Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/578642-9428-4a17-b936-88329b03b2aa/1/qy-1xrem-bcZLxz00SMFxWQyMzU.roa
File: qy-1xrem-bcZLxz00SMFxWQyMzU.roa (raw, json)
Hash identifier: YADfx4Ht+spFheY6Lp3WCP7Tk5Up2LOzre6DJ60xe/A=
Subject key identifier: AB:2F:B5:C6:B7:A6:F9:B7:19:2F:1C:F4:D1:23:05:C5:64:32:33:35
Certificate issuer: /CN=ac345e7c5920cc89a3ea6cada2be505283684270
Certificate serial: 522548
Authority key identifier: AC:34:5E:7C:59:20:CC:89:A3:EA:6C:AD:A2:BE:50:52:83:68:42:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDRefFkgzImj6mytor5QUoNoQnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/578642-9428-4a17-b936-88329b03b2aa/1/qy-1xrem-bcZLxz00SMFxWQyMzU.roa
Signing time: Fri 03 Jun 2022 12:11:21 +0000
ROA not before: Fri 03 Jun 2022 12:11:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 62.3.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5383496 (0x522548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac345e7c5920cc89a3ea6cada2be505283684270
Validity
Not Before: Jun 3 12:11:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab2fb5c6b7a6f9b7192f1cf4d12305c564323335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e7:8d:bb:9f:63:24:34:97:13:33:54:c2:58:
af:11:6a:c5:84:67:d4:e6:4a:a9:b2:71:b3:14:97:
08:c1:1f:73:56:94:c0:1a:b0:d8:69:4d:96:9b:df:
6a:42:a4:4f:97:d2:5d:dc:05:e3:5a:0a:ed:09:fe:
47:03:ec:20:68:2c:34:3c:fb:60:de:6b:31:f2:65:
e3:c1:e2:b6:0b:c6:4d:f8:26:eb:7f:fc:35:9e:62:
65:22:75:09:eb:9f:20:24:2c:2b:fa:91:8b:3c:8b:
45:ce:e7:5e:06:b8:09:87:39:4b:6d:56:82:e2:f8:
81:a6:04:76:31:7f:f0:61:25:9a:93:23:22:0a:36:
5b:be:b3:11:40:83:1c:75:6a:3c:e6:44:43:2e:ae:
38:c6:8d:d4:dd:f2:af:f0:d9:47:92:92:16:16:59:
02:35:5b:e0:fd:c3:d8:1d:9d:92:8f:4a:51:93:4f:
00:d1:a3:1b:d2:0e:62:2d:5e:4a:9a:34:ca:97:2b:
a6:27:3c:6f:b3:15:19:14:d2:8b:d3:14:10:59:d1:
92:47:28:28:b6:4b:10:98:03:76:35:83:8d:98:99:
c8:fc:8a:62:37:8d:9a:57:d8:eb:25:de:8c:4f:68:
1b:30:9a:19:72:64:92:eb:32:9b:94:ed:45:54:4e:
c4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2F:B5:C6:B7:A6:F9:B7:19:2F:1C:F4:D1:23:05:C5:64:32:33:35
X509v3 Authority Key Identifier:
keyid:AC:34:5E:7C:59:20:CC:89:A3:EA:6C:AD:A2:BE:50:52:83:68:42:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDRefFkgzImj6mytor5QUoNoQnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/578642-9428-4a17-b936-88329b03b2aa/1/qy-1xrem-bcZLxz00SMFxWQyMzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/578642-9428-4a17-b936-88329b03b2aa/1/rDRefFkgzImj6mytor5QUoNoQnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.54.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:05:f5:48:bf:a5:6a:a6:0b:9f:c6:8b:37:ba:e4:d0:89:7a:
05:23:0f:1a:5d:f0:4b:b5:09:d3:5c:db:38:21:88:0b:07:da:
78:9e:16:95:e8:9e:37:0b:ab:f0:f9:b2:c5:e0:75:8c:48:3a:
6e:ee:6e:3c:0d:d0:fd:57:e3:91:75:0f:3e:a9:85:41:6a:88:
69:ef:87:15:cd:d4:c7:1f:45:27:d8:3d:90:6e:b2:20:0f:6f:
0d:df:dd:64:c1:7e:86:37:95:70:3b:bd:84:2a:ff:fb:6c:10:
e0:f7:bb:ec:79:d0:b0:f9:ee:d9:f5:fe:da:d2:6a:a0:7f:39:
08:7d:0e:4c:c9:69:8a:d8:e4:5b:86:9c:66:6f:68:d5:35:f2:
99:b7:b6:b9:a7:1b:38:f5:0a:d7:74:5d:0b:86:10:93:ce:c5:
3e:85:89:4f:a6:34:41:25:48:84:fc:5f:78:e7:05:d0:6c:16:
a1:94:25:02:92:3e:f1:ed:26:18:61:09:8c:86:f0:dc:a9:3a:
f0:41:6e:65:20:70:1f:20:3b:1d:60:33:6f:92:3d:d8:e2:b3:
67:89:99:73:11:31:79:ea:c5:58:b6:bd:ec:8c:04:56:05:62:
e5:b2:c8:a1:76:56:f3:b6:8d:3c:e0:2c:ba:f6:12:58:10:db:
52:fe:96:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:45:01 2025 by rpki-client