Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ojh3JtseG6wODFn31ipqC0n9fs4.roa
File: Ojh3JtseG6wODFn31ipqC0n9fs4.roa (raw, json)
Hash identifier: V3AD5XF03SRAPzSkwGk/OwLxtTWoSykuDscr75xOfT4=
Subject key identifier: 3A:38:77:26:DB:1E:1B:AC:0E:0C:59:F7:D6:2A:6A:0B:49:FD:7E:CE
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01961A1DA3F4E824962DA3FD98E5175B300D
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ojh3JtseG6wODFn31ipqC0n9fs4.roa
Signing time: Wed 09 Apr 2025 10:34:32 +0000
ROA not before: Wed 09 Apr 2025 10:34:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215930
IP address blocks: 62.60.188.0/22 maxlen: 24
62.60.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1a:1d:a3:f4:e8:24:96:2d:a3:fd:98:e5:17:5b:30:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Apr 9 10:34:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a387726db1e1bac0e0c59f7d62a6a0b49fd7ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e2:6b:cd:57:36:ec:c7:58:c3:95:40:8f:74:
53:ff:c9:03:76:6d:c8:4b:4a:2c:93:6c:56:af:1d:
bb:5b:7f:4b:f4:79:4a:af:0e:7c:ca:3c:05:1a:e2:
87:c1:17:89:46:2b:ab:1a:c5:cb:8d:d6:35:da:5d:
38:a4:20:e2:d7:ec:9f:67:d1:e9:b2:33:9d:ed:8c:
e1:a1:f2:45:e1:f9:93:9e:2a:18:10:d5:7c:24:46:
c7:cf:9c:d8:6a:f6:7d:5c:18:f8:75:4c:bc:35:73:
fb:2c:e7:18:b4:fb:b2:31:90:90:0a:76:ad:a2:5c:
8c:7e:4f:18:3b:e6:15:68:a4:9b:be:0d:de:36:9b:
51:3f:00:97:98:4c:6c:33:db:d0:5f:6d:19:5a:67:
6d:ac:5b:01:8a:3f:31:33:72:2e:fa:f0:54:ff:d3:
a7:47:cd:71:56:63:82:69:05:4c:7e:30:d0:cb:02:
76:ff:2d:34:7e:18:9d:89:96:b7:67:59:cc:ff:fd:
64:02:16:e7:9c:de:ae:fb:ee:2f:f7:6c:ba:6e:a4:
10:95:9a:d4:1e:bb:6a:eb:ba:3d:5d:20:90:13:07:
1f:f9:e3:b6:04:44:f2:22:a6:47:07:48:e3:bd:e2:
bf:32:dc:44:b3:e4:4c:9b:cc:7b:df:ee:d4:97:14:
bf:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:38:77:26:DB:1E:1B:AC:0E:0C:59:F7:D6:2A:6A:0B:49:FD:7E:CE
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ojh3JtseG6wODFn31ipqC0n9fs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.188.0/22
62.60.208.0/24
Signature Algorithm: sha256WithRSAEncryption
16:51:fb:d9:be:b6:88:ff:59:34:ff:3e:a6:ea:90:24:6b:d6:
dd:2d:35:db:ec:1b:b6:12:e5:e1:e7:51:cf:38:81:d9:18:fb:
16:9d:40:5b:34:df:ca:c6:b7:14:6c:43:6a:08:8e:e3:5b:9e:
fa:dd:82:85:2d:cb:3b:b4:80:5c:a0:74:7a:30:55:54:1b:c1:
d9:30:c2:c3:93:4a:fe:21:7c:85:74:8d:d6:d2:1e:9f:f4:6b:
72:b0:b5:fa:db:b0:01:86:61:e2:e4:b5:08:37:b7:c0:e0:4f:
08:e3:23:9e:e2:27:73:d2:fa:90:70:eb:97:ad:b4:86:1b:fb:
3c:5f:f4:b8:a0:46:ec:23:ec:4b:dc:db:09:58:24:da:4d:01:
23:38:ea:06:c8:fa:f7:51:7b:76:8f:46:e9:c0:10:74:0c:f8:
33:40:cd:3b:a1:b6:0f:28:40:48:2f:8e:9c:a7:72:e2:45:5c:
84:06:52:10:18:8a:9a:d7:25:35:2e:b0:92:1f:c5:81:e6:5b:
4e:26:5d:4d:c4:72:dd:7d:eb:77:ba:22:66:f9:03:9f:3d:6f:
2d:62:04:cd:2d:0a:5f:d2:75:c2:ed:34:08:87:40:2e:4e:74:
cf:be:a1:eb:d9:43:30:7c:64:b3:bf:99:b1:39:1c:ba:2c:c1:
83:65:45:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net