Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b0LYoiNT_M94sO4hgQzT9LOjW3o.roa
File: b0LYoiNT_M94sO4hgQzT9LOjW3o.roa (raw, json)
Hash identifier: 29KZSBeKJ1MeRgbcIt7axnjoW6ST0DAQw42kUK3CgZE=
Subject key identifier: 6F:42:D8:A2:23:53:FC:CF:78:B0:EE:21:81:0C:D3:F4:B3:A3:5B:7A
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01938D2FA4C546134CA85ED9EA72564C2EAE
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b0LYoiNT_M94sO4hgQzT9LOjW3o.roa
Signing time: Tue 03 Dec 2024 15:42:09 +0000
ROA not before: Tue 03 Dec 2024 15:42:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213773
IP address blocks: 170.62.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8d:2f:a4:c5:46:13:4c:a8:5e:d9:ea:72:56:4c:2e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Dec 3 15:42:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f42d8a22353fccf78b0ee21810cd3f4b3a35b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:24:66:e7:79:b9:ef:f3:97:d6:0c:33:f6:10:
c9:66:80:3e:40:d1:4e:7e:aa:54:18:0f:98:ae:48:
d1:8a:be:03:bd:ca:b7:dd:e0:1d:bf:e3:e7:8c:e8:
f5:6c:81:db:1d:bc:29:51:64:7a:c4:ba:33:9c:fd:
8f:a1:cd:f9:84:60:6f:8e:b2:43:d3:51:a6:89:e2:
c4:20:b2:47:d2:88:f3:de:7b:f8:aa:ab:91:b3:d7:
48:85:7b:57:30:33:9e:9d:c0:aa:fd:21:14:63:53:
11:1f:d6:9e:a4:09:36:87:8a:ac:94:bb:66:a4:fd:
bb:d2:1d:97:2d:34:08:4d:2b:64:32:59:ae:3a:0c:
c9:f9:ad:8d:f9:5e:f2:72:2b:89:fc:7c:dc:44:d8:
50:1a:21:fc:a4:2c:91:84:ad:8e:6d:6b:19:a7:d7:
1a:b4:78:97:89:51:76:29:a3:28:ca:62:65:2a:e3:
61:35:ad:c2:f3:0f:1d:19:ff:22:ab:26:d5:00:ef:
a1:89:6c:33:89:8f:66:ab:46:1c:48:6e:4d:da:8d:
a2:bb:cc:83:e2:ea:93:e9:d3:5b:2e:e9:e9:2d:ba:
35:dc:42:57:41:79:51:ba:4a:76:c1:ed:56:6a:58:
93:3c:36:e4:10:a5:2e:f4:6c:88:27:a4:3e:aa:2e:
fd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:42:D8:A2:23:53:FC:CF:78:B0:EE:21:81:0C:D3:F4:B3:A3:5B:7A
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/b0LYoiNT_M94sO4hgQzT9LOjW3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.203.0/24
Signature Algorithm: sha256WithRSAEncryption
89:11:2e:45:49:80:a5:80:dd:d5:4b:43:76:f7:c9:5a:f1:a2:
1c:20:0a:74:25:b2:d6:cd:f6:76:51:d9:f9:ad:e5:29:92:57:
67:c5:28:fc:a0:ee:53:89:43:c2:eb:1f:99:24:2e:2b:ff:db:
3e:72:85:37:43:9b:cd:c5:a7:65:f8:8b:70:2e:17:60:8b:cf:
b8:f6:25:23:df:84:59:ee:f4:62:df:8b:63:59:83:6d:71:98:
d8:29:10:3e:9b:b6:b0:4b:79:6b:8a:03:e7:a9:98:af:b7:71:
60:e9:17:f6:09:1e:27:1f:a4:f8:ed:65:30:48:a0:51:e1:8a:
bc:23:5f:ef:7e:f4:01:b1:57:35:89:42:9f:bb:7e:ea:36:48:
c4:bc:c0:08:04:fe:a8:1d:06:1f:2c:bf:0f:35:d1:68:e7:2d:
b9:f7:45:a6:7b:4a:5f:9a:aa:24:8e:9c:60:14:73:59:c8:3a:
a9:98:ee:3d:e7:93:fc:38:f7:91:6a:c5:96:ae:10:3f:53:7d:
39:fa:a8:b9:66:45:73:a2:8d:02:c6:c1:c6:c5:e3:e0:4f:96:
1d:24:95:e9:c0:ce:7c:0e:6d:71:12:3e:57:c3:2e:f0:59:3a:
38:54:8b:d0:20:08:31:0e:a8:2d:b0:ae:98:a6:41:ca:6b:5c:
11:0c:77:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:53 2024 by rpki-client on console.sobornost.net