Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/vKJfG3YsMQQutnyRimfr0dYbTM8.roa
File: vKJfG3YsMQQutnyRimfr0dYbTM8.roa (raw, json)
Hash identifier: Symwasnye/gr1AcNuqHCMoSy24e8vEcmY9KcLs/sgXU=
Subject key identifier: BC:A2:5F:1B:76:2C:31:04:2E:B6:7C:91:8A:67:EB:D1:D6:1B:4C:CF
Certificate issuer: /CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Certificate serial: 78A47B
Authority key identifier: 4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/vKJfG3YsMQQutnyRimfr0dYbTM8.roa
Signing time: Sat 01 Jan 2022 00:56:31 +0000
ROA not before: Sat 01 Jan 2022 00:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 62.3.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7906427 (0x78a47b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc8f02d2286d77fe27d494cb6ca4f7d933de2f1
Validity
Not Before: Jan 1 00:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bca25f1b762c31042eb67c918a67ebd1d61b4ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ad:62:05:97:d6:79:6f:73:fe:79:ab:b1:f8:
e5:6a:8a:62:1a:f4:a4:f2:e3:bb:2b:2f:40:e8:d9:
4a:12:f4:48:4d:97:96:77:4d:c8:02:f9:eb:bd:82:
34:21:19:bb:2c:19:87:e4:7a:fd:4f:57:ad:42:10:
c6:0f:96:71:80:e0:68:4c:40:b1:d3:ac:8a:6a:ef:
77:1a:c3:70:80:b3:bf:13:ca:1c:07:64:93:47:56:
30:83:e0:4d:dd:10:7c:7e:96:d0:c6:26:df:a5:0f:
c0:d0:cd:a1:3f:3c:43:9e:76:f5:d9:ba:47:1d:ac:
f1:ad:31:c2:fa:66:5c:84:31:93:62:ea:d8:49:20:
15:8f:4f:06:15:d8:2c:ed:2f:67:54:9b:a4:a4:a4:
43:4a:87:7f:71:75:98:19:32:91:2c:c4:62:c7:78:
a8:c1:e2:39:23:bc:1e:4f:ff:7c:0d:0e:7f:92:20:
4e:8b:86:2a:8f:fe:66:c7:17:c8:b7:d2:85:9f:e4:
61:99:35:e6:23:9f:26:dd:cd:5a:e6:8a:10:73:85:
61:47:a2:c5:05:88:f7:3a:31:a0:56:62:d9:ad:7c:
a4:8c:06:8a:a8:c5:cc:5a:4d:69:3d:ee:f1:b1:48:
e3:a3:7c:a7:d5:82:35:cd:bf:01:f0:02:fb:3d:5f:
a2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A2:5F:1B:76:2C:31:04:2E:B6:7C:91:8A:67:EB:D1:D6:1B:4C:CF
X509v3 Authority Key Identifier:
keyid:4C:C8:F0:2D:22:86:D7:7F:E2:7D:49:4C:B6:CA:4F:7D:93:3D:E2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMjwLSKG13_ifUlMtspPfZM94vE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/vKJfG3YsMQQutnyRimfr0dYbTM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a1c07b-fc6c-4f42-b617-bc4619318a2d/1/TMjwLSKG13_ifUlMtspPfZM94vE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:83:6b:2a:6f:f2:5c:1d:9e:b4:bb:bc:26:98:57:8f:5d:c1:
79:cd:ea:ef:fb:7e:e8:1b:50:1f:2f:d5:b8:ff:03:8c:7a:ea:
