Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/db2cdyLpJPUt7Vp2id3UbZjmWzQ.roa
File: db2cdyLpJPUt7Vp2id3UbZjmWzQ.roa (raw, json)
Hash identifier: vrxqm0iNOm45ogs2n0cYA4WW2iWquZSDQ1Vb/MiE46Q=
Subject key identifier: 75:BD:9C:77:22:E9:24:F5:2D:ED:5A:76:89:DD:D4:6D:98:E6:5B:34
Certificate issuer: /CN=3877a25a531f4c87dfa48b3075f1073f56ba48d5
Certificate serial: 7724CA
Authority key identifier: 38:77:A2:5A:53:1F:4C:87:DF:A4:8B:30:75:F1:07:3F:56:BA:48:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHeiWlMfTIffpIswdfEHP1a6SNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/db2cdyLpJPUt7Vp2id3UbZjmWzQ.roa
Signing time: Sat 01 Jan 2022 02:58:25 +0000
ROA not before: Sat 01 Jan 2022 02:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 62.3.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7808202 (0x7724ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3877a25a531f4c87dfa48b3075f1073f56ba48d5
Validity
Not Before: Jan 1 02:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75bd9c7722e924f52ded5a7689ddd46d98e65b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:90:08:06:b7:c3:6c:16:5a:f0:d7:d4:e5:0f:
a9:88:6e:ea:5c:83:56:2c:70:47:28:64:3e:a0:c9:
0c:c1:73:fc:6e:60:f4:4f:e5:c5:2e:d9:ff:01:f2:
bc:94:4a:c8:90:d6:7a:1d:6e:53:0b:d0:ef:2d:53:
fd:97:28:7b:02:b4:0f:7c:13:9c:4f:87:b3:ac:c6:
aa:a6:cc:b8:0c:b2:88:40:95:7c:a9:47:bf:31:b0:
2e:5d:3c:34:a1:27:cf:e6:3b:14:11:51:12:05:36:
4c:0a:1c:d5:5f:92:0f:bc:da:10:b8:f6:8d:bc:a2:
62:08:8b:01:17:dd:e5:43:94:0a:7d:fc:3b:a9:d7:
20:4e:98:a7:ab:78:bf:48:70:8e:22:29:09:78:06:
d8:47:fa:4c:a4:0f:f5:ab:7d:fc:43:b7:87:86:25:
e5:b2:66:ca:2c:9c:97:eb:65:f4:98:cd:b6:4f:ba:
20:65:cc:5b:c2:ea:09:ab:6e:3e:d2:34:55:85:f2:
0c:ae:35:06:ae:85:89:f1:51:c0:80:8d:80:b0:9f:
f8:b1:47:f2:f7:ac:c1:d3:6c:ca:e3:ae:6a:5a:f9:
ec:46:fd:d6:23:03:69:fa:70:45:d1:3c:b3:d8:1a:
73:a5:d7:7e:6e:c5:22:13:20:fa:77:dc:5e:52:b0:
43:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BD:9C:77:22:E9:24:F5:2D:ED:5A:76:89:DD:D4:6D:98:E6:5B:34
X509v3 Authority Key Identifier:
keyid:38:77:A2:5A:53:1F:4C:87:DF:A4:8B:30:75:F1:07:3F:56:BA:48:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHeiWlMfTIffpIswdfEHP1a6SNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/db2cdyLpJPUt7Vp2id3UbZjmWzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/OHeiWlMfTIffpIswdfEHP1a6SNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:da:d6:3a:32:92:52:90:10:c2:7a:83:ea:de:2d:a1:b2:09:
ac:bf:8b:94:2e:3d:05:a4:aa:d7:50:36:93:84:9a:a7:0e:ed:
85:f9:30:23:63:d2:47:92:58:3e:e6:a0:04:36:c0:6d:34:e0:
11:e5:ee:68:d0:3f:7c:49:ab:aa:cf:ce:01:f4:dd:67:cb:7e:
ad:69:90:6b:1c:35:26:9d:49:91:21:b7:c6:52:54:2b:8e:0c:
db:b1:6a:f9:89:af:96:16:b4:37:1f:f2:e3:07:94:6b:2e:85:
f4:50:8f:9c:aa:85:2e:0d:1b:6c:08:b9:c8:37:2c:7c:df:e7:
1f:03:98:35:c5:03:a5:44:c0:87:e6:8e:82:29:18:11:7d:04:
ba:78:43:cb:c8:fb:f1:93:6c:d1:f3:98:60:41:43:dc:81:82:
13:59:d5:72:2c:80:e8:cd:15:9b:00:2d:7f:ac:05:cb:01:3c:
79:7d:ce:08:c2:01:7b:88:1d:46:9b:57:e7:7a:e8:3e:18:52:
a1:58:01:8e:58:dc:f9:b0:8e:24:06:9f:46:ed:f0:ed:fc:a7:
b8:f6:bf:0e:3d:84:ca:34:fc:29:36:72:2e:62:a2:a0:f8:40:
c1:f5:a7:73:5c:65:4a:50:5c:05:2c:51:db:6a:f7:f9:52:76:
f0:4b:3f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:50 2023 by rpki-client on console.sobornost.net