Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/26f604-7f39-4c95-90b7-1f5f98402ffb/1/2UOXtRZiOjdim5Et8iRiOFe1WH8.roa
File: 2UOXtRZiOjdim5Et8iRiOFe1WH8.roa (raw, json)
Hash identifier: oezkKFiWaq8+NOxB8msWmPd98TEHaq+x4goz9fO/ITc=
Subject key identifier: D9:43:97:B5:16:62:3A:37:62:9B:91:2D:F2:24:62:38:57:B5:58:7F
Certificate issuer: /CN=c423d13b2a1bda8cc07fab55caa64a341e31f403
Certificate serial: 648D
Authority key identifier: C4:23:D1:3B:2A:1B:DA:8C:C0:7F:AB:55:CA:A6:4A:34:1E:31:F4:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCPROyob2ozAf6tVyqZKNB4x9AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/26f604-7f39-4c95-90b7-1f5f98402ffb/1/2UOXtRZiOjdim5Et8iRiOFe1WH8.roa
Signing time: Wed 02 Feb 2022 06:23:14 +0000
ROA not before: Wed 02 Feb 2022 06:23:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 62.204.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25741 (0x648d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c423d13b2a1bda8cc07fab55caa64a341e31f403
Validity
Not Before: Feb 2 06:23:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d94397b516623a37629b912df224623857b5587f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:8f:1e:11:e8:6a:ed:3f:0a:3e:89:9a:f3:
f4:35:c2:ab:9c:79:26:55:5f:3a:a2:e7:fa:7f:90:
ca:14:2b:09:33:4a:cf:a6:55:82:a3:7f:d9:50:4a:
fb:7d:5f:b1:32:5c:9e:c6:8d:e4:d5:5f:c5:d7:ac:
06:1b:62:d6:cb:69:de:2b:83:b7:47:f6:33:fa:6b:
71:39:47:ba:ea:ed:3c:83:4f:2f:e2:c8:58:b9:03:
63:4c:2b:d5:f6:44:36:c6:56:44:e1:51:a9:13:4d:
75:0b:cd:15:a7:37:83:60:bc:8f:2f:cf:e8:66:5b:
11:99:b3:e0:c2:db:f2:c0:72:15:6c:c4:75:1b:ed:
af:82:46:38:28:b7:b4:f8:93:7c:26:5c:d6:a6:77:
38:42:f3:48:09:04:87:36:24:20:b0:06:54:33:d4:
e9:48:ea:b9:70:25:d0:79:5d:d8:11:db:ad:57:68:
65:d8:37:a9:60:3f:2e:75:7e:9e:31:df:9f:8c:93:
91:7a:21:4c:e5:ec:80:23:ff:25:c7:46:ab:a6:ab:
07:a3:0c:b8:dd:28:18:9f:ef:ee:aa:cb:1b:9f:e7:
15:aa:6b:ea:3e:df:92:7e:82:7c:b4:6f:45:51:d3:
5f:ef:c2:7f:46:9e:17:41:02:aa:c4:35:4a:9d:58:
ac:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:43:97:B5:16:62:3A:37:62:9B:91:2D:F2:24:62:38:57:B5:58:7F
X509v3 Authority Key Identifier:
keyid:C4:23:D1:3B:2A:1B:DA:8C:C0:7F:AB:55:CA:A6:4A:34:1E:31:F4:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCPROyob2ozAf6tVyqZKNB4x9AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/26f604-7f39-4c95-90b7-1f5f98402ffb/1/2UOXtRZiOjdim5Et8iRiOFe1WH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/26f604-7f39-4c95-90b7-1f5f98402ffb/1/xCPROyob2ozAf6tVyqZKNB4x9AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a7:03:c2:d2:39:34:96:de:08:ca:8e:79:07:7b:9a:e2:0a:
39:45:51:2d:40:91:e9:77:53:f1:86:8c:d6:d4:99:3c:ff:77:
e5:3e:01:c1:49:3c:12:da:f0:d5:da:db:25:73:a5:fd:6c:68:
75:e7:91:8f:26:28:8c:76:e9:95:bd:5e:30:3e:ff:73:bf:18:
e8:c3:64:8c:3c:3a:4f:1a:94:48:25:fa:05:48:4d:d8:8f:eb:
05:94:24:80:3c:07:43:fc:fd:ed:f7:71:3c:40:2f:12:5b:a7:
db:2f:ea:47:ee:1b:0d:74:7f:48:75:10:d1:4e:d0:69:8c:e2:
9c:75:e6:20:93:15:1b:bf:ae:96:a3:48:ae:1a:bb:f2:dd:d7:
f5:3f:70:9b:61:66:5b:c8:a6:0e:39:17:b3:5d:94:12:67:d0:
c4:ea:f8:24:d9:59:48:64:74:a2:5e:f5:5e:46:07:4d:0b:57:
e0:e6:38:88:a9:4c:10:a2:40:eb:59:7b:bc:a9:7d:9c:6c:0f:
e4:91:20:5a:fe:6c:38:57:0e:61:ee:bf:3b:a4:05:b4:f6:1d:
ca:19:83:99:c1:b7:6a:72:17:90:23:6a:83:3d:bc:7d:cb:3c:
bf:80:a6:f2:99:b9:e6:ba:c9:6d:6b:85:45:b7:6a:c4:95:d0:
e4:72:df:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net