Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
File: AS62240.roa (raw, json)
Hash identifier: ZLI6gmuN82o5qq/TOumVz222VbZODg/DUdx4e82uEPs=
Subject key identifier: 35:40:F7:AA:70:43:8D:2F:73:D3:00:7D:73:19:8F:2B:B4:EA:84:DA
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 769042DE58FD7111A6ECCC24A7F48CEF78D49F93
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
Signing time: Wed 18 Dec 2024 06:41:14 +0000
ROA not before: Wed 18 Dec 2024 06:36:14 +0000
ROA not after: Wed 17 Dec 2025 06:41:14 +0000
asID: 62240
IP address blocks: 140.150.236.0/22 maxlen: 22
146.103.28.0/22 maxlen: 22
147.79.2.0/23 maxlen: 23
150.241.174.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:90:42:de:58:fd:71:11:a6:ec:cc:24:a7:f4:8c:ef:78:d4:9f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Dec 18 06:36:14 2024 GMT
Not After : Dec 17 06:41:14 2025 GMT
Subject: CN=3540F7AA70438D2F73D3007D73198F2BB4EA84DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:1e:db:e0:a9:7f:7c:7d:c9:86:a0:66:79:
91:11:b7:22:fe:ae:e3:56:90:f1:41:be:df:d2:eb:
f2:d6:84:a1:b9:08:d9:90:50:ac:40:5d:89:f6:b8:
03:81:4f:b1:47:14:91:d2:00:a9:a5:1b:6d:04:d4:
56:2a:67:8c:0c:71:ee:62:43:49:e6:38:32:a7:fc:
8e:97:76:f5:50:9c:b4:41:80:56:3d:86:1a:36:03:
da:b8:2a:28:5b:fe:7f:8f:c3:f3:2d:fe:ec:41:ba:
b6:f7:9c:c9:5f:5f:84:0f:e7:70:35:7b:e0:f6:2d:
b0:4b:25:da:f3:43:8d:c8:f6:76:7f:7f:84:bb:01:
be:be:af:d0:27:c2:33:08:35:7a:20:75:ad:be:87:
dd:d6:96:d0:f2:58:ef:45:f6:a8:1f:e5:02:88:4f:
72:87:39:f7:9e:98:7f:e4:aa:4a:0d:cd:4c:87:b5:
b9:f6:af:08:73:16:66:3d:e7:ad:63:1a:40:db:70:
8e:34:b5:ec:81:f2:9a:f4:2f:90:c8:44:fa:b6:19:
6c:2e:52:e2:5e:f1:fc:8c:e6:33:1c:71:c1:f5:45:
e3:fe:44:07:6b:c2:40:64:6b:f6:5f:58:a6:01:9a:
bb:d1:73:e4:3a:4c:2d:92:e9:a1:87:47:0c:ff:e2:
b5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:40:F7:AA:70:43:8D:2F:73:D3:00:7D:73:19:8F:2B:B4:EA:84:DA
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS62240.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.236.0/22
146.103.28.0/22
147.79.2.0/23
150.241.174.0/23
Signature Algorithm: sha256WithRSAEncryption
83:9d:11:ff:39:69:b4:b3:1e:70:e2:5c:ad:c3:0a:83:67:12:
bc:e9:04:55:30:ee:87:50:31:1b:3c:62:3a:2c:68:98:3a:54:
d4:18:1f:b5:7c:22:6b:77:1e:c8:16:01:70:c5:4b:a7:a9:7b:
a3:f3:4b:9d:76:4b:98:4a:64:da:d2:2d:8b:b5:5a:99:31:d8:
4c:4b:28:6a:23:00:af:d0:48:80:ee:57:3c:3a:35:21:52:71:
41:0f:77:34:dc:39:c1:a2:fb:d6:30:2d:52:ab:39:8e:ad:38:
85:89:34:97:96:7e:46:90:b4:2e:16:4f:47:8e:91:0d:7e:4f:
e9:60:4e:87:a9:e8:e7:54:df:f1:3a:15:3d:14:4e:59:20:66:
00:10:98:c1:07:46:a1:ca:a4:6b:ff:9a:8c:fa:a1:b2:32:93:
50:34:52:ff:7e:91:5d:07:fc:4f:b4:e1:60:9c:99:7f:a8:49:
a6:fe:02:f7:e3:e5:90:7a:1a:e2:0a:26:b5:40:4c:16:da:87:
be:fd:df:a8:1e:ee:8b:71:97:48:2d:c9:90:83:d4:74:bd:14:
37:26:e4:ff:ee:66:ad:80:e7:b4:5a:af:b5:ba:9a:19:85:11:
d8:b1:67:cb:14:df:d4:23:cd:cc:9c:ff:d7:f0:9a:a7:6c:cd:
40:83:81:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:11:49 2025 by rpki-client