Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/LahzIk0iNWCph8MX3FcV4PM2SnQ.roa
File: LahzIk0iNWCph8MX3FcV4PM2SnQ.roa (raw, json)
Hash identifier: eye0ZOSEneD2wpHH0VMO+jmRH12xwWonraEeZAyzvsg=
Subject key identifier: 2D:A8:73:22:4D:22:35:60:A9:87:C3:17:DC:57:15:E0:F3:36:4A:74
Certificate issuer: /CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Certificate serial: 018820867484F46387C09479B636C4B724DB
Authority key identifier: 4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/LahzIk0iNWCph8MX3FcV4PM2SnQ.roa
Signing time: Mon 15 May 2023 17:47:42 +0000
ROA not before: Mon 15 May 2023 17:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 62.3.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:74:84:f4:63:87:c0:94:79:b6:36:c4:b7:24:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Validity
Not Before: May 15 17:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2da873224d223560a987c317dc5715e0f3364a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:14:33:99:44:27:30:0e:e0:4b:aa:0c:05:90:
88:da:7c:77:7b:e6:8e:e9:3d:9a:0b:3a:fb:96:e1:
f5:1b:6f:28:68:4b:38:38:87:32:b2:9e:0a:0d:78:
0d:49:61:82:10:c3:57:ed:86:23:65:ae:a6:62:48:
c1:f7:23:2d:3c:39:7e:c4:13:c2:2e:89:6d:e6:88:
1c:6f:cd:31:10:53:86:54:6f:0d:a8:ff:4c:d1:a2:
c3:c1:8e:99:a6:03:33:92:7e:5e:66:75:6e:4f:c6:
22:e1:40:a5:b6:7f:b5:27:d9:04:a1:3a:8e:db:c2:
e2:8b:7e:bf:70:e6:5e:5c:1b:17:85:5a:3d:21:cd:
9b:fe:e4:30:e1:0f:58:03:9c:ef:b3:5f:5f:4a:a4:
70:f5:49:2b:83:d3:fc:2a:20:21:98:02:ae:31:3c:
48:2b:3d:d4:25:c7:63:46:d2:53:1d:7e:c6:79:93:
85:cb:17:9f:8b:55:9e:48:f9:fd:b4:9a:cd:01:0e:
f7:60:64:57:77:7a:af:52:6f:ad:1c:45:63:31:50:
7c:c5:6c:c1:5b:72:86:78:05:60:7f:09:b2:84:3f:
94:bc:f2:56:60:b6:60:15:35:8d:13:4e:d8:5a:09:
c5:49:01:26:49:73:76:22:74:9b:6f:65:af:4b:df:
dd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A8:73:22:4D:22:35:60:A9:87:C3:17:DC:57:15:E0:F3:36:4A:74
X509v3 Authority Key Identifier:
keyid:4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/LahzIk0iNWCph8MX3FcV4PM2SnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/TMjwLSKG13_ifUlMtspPfZM94vE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.57.0/24
Signature Algorithm: sha256WithRSAEncryption
64:e8:e7:f8:79:f2:5e:18:ed:cc:34:f3:1d:2e:90:b7:3f:d6:
d6:ff:7a:88:dd:ee:51:b8:1c:ed:7f:3c:9d:d6:3c:e3:1e:83:
c6:fe:b1:c4:0c:b9:80:c4:0c:56:ba:d8:e6:0f:71:a5:c7:ae:
7e:ad:c6:59:20:34:f8:b4:6e:e6:d3:ca:2c:34:25:08:40:a4:
c6:52:59:d5:e4:9e:68:14:be:52:c0:6a:2f:94:fa:4b:eb:03:
ad:ab:da:72:d2:34:48:62:02:ba:8e:9a:40:21:3b:02:20:1e:
46:e1:02:9b:6b:9a:d0:ea:3a:58:cc:85:59:30:ee:c5:90:f2:
c8:53:9d:2b:31:bd:07:99:aa:ad:37:b5:4f:a3:2f:02:05:7c:
c2:9d:c0:93:f1:79:bd:97:27:0b:71:48:7e:de:81:16:ee:9a:
f4:28:9f:30:19:49:fa:10:d3:dc:9e:a9:18:93:83:af:bf:e0:
a5:d7:3a:5d:a2:f6:51:e0:74:ab:5a:71:d9:89:aa:4a:39:34:
8b:c0:23:c9:56:84:cf:18:4a:03:aa:94:21:87:64:ec:53:61:
86:18:5c:dd:75:99:f2:3f:6b:40:6c:58:b7:2d:f9:17:03:80:
b0:97:70:02:89:e4:50:77:23:24:a2:21:d1:84:50:95:a7:b8:
9d:5e:57:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net