Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/NwWqRt10_hcEooo-gJ4j5TWI2i8.roa
File: NwWqRt10_hcEooo-gJ4j5TWI2i8.roa (raw, json)
Hash identifier: oyN1adehL3B5X7ogvIJAXQtdZshdmFoK1gP4dFCtg80=
Subject key identifier: 37:05:AA:46:DD:74:FE:17:04:A2:8A:3E:80:9E:23:E5:35:88:DA:2F
Certificate issuer: /CN=b986028c9feb6f142b3fecb64667f48874ba9c37
Certificate serial: 018CCA2B89C94052282CB4A97227EF37E7AD
Authority key identifier: B9:86:02:8C:9F:EB:6F:14:2B:3F:EC:B6:46:67:F4:88:74:BA:9C:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/NwWqRt10_hcEooo-gJ4j5TWI2i8.roa
Signing time: Tue 02 Jan 2024 12:35:00 +0000
ROA not before: Tue 02 Jan 2024 12:35:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60762
IP address blocks: 176.62.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:89:c9:40:52:28:2c:b4:a9:72:27:ef:37:e7:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b986028c9feb6f142b3fecb64667f48874ba9c37
Validity
Not Before: Jan 2 12:35:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3705aa46dd74fe1704a28a3e809e23e53588da2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:f8:d0:94:a7:3e:a7:45:1e:dd:18:e6:69:
c1:da:55:4c:2d:47:bf:ab:fe:fb:e9:51:d1:d9:f3:
e6:f8:bd:38:31:23:5f:75:3f:d3:e2:10:cd:d9:d2:
d6:6c:f1:6f:b6:fa:2c:65:4a:3b:2a:e9:09:ec:67:
c2:dd:78:21:e9:31:b1:50:5c:9c:09:49:cc:83:db:
06:1d:ff:95:9a:a1:00:3a:31:5d:f9:52:1f:89:95:
2d:ab:d3:22:ba:ad:70:38:24:ab:92:81:eb:30:59:
54:24:21:c1:13:bf:d9:e9:09:13:45:9c:13:77:f1:
8c:26:d8:d5:4d:17:3f:c5:aa:6f:47:de:05:da:f6:
2e:27:6d:97:f3:23:f5:8d:8c:d2:6c:25:ca:20:fc:
bf:da:43:68:f7:e7:ee:4e:91:b5:8a:1f:f2:b4:0d:
93:25:cf:0f:30:c5:cf:2a:15:42:6d:a3:8a:d9:fc:
a7:30:10:3f:81:8b:13:5f:10:26:e9:da:8a:31:14:
76:dc:0f:37:62:60:83:cc:29:75:94:c9:37:7e:60:
d4:94:27:9c:a7:21:e7:ec:29:10:04:15:f0:95:06:
50:81:85:e8:b3:6e:f1:55:a9:1d:3a:08:ad:ef:4f:
40:21:70:fc:d4:48:b6:3b:06:ec:3d:49:16:79:f0:
81:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:05:AA:46:DD:74:FE:17:04:A2:8A:3E:80:9E:23:E5:35:88:DA:2F
X509v3 Authority Key Identifier:
keyid:B9:86:02:8C:9F:EB:6F:14:2B:3F:EC:B6:46:67:F4:88:74:BA:9C:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/NwWqRt10_hcEooo-gJ4j5TWI2i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/285850-7551-4229-87b6-3a4468c4dfdf/1/uYYCjJ_rbxQrP-y2Rmf0iHS6nDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.62.31.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e0:dc:08:57:c1:d4:69:ee:cb:81:20:29:d8:2e:fa:ef:cd:
89:f6:08:2c:35:90:d7:eb:76:3f:a2:eb:bb:c5:67:59:4e:2b:
18:20:97:f5:79:6c:2a:9e:52:bb:42:f3:f5:b4:4f:0f:9e:2a:
44:01:ef:84:7d:6a:db:e7:6d:aa:78:41:67:ab:6c:23:0b:3c:
d2:71:fb:91:41:00:1e:c5:0d:65:57:4b:80:cb:61:7c:89:b4:
37:c7:bf:c9:75:07:f4:68:22:f0:3e:4e:91:f4:e5:e5:21:25:
f0:33:27:d9:f6:1f:a3:12:0b:91:9b:bd:c9:6c:f7:fc:dc:9d:
19:da:ce:71:ea:fe:f7:a5:40:4b:23:e8:31:74:e6:7d:6a:89:
64:c1:3d:ce:46:50:47:7c:a3:d8:2a:35:7c:64:86:fc:e2:6f:
7a:a8:3b:da:c1:04:91:dd:48:19:53:54:e3:d5:2a:4c:24:f4:
0c:c5:9c:5e:ec:c4:4c:49:2f:4f:54:1d:f8:16:1f:09:0b:81:
47:e0:61:2b:5a:64:81:d0:54:df:f3:62:06:57:b6:0c:77:ac:
e3:f9:27:1b:b8:bd:b5:07:e6:8d:64:b4:9d:22:61:fb:98:ba:
2f:fe:2c:8c:0b:a4:39:36:0d:6c:5c:80:75:dd:14:7e:32:ed:
f6:40:13:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:24 2024 by rpki-client on console.sobornost.net