Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/h7cXhqH3auRRse3sztiHEb7noCA.roa
File: h7cXhqH3auRRse3sztiHEb7noCA.roa (raw, json)
Hash identifier: S9HnqXfiJETt/RwRyZLdHPd4gp+8Jb7CRwrIDRcvi/g=
Subject key identifier: 87:B7:17:86:A1:F7:6A:E4:51:B1:ED:EC:CE:D8:87:11:BE:E7:A0:20
Certificate issuer: /CN=f3b5646b360379924cb6d9c3d99669ce7f3b2ca2
Certificate serial: 019423D6ABFF63BE1CA4A19BFBB244857958
Authority key identifier: F3:B5:64:6B:36:03:79:92:4C:B6:D9:C3:D9:96:69:CE:7F:3B:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87VkazYDeZJMttnD2ZZpzn87LKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/h7cXhqH3auRRse3sztiHEb7noCA.roa
Signing time: Wed 01 Jan 2025 21:47:38 +0000
ROA not before: Wed 01 Jan 2025 21:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206585
IP address blocks: 62.181.60.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:ab:ff:63:be:1c:a4:a1:9b:fb:b2:44:85:79:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b5646b360379924cb6d9c3d99669ce7f3b2ca2
Validity
Not Before: Jan 1 21:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=87b71786a1f76ae451b1edecced88711bee7a020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:99:4e:cc:a1:cd:37:3d:09:f7:d4:12:8c:
23:d7:3f:71:50:14:9e:89:53:bf:c7:26:dd:86:8e:
23:49:59:2e:a6:7c:a4:2d:94:9b:0c:2a:b8:47:0c:
fc:d3:a8:3e:72:3b:90:06:30:34:42:d3:5b:0c:65:
e0:2f:1e:21:a4:26:45:46:9a:6a:67:6c:12:36:e4:
3b:15:55:8e:f2:04:2c:51:70:f2:bb:be:4d:cb:4f:
d7:cd:a3:9c:88:e4:b8:98:c7:da:0f:bc:18:03:9d:
17:20:68:cb:bb:63:fc:ca:ae:e0:87:1f:8c:cf:7b:
dd:9d:3d:4b:10:ef:f8:00:93:ce:ce:0c:23:ac:27:
a8:db:90:8b:20:c8:c0:ec:66:94:c0:46:d7:52:58:
65:4d:d7:fe:ff:30:e5:97:26:50:60:f3:31:36:3b:
2e:f3:b5:f3:32:0f:83:80:87:8f:ea:aa:b0:52:82:
89:32:f7:33:22:60:7f:c7:ec:9a:9d:f5:57:43:c9:
b8:94:61:a8:48:92:8e:4d:0d:49:c9:3a:76:fa:c4:
8c:02:ca:ee:ce:4b:24:cd:a6:f8:7b:da:2c:24:f5:
9e:7b:6b:9b:7f:7b:45:93:8c:8d:88:2f:d5:0b:4c:
bc:cd:be:04:63:63:ed:98:0b:7b:b3:bc:65:70:60:
a7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B7:17:86:A1:F7:6A:E4:51:B1:ED:EC:CE:D8:87:11:BE:E7:A0:20
X509v3 Authority Key Identifier:
keyid:F3:B5:64:6B:36:03:79:92:4C:B6:D9:C3:D9:96:69:CE:7F:3B:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87VkazYDeZJMttnD2ZZpzn87LKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/h7cXhqH3auRRse3sztiHEb7noCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ea6-1436-4f26-af57-5975913f52c5/1/87VkazYDeZJMttnD2ZZpzn87LKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.181.60.0/23
Signature Algorithm: sha256WithRSAEncryption
48:32:6f:75:93:cc:a5:47:85:7f:4f:0d:05:d7:15:4f:90:f7:
fd:db:2c:cf:d6:2b:79:fa:74:63:36:d6:f1:f6:62:38:f0:4d:
c9:a9:3e:d3:ff:fc:b2:24:76:ec:a1:85:f7:e2:3a:e1:dc:56:
66:17:a8:39:cb:0c:56:99:ed:a3:8f:74:65:2f:c4:85:5c:9a:
f2:9a:c7:8b:95:e9:52:bd:86:13:62:58:23:2f:4e:49:77:7c:
fb:2f:2b:bf:0a:40:27:86:42:79:b0:dc:d5:cc:2f:ac:1d:90:
7a:8b:0e:de:3e:66:48:4e:9b:dc:35:73:eb:06:3f:5f:50:35:
01:e2:cc:62:b1:f7:41:5e:b6:8f:68:40:b1:7d:4c:46:ae:67:
c4:36:f2:d9:9f:2b:aa:6a:b2:6f:08:86:83:73:09:ff:61:2f:
94:94:b4:a5:71:4e:47:55:a7:b1:66:9f:5e:4a:d8:fa:28:20:
8d:e0:f1:24:15:17:b7:39:e4:57:74:1c:1a:d6:a9:b7:4c:56:
f9:52:89:4a:dc:5a:de:19:3b:c8:d3:cf:f8:4b:62:11:9b:73:
55:ab:36:ac:ef:1b:4d:d0:42:c2:f1:52:88:d9:bc:0c:42:60:
92:6f:8a:5d:54:4c:e2:d8:b9:f5:d3:68:e2:97:bc:1c:3a:1b:
9d:bb:ec:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net