Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/oQEjAmt7MyhDoFqfFRza8D6gzN0.roa
File: oQEjAmt7MyhDoFqfFRza8D6gzN0.roa (raw, json)
Hash identifier: J9bWIhZt9YEsnb61ecCMtgkEPaDbCaogiDdlzHyBCNE=
Subject key identifier: A1:01:23:02:6B:7B:33:28:43:A0:5A:9F:15:1C:DA:F0:3E:A0:CC:DD
Certificate issuer: /CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Certificate serial: 019427B5B35BB7352A991902060B36BD5633
Authority key identifier: DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/oQEjAmt7MyhDoFqfFRza8D6gzN0.roa
Signing time: Thu 02 Jan 2025 15:50:06 +0000
ROA not before: Thu 02 Jan 2025 15:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58343
IP address blocks: 62.201.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:b3:5b:b7:35:2a:99:19:02:06:0b:36:bd:56:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Validity
Not Before: Jan 2 15:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a10123026b7b332843a05a9f151cdaf03ea0ccdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c7:9e:03:b0:f5:77:73:f8:4d:02:71:cc:57:
ac:06:5b:9d:98:11:38:4c:18:a1:67:d1:02:60:9b:
e6:b3:88:7e:b4:ca:d0:60:bd:94:da:84:52:de:bc:
c6:6d:d4:d0:af:fd:0c:dd:dd:cf:66:9f:a4:02:9f:
a5:4c:2a:9b:bc:fe:93:6c:b8:7f:f8:00:cf:73:9b:
ca:a8:a4:46:84:c0:07:c1:39:83:e4:c9:31:5d:66:
c9:31:05:1f:5e:c6:97:17:fe:26:b4:61:ee:03:6f:
db:a1:11:78:40:bf:1f:ea:1c:15:bf:d6:0c:8e:68:
f4:da:9b:42:c2:6f:6b:52:6b:16:ab:b2:9c:b8:dc:
1d:5a:74:c5:5a:a4:b6:53:0a:24:87:9c:4d:b1:17:
bb:50:73:b9:b4:0a:42:31:85:2a:3f:bf:52:91:69:
e3:40:25:99:fe:9c:4a:ea:a7:a6:ce:14:d1:1d:29:
6e:23:30:18:0b:e5:9f:96:2f:d0:9d:bb:93:af:b8:
30:0f:59:0a:9d:6e:3c:ef:f5:37:25:fd:f6:5d:67:
44:86:6e:3e:6b:fb:03:81:2c:5e:5f:00:72:77:88:
02:ff:57:c8:f1:f4:17:f6:56:31:29:55:e1:03:de:
e2:dd:a4:1a:27:85:2d:54:33:83:6b:49:95:98:ce:
14:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:01:23:02:6B:7B:33:28:43:A0:5A:9F:15:1C:DA:F0:3E:A0:CC:DD
X509v3 Authority Key Identifier:
keyid:DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/oQEjAmt7MyhDoFqfFRza8D6gzN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/35xk4XC38lXXyjADXWUyyJV-sWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.42.0/24
Signature Algorithm: sha256WithRSAEncryption
98:83:1d:82:19:6c:79:b2:3d:dd:73:22:7a:20:62:3a:19:bb:
db:0c:7b:50:43:c2:51:c2:36:84:0b:e4:02:3d:fe:d8:f7:48:
e0:58:25:63:39:34:dc:de:71:14:aa:61:f0:07:32:f1:c0:35:
01:07:88:ce:78:62:61:ec:ed:ad:ff:57:eb:d3:6e:ba:ce:bb:
d5:ff:12:8c:16:ef:83:36:d5:f1:17:95:c1:88:31:3b:82:34:
0a:76:47:f8:a1:57:e9:23:44:10:0e:ea:46:82:dc:86:f3:5f:
83:6a:b8:7a:d9:c9:14:96:52:35:d7:65:64:14:10:c4:1a:45:
a2:52:21:53:a3:7b:60:65:51:40:24:d8:82:81:46:7d:9f:c2:
61:d7:3c:89:d9:6c:13:6c:49:75:68:0b:ab:2b:61:57:ac:b2:
e3:a3:b5:5d:a9:b4:35:ed:e1:1a:22:e3:f7:ee:11:f6:62:17:
d0:b3:89:bb:4f:b1:4d:cf:a8:f3:d3:da:29:50:c6:2a:12:c7:
64:da:0a:85:4d:2a:f4:8d:e2:b4:e2:06:49:79:62:15:7b:d6:
17:56:73:db:1c:5b:f1:53:13:4c:0e:8e:ed:4d:af:d7:d9:5c:
f2:8d:82:d6:78:c5:5c:e3:7f:95:6b:a0:5f:c8:c7:e8:8f:23:
08:3d:5e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net