5dRoaJzjNV3cgOpKM2X
RX1I2CxK/EqzcyaDNetsqmwsx2P7Vwnds2WzhSIatendg/gaFz5ytG5rWeXzOF1Y
B/HZPGU8KWvNcadoZZ98GtPxOXr8Fe/mJAAPytOc+r98X+diCoo+N8PBNe4lqEod
rMB90fstR/Zt/9sK/pfrMCXPNs5jHVIYwpgThLJlo9zD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:33 2024 by rpki-client on console-fra.rpki-client.org