Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/OWE82AJ6XMkETtg5SeVok5RbVMg.roa
File: OWE82AJ6XMkETtg5SeVok5RbVMg.roa (raw, json)
Hash identifier: 61UYmcPzIK3gYtRzlZnCzxd39wiKKzN3mE1c8vnojHQ=
Subject key identifier: 39:61:3C:D8:02:7A:5C:C9:04:4E:D8:39:49:E5:68:93:94:5B:54:C8
Certificate issuer: /CN=41274f2c5beb9999b8673c760743c7e7d31cd673
Certificate serial: 019421444FD11CF94996FC5632F56838A8AC
Authority key identifier: 41:27:4F:2C:5B:EB:99:99:B8:67:3C:76:07:43:C7:E7:D3:1C:D6:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/OWE82AJ6XMkETtg5SeVok5RbVMg.roa
Signing time: Wed 01 Jan 2025 09:48:32 +0000
ROA not before: Wed 01 Jan 2025 09:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210520
IP address blocks: 62.3.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:4f:d1:1c:f9:49:96:fc:56:32:f5:68:38:a8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41274f2c5beb9999b8673c760743c7e7d31cd673
Validity
Not Before: Jan 1 09:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39613cd8027a5cc9044ed83949e56893945b54c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:30:b0:8a:ce:f4:aa:5c:ba:98:40:68:c2:15:
f0:1f:83:86:9b:80:68:f0:96:a3:ab:61:e5:60:e9:
c5:f5:cd:1d:b6:58:cc:7b:17:d1:cc:c0:ab:ee:0d:
b9:8a:6f:60:5d:c4:14:b1:88:2d:ab:e2:cb:b3:14:
46:7f:1b:62:39:0c:de:96:b5:fe:61:9b:ad:70:e5:
f8:8a:0b:bb:2a:9b:66:fd:5d:e4:e6:ad:21:1e:fa:
16:6d:2b:5f:98:39:91:60:ba:12:ad:5c:e2:03:8a:
4f:b7:31:2f:89:62:64:db:bf:d9:f8:53:07:52:e7:
3d:33:60:93:fd:68:6f:89:ca:c1:5e:20:62:84:b4:
15:9c:ca:2c:e5:ed:06:91:03:49:74:81:d4:69:bd:
30:ee:a5:05:da:f4:b8:f9:a5:44:15:a5:a2:b1:eb:
53:0b:f8:86:2c:be:9b:16:6f:4e:52:14:19:f5:bc:
ad:81:06:eb:5f:8e:28:27:b6:5c:78:ab:00:47:28:
40:1f:c7:4a:43:be:d9:f8:29:9d:11:6f:21:36:36:
54:45:bf:9e:15:52:f2:9c:c5:34:bd:b6:d0:df:3a:
ad:c5:e5:ea:69:8a:32:89:f1:e3:e1:ef:cb:44:12:
cb:c9:3d:e9:16:c3:b2:b1:bd:d2:c9:62:f4:37:f6:
45:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:61:3C:D8:02:7A:5C:C9:04:4E:D8:39:49:E5:68:93:94:5B:54:C8
X509v3 Authority Key Identifier:
keyid:41:27:4F:2C:5B:EB:99:99:B8:67:3C:76:07:43:C7:E7:D3:1C:D6:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/OWE82AJ6XMkETtg5SeVok5RbVMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.16.0/24
Signature Algorithm: sha256WithRSAEncryption
84:bb:e9:a3:51:e3:29:05:06:39:d2:ce:6a:d8:38:84:e5:13:
79:ff:9d:5b:b0:af:36:eb:09:cc:1b:9a:f7:4c:94:75:83:2c:
35:77:46:f7:34:e0:cc:f9:c5:31:57:b7:aa:58:55:68:12:8d:
54:56:92:aa:0f:54:9d:2a:48:26:58:e9:0f:9b:83:7e:09:05:
92:92:72:04:35:d4:c0:80:1b:c5:f5:22:66:ec:eb:89:31:90:
38:dc:a1:37:a5:20:1f:b5:28:bd:d6:bc:47:d2:ff:3c:06:38:
01:7a:6c:dd:ed:02:88:b5:13:1a:aa:65:64:85:c1:78:87:8a:
31:8d:df:0e:c9:1a:b3:d8:df:6e:e0:12:e6:d5:3b:a6:e7:36:
1d:68:55:46:fa:dc:dd:03:ec:85:01:f9:9f:e1:00:ff:f0:78:
19:40:a7:dd:54:94:61:34:3f:7f:3e:00:df:8e:9f:79:80:5c:
a0:e9:58:a7:76:31:0c:82:35:08:1e:59:00:7d:d9:ba:6d:64:
83:4e:48:d2:cc:3e:9a:1b:43:62:bc:ae:1a:5f:ef:36:b2:7a:
59:f5:04:29:c7:e0:5e:9b:26:87:c6:91:63:61:b0:84:80:26:
2e:c2:b2:d8:31:03:7e:01:80:01:10:93:18:2f:16:df:ae:ae:
24:f1:cf:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net