Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/Y7PFR1AcfUDa5WoNJCBqS3QlUqs.roa
File: Y7PFR1AcfUDa5WoNJCBqS3QlUqs.roa (raw, json)
Hash identifier: Wv6ekzOe8NLiKCI6n/SgwcD6sKF1kP4pqcOdTIjNnr4=
Subject key identifier: 63:B3:C5:47:50:1C:7D:40:DA:E5:6A:0D:24:20:6A:4B:74:25:52:AB
Certificate issuer: /CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Certificate serial: 0194228E2B513F0FC2FDD7AAEAB81421B0A2
Authority key identifier: 49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/Y7PFR1AcfUDa5WoNJCBqS3QlUqs.roa
Signing time: Wed 01 Jan 2025 15:48:50 +0000
ROA not before: Wed 01 Jan 2025 15:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8565
IP address blocks: 62.244.76.0/23 maxlen: 23
62.244.82.0/23 maxlen: 23
62.244.100.0/22 maxlen: 24
62.244.104.0/22 maxlen: 22
62.244.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:2b:51:3f:0f:c2:fd:d7:aa:ea:b8:14:21:b0:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Validity
Not Before: Jan 1 15:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63b3c547501c7d40dae56a0d24206a4b742552ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8e:c5:0c:6f:89:66:85:c5:99:8e:d6:23:ec:
19:fe:d5:41:7a:aa:1a:50:ec:10:f5:05:74:d8:f4:
20:d4:bd:d8:8e:10:e1:fd:12:55:67:7a:c3:df:2d:
04:d7:3b:1a:ea:43:34:a7:ce:f2:66:ee:7b:96:d8:
f8:e8:2a:a3:52:20:57:5e:fe:75:f4:60:35:58:ed:
69:38:5f:40:67:30:64:a4:d0:0d:c0:21:e0:fa:93:
8f:94:81:37:30:4c:a4:27:46:27:ef:3c:f3:b4:4b:
40:f9:82:98:87:16:25:c4:b6:48:34:61:71:27:5b:
97:fe:99:6c:d9:76:54:c8:58:ec:a4:22:f6:96:33:
4f:f0:9c:b9:8b:cf:9d:27:a8:a6:b5:fb:b4:06:10:
e5:5a:3c:1f:c1:49:c1:f3:4f:f3:6d:a4:14:cf:93:
b8:7e:c4:5a:85:49:52:7c:5e:b8:bd:46:6e:b2:74:
ea:e4:5b:4c:19:c7:78:b2:ee:fc:71:00:e1:b7:ed:
bb:44:63:22:4d:58:c3:f2:7b:7f:32:f6:19:6b:57:
30:0f:50:b3:a6:03:2d:66:a8:df:bd:d2:7c:69:ec:
97:66:2d:53:e6:7c:07:df:60:35:25:8b:31:4b:be:
38:4c:bc:2d:50:73:42:4c:a8:b5:63:23:d4:0d:80:
55:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B3:C5:47:50:1C:7D:40:DA:E5:6A:0D:24:20:6A:4B:74:25:52:AB
X509v3 Authority Key Identifier:
keyid:49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/Y7PFR1AcfUDa5WoNJCBqS3QlUqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/STotSDdjMKWC-vPjAy73sLzKM-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.76.0/23
62.244.82.0/23
62.244.100.0-62.244.107.255
62.244.120.0/22
Signature Algorithm: sha256WithRSAEncryption
80:2a:a2:17:f0:42:a8:ea:fe:ba:f9:5d:c5:0c:02:05:8e:95:
bb:82:8a:59:b5:8d:f4:ae:95:d0:92:20:08:02:cc:af:0d:20:
46:77:98:94:76:59:32:81:dd:02:87:67:d3:70:1a:40:f3:49:
7d:1c:ff:1d:07:85:b8:41:e7:3f:79:ae:f8:08:1b:b2:f9:e0:
2f:5a:3a:be:f3:5f:12:6b:94:bb:7e:59:d7:5f:4d:76:04:55:
62:9b:b1:81:c0:e5:d6:9a:ce:c1:ad:55:82:fb:76:a9:0f:1b:
d9:7d:a6:d2:14:bf:04:03:75:69:fa:a7:44:1b:f9:75:c3:c9:
76:75:be:69:fb:25:f4:05:53:32:b4:25:f9:bf:6e:f6:62:ae:
30:51:22:c9:97:5d:82:e7:53:2f:22:2e:34:69:dc:ef:47:80:
24:fa:71:e6:64:31:8d:c3:36:9a:fb:70:41:7b:81:52:91:73:
b7:be:6a:8d:d6:33:cc:7b:ab:e5:9d:0f:2f:82:e2:36:72:0f:
67:ca:37:19:02:f9:95:88:6d:e8:be:f6:f0:5d:ae:ef:71:29:
6c:ab:8a:3d:1b:89:2b:f2:4b:76:5b:8c:60:e6:09:58:fb:51:
5a:fb:3a:fc:fd:98:dc:7c:b3:82:67:81:91:3c:ea:a4:b3:0a:
d1:a5:1b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net