Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa
File: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (raw, json)
Hash identifier: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=
Subject key identifier: 73:F6:CD:D2:A7:99:F7:C9:0B:2B:F9:A3:F2:32:C9:09:48:42:B8:39
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 0194228E32CED7D3B892DE8401F93E403327
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa
Signing time: Wed 01 Jan 2025 15:48:51 +0000
ROA not before: Wed 01 Jan 2025 15:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28707
IP address blocks: 62.213.192.0/19 maxlen: 24
62.213.238.0/24 maxlen: 24
2a00:c78::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:32:ce:d7:d3:b8:92:de:84:01:f9:3e:40:33:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Jan 1 15:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73f6cdd2a799f7c90b2bf9a3f232c9094842b839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:06:e0:85:40:ab:99:6a:0f:f9:5c:0d:37:
c7:b4:81:ff:07:e9:9a:1d:a8:78:39:ff:96:2c:2f:
56:9a:f6:0f:a7:f9:8e:6b:98:49:9b:04:11:ff:da:
84:c0:07:da:70:4a:f1:b2:21:d5:66:ac:38:c2:09:
14:ad:dd:65:27:59:48:24:26:94:9d:ab:91:94:ad:
83:c3:d4:5c:09:0d:81:02:81:38:b4:e0:71:d2:5f:
61:84:87:41:5d:25:71:31:34:d3:56:fe:d6:44:9b:
12:a3:f7:63:6d:b6:59:07:06:77:34:e2:c7:cc:85:
98:d7:ed:83:62:4a:1a:38:90:07:33:79:89:16:f5:
da:e4:59:6d:d2:4b:61:b4:7d:63:80:f6:b3:06:2b:
52:a9:36:9b:63:60:11:c6:e2:0b:33:25:a4:65:5e:
c7:f2:b7:a7:20:64:5c:94:36:30:e1:8f:2c:4f:20:
31:96:94:f1:a7:6d:8e:bf:7c:8d:bd:01:8b:65:b7:
b5:98:48:42:93:d3:68:d1:2c:c6:cb:48:16:87:99:
30:0a:f2:f1:75:ce:e1:13:68:75:56:41:a7:e3:2f:
8b:a2:e3:bb:2b:b8:27:f8:de:54:16:1e:ac:24:98:
fa:bb:7b:c0:22:5c:21:2a:ba:75:7f:7e:98:8d:85:
cd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F6:CD:D2:A7:99:F7:C9:0B:2B:F9:A3:F2:32:C9:09:48:42:B8:39
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.213.192.0/19
62.213.238.0/24
IPv6:
2a00:c78::/32
Signature Algorithm: sha256WithRSAEncryption
16:44:44:5f:9e:00:5e:61:78:ca:cb:1a:f3:9e:a3:6b:b7:e7:
d2:6c:34:ec:c8:92:13:de:23:f0:ed:ed:0f:d0:fe:32:8b:0e:
08:39:96:3f:55:73:bd:18:33:2a:f2:5e:4a:40:45:a7:e7:6e:
01:2d:3b:4b:4c:1c:e5:16:6a:71:6b:50:77:40:48:13:49:ab:
82:34:e1:f7:e2:ae:e4:ec:ed:ad:1d:09:40:9c:d4:62:32:59:
22:a3:05:ec:f8:ab:f0:76:76:ce:50:fb:72:be:06:50:45:31:
c9:ca:e7:92:8a:c9:01:b3:53:cc:8c:7c:37:8d:7d:6e:f3:ce:
d4:98:1d:c6:ef:90:f7:8b:de:1c:fc:70:4e:00:0c:96:e2:d5:
70:95:cb:3f:f7:c6:c6:7a:b2:c7:39:0e:4e:45:ce:f2:a6:4b:
e7:89:78:4c:db:66:15:87:3a:38:8d:5b:03:49:58:6b:86:3a:
c0:e6:9f:2d:a0:4f:b2:60:de:91:7e:a6:62:2f:63:d2:fa:d2:
03:eb:bd:22:df:0d:bb:0d:48:4c:f2:1a:c4:1f:7e:97:87:07:
7d:98:ab:b5:7d:fa:8e:d0:f4:91:34:f8:44:c7:41:75:59:5b:
b7:de:04:e7:38:90:26:6f:6e:d9:dd:69:cc:8d:c8:26:c8:31:
89:cd:ba:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net