a1:ac:82:03:dd:c0:60:17:5b:06:ed:18:10:36:90:bf:aa:37:
52:c3:c4:fe:5a:7b:c1:55:32:58:76:af:df:d0:73:48:f8:25:
17:75:a8:5a:16:31:49:28:d0:c9:92:23:3d:b5:29:77:9d:f7:
01:ec:a0:a8:67:fa:09:e2:c7:93:54:41:5e:47:43:c5:6e:6a:
a4:d5:65:a4:8f:1c:72:24:2f:80:04:a2:a3:ae:88:c8:a4:f7:
e0:0e:1f:68:32:4f:09:f9:48:4d:fa:3c:68:13:e4:e2:9c:e5:
38:5a:73:4d:b9:d5:78:f2:8b:8f:7f:9f:48:f0:d9:27:84:74:
b1:fb:f4:44:7c:d4:47:6f:79:a9:61:0a:f4:3e:fd:f2:0f:89:
01:35:62:cb:5b:6d:0e:b5:ac:39:19:1f:11:40:37:e3:04:07:
a6:98:22:cc:e1:7b:8e:e1:70:a4:7d:d1:a6:c6:68:49:db:94:
0a:56:e1:9a:97:83:25:31:f7:60:0a:53:3b:3e:fb:6b:ea:b6:
53:d3:01:ef:ee:68:b7:19:43:d8:de:4b:21:ab:55:7c:8c:6d:
17:bd:43:3a
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDeKR7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRj
YzhmMDJkMjI4NmQ3N2ZlMjdkNDk0Y2I2Y2E0ZjdkOTMzZGUyZjEwHhcNMjIwMTAx
MDA1NjMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiY2EyNWYxYjc2MmMz
MTA0MmViNjdjOTE4YTY3ZWJkMWQ2MWI0Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA161iBZfWeW9z/nmrsfjlaopiGvSk8uO7Ky9A6NlKEvRITZeW
d03IAvnrvYI0IRm7LBmH5Hr9T1etQhDGD5ZxgOBoTECx06yKau93GsNwgLO/E8oc
B2STR1Ywg+BN3RB8fpbQxibfpQ/A0M2hPzxDnnb12bpHHazxrTHC+mZchDGTYurY
SSAVj08GFdgs7S9nVJukpKRDSod/cXWYGTKRLMRix3ioweI5I7weT/98DQ5/kiBO
i4Yqj/5mxxfIt9KFn+RhmTXmI58m3c1a5ooQc4VhR6LFBYj3OjGgVmLZrXykjAaK
qMXMWk1pPe7xsUjjo3yn1YI1zb8B8AL7PV+ibQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLyiXxt2LDEELrZ8kYpn69HWG0zPMB8GA1UdIwQYMBaAFEzI8C0ihtd/4n1J
TLbKT32TPeLxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VE1qd0xTS0cxM19pZlVsTXRzcFBmWk05NHZFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kNi9hMWMwN2ItZmM2Yy00ZjQyLWI2MTctYmM0NjE5MzE4YTJkLzEv
dktKZkczWXNNUVF1dG55UmltZnIwZFliVE04LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9h
MWMwN2ItZmM2Yy00ZjQyLWI2MTctYmM0NjE5MzE4YTJkLzEvVE1qd0xTS0cxM19p
ZlVsTXRzcFBmWk05NHZFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgM5MA0GCSqGSIb3DQEBCwUAA4IB
AQAqg2sqb/JcHZ60u7wmmFePXcF5zerv+37oG1AfL9W4/wOMeuqhrIID3cBgF1sG
7RgQNpC/qjdSw8T+WnvBVTJYdq/f0HNI+CUXdahaFjFJKNDJkiM9tSl3nfcB7KCo
Z/oJ4seTVEFeR0PFbmqk1WWkjxxyJC+ABKKjrojIpPfgDh9oMk8J+UhN+jxoE+Ti
nOU4WnNNudV48ouPf59I8NknhHSx+/REfNRHb3mpYQr0Pv3yD4kBNWLLW20Otaw5
GR8RQDfjBAemmCLM4XuO4XCkfdGmxmhJ25QKVuGal4MlMfdgClM7Pvtr6rZT0wHv
7mi3GUPY3kshq1V8jG0XvUM6
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net