Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f57ac9-ede3-4c55-83c5-a4e0a74f52f8/1/RLnFZaC0q-0bmPnP6kj3KDBNQvU.roa
File: RLnFZaC0q-0bmPnP6kj3KDBNQvU.roa (raw, json)
Hash identifier: jV72+XK/mNlQ57rdOBaEj79nyQFd0o/W5PZBhK9g0Jw=
Subject key identifier: 44:B9:C5:65:A0:B4:AB:ED:1B:98:F9:CF:EA:48:F7:28:30:4D:42:F5
Certificate issuer: /CN=baada2fa9a5fa21fcb160d9141d31979d50b305c
Certificate serial: 5CFA9D
Authority key identifier: BA:AD:A2:FA:9A:5F:A2:1F:CB:16:0D:91:41:D3:19:79:D5:0B:30:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uq2i-ppfoh_LFg2RQdMZedULMFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f57ac9-ede3-4c55-83c5-a4e0a74f52f8/1/RLnFZaC0q-0bmPnP6kj3KDBNQvU.roa
Signing time: Sat 01 Jan 2022 00:55:09 +0000
ROA not before: Sat 01 Jan 2022 00:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 62.3.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6093469 (0x5cfa9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baada2fa9a5fa21fcb160d9141d31979d50b305c
Validity
Not Before: Jan 1 00:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44b9c565a0b4abed1b98f9cfea48f728304d42f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:2f:0e:15:4c:5f:5e:0a:4c:28:b9:08:96:
ad:0f:67:3a:d0:c9:76:bf:40:57:02:bb:98:53:a1:
17:ed:01:5f:85:7a:1b:5a:85:b1:de:41:a3:d3:0b:
23:88:d8:76:28:68:28:0b:e3:16:2e:e8:f7:5d:e8:
f8:76:a6:5a:9e:03:23:ac:ba:f4:51:12:84:ca:88:
99:88:ce:7e:c2:66:46:b1:0e:94:e2:66:f3:cc:80:
4a:e4:8a:0f:32:ce:d1:c6:a0:00:7b:dd:dc:97:68:
ed:51:f5:da:27:ce:41:94:45:22:6e:eb:76:4b:c9:
07:40:87:09:6f:6d:bf:4e:bf:2c:1e:7c:ea:f5:9f:
15:33:cb:d8:84:99:9a:96:87:99:c1:e2:03:eb:58:
24:ee:8a:fe:19:9d:1d:b3:78:86:cd:49:0f:e1:fa:
b8:f5:df:5e:f2:73:c8:ec:41:94:d7:6e:98:f9:42:
bd:ac:7b:31:c1:17:7d:61:70:2d:5d:07:9f:2a:0e:
12:05:84:7c:a0:8b:62:46:b7:b2:83:47:4d:92:f4:
f8:bc:8b:67:b4:08:0d:cc:86:be:79:9a:1b:b7:85:
a6:2b:5a:c6:2d:c9:29:2f:28:ff:31:c1:b8:9a:ee:
f6:dd:06:43:47:1a:97:16:49:64:45:a3:d9:bd:b0:
27:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B9:C5:65:A0:B4:AB:ED:1B:98:F9:CF:EA:48:F7:28:30:4D:42:F5
X509v3 Authority Key Identifier:
keyid:BA:AD:A2:FA:9A:5F:A2:1F:CB:16:0D:91:41:D3:19:79:D5:0B:30:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uq2i-ppfoh_LFg2RQdMZedULMFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f57ac9-ede3-4c55-83c5-a4e0a74f52f8/1/RLnFZaC0q-0bmPnP6kj3KDBNQvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f57ac9-ede3-4c55-83c5-a4e0a74f52f8/1/uq2i-ppfoh_LFg2RQdMZedULMFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.13.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:92:b3:b9:86:c0:1c:19:1d:70:71:5e:9a:1c:61:e4:f2:e1:
7e:b8:2c:c5:b7:93:a3:77:99:89:e3:02:7e:cc:39:ca:ab:d3:
f7:b8:1b:7a:e1:17:b0:cb:84:19:93:67:bf:a8:d4:2b:7b:9f:
e4:8b:67:4f:90:ec:19:97:a2:4e:9c:d8:95:89:e2:00:28:09:
78:d0:7d:d4:b0:36:34:b7:9f:ae:e9:b3:05:b9:a9:a9:db:48:
47:40:34:78:35:85:c2:61:7f:68:71:c7:2d:05:ad:b7:fc:30:
45:1f:1e:fc:c5:5d:cd:54:fd:fe:4c:33:b5:97:f2:b7:1e:b0:
67:7e:72:c7:e5:6b:aa:7c:1c:6d:89:00:05:80:e7:69:87:cb:
bd:1e:e7:69:4b:98:bb:91:d7:56:fc:88:10:4f:14:eb:b4:c1:
4a:04:76:d1:b2:53:ae:7e:d2:ae:62:23:c