Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62390.roa
File: AS62390.roa (raw, json)
Hash identifier: pPcQmLwBshlMuXcwwn1x0Hkzg2ETdxanwJlYF3TpwaE=
Subject key identifier: A7:A9:24:96:18:BA:59:E5:32:4C:52:60:26:05:5C:76:B9:8C:85:D8
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6D89405298DB2D4098F468CC015EB37FB16F84B0
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62390.roa
Signing time: Fri 31 Jan 2025 19:53:52 +0000
ROA not before: Fri 31 Jan 2025 19:48:52 +0000
ROA not after: Fri 30 Jan 2026 19:53:52 +0000
asID: 62390
IP address blocks: 179.61.217.0/24 maxlen: 24
191.101.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:89:40:52:98:db:2d:40:98:f4:68:cc:01:5e:b3:7f:b1:6f:84:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jan 31 19:48:52 2025 GMT
Not After : Jan 30 19:53:52 2026 GMT
Subject: CN=A7A9249618BA59E5324C526026055C76B98C85D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:59:39:f9:30:33:b0:b4:f8:9b:b0:35:f0:16:
fd:56:4f:19:c9:94:58:43:fe:cf:4e:6a:7b:3f:5d:
50:64:4a:c0:99:dc:af:b3:a2:cd:24:14:56:27:90:
b1:5d:e3:eb:0d:12:35:72:6b:1a:b8:fe:2f:92:4d:
1b:02:88:1a:5f:4c:8c:2b:21:37:c8:4e:54:b4:5e:
f6:95:39:4a:0f:7e:9c:9e:40:97:fe:ea:48:87:76:
2e:76:82:13:e8:fc:fc:04:f0:ef:0c:6a:80:97:e4:
a9:16:4c:c5:fa:3d:18:14:85:c8:54:da:ab:dd:74:
2a:d0:a8:91:7e:2d:98:d0:2c:27:c1:99:d9:be:22:
79:03:42:b3:c1:2e:53:56:85:58:c3:b2:fd:5f:89:
72:b3:2c:c2:aa:da:9b:1e:95:0d:93:29:6d:f0:01:
ec:dd:6f:00:09:dd:ab:8f:b8:fb:ed:ae:13:f1:cc:
2d:5c:a1:23:ea:a5:d4:b6:b3:80:c3:5c:c8:e6:21:
bd:52:4f:e6:0a:2e:cc:4d:36:a9:ee:93:c1:1b:fe:
3f:38:2a:eb:9d:de:22:cf:61:d5:c6:83:5f:86:5f:
f3:77:2e:32:37:74:11:8e:95:be:48:68:95:54:ab:
61:a7:0b:44:9e:a0:f1:21:fc:be:d7:9b:82:b4:fa:
44:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A9:24:96:18:BA:59:E5:32:4C:52:60:26:05:5C:76:B9:8C:85:D8
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS62390.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.217.0/24
191.101.8.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d4:f2:f8:19:e7:62:4f:97:20:27:6f:93:31:bd:78:3c:c4:
54:9b:67:b9:c6:08:b4:3b:0f:67:2b:69:5d:4a:c2:50:c4:d7:
49:89:78:3b:b4:63:59:26:47:c2:0c:96:5a:d0:83:51:54:66:
4c:51:a0:31:84:95:9d:1c:50:7f:9e:62:27:28:3f:c7:4c:00:
31:5b:59:63:b1:f2:75:ad:1e:e1:00:96:d6:11:9e:be:21:d2:
12:53:22:c2:bd:d3:db:79:a5:d2:b4:1f:f7:e4:e3:90:a3:93:
de:65:a0:2b:b5:52:a3:02:e4:a5:52:bb:57:4e:40:78:86:9e:
cd:ee:90:ec:1e:d6:4e:75:df:8f:0f:97:70:3d:f2:fd:2f:83:
16:99:6b:08:29:b4:09:ae:3d:fe:c9:55:08:15:fd:73:76:cb:
73:7a:51:88:f4:05:c1:c7:47:ad:c3:a6:35:5e:97:65:b6:d9:
79:ee:07:5a:50:cc:1c:1e:ac:1f:32:e7:4d:89:56:41:04:4f:
3b:7c:87:12:a4:0a:fe:e3:fa:86:c7:c2:c6:6c:46:14:f2:79:
65:c5:87:14:ae:8c:b3:9d:61:ea:08:4c:97:ac:45:c9:60:16:
2b:ef:bf:4b:29:49:97:5b:70:ac:47:09:78:ec:c1:29:63:9b:
4b:af:8f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:35 2025 by rpki-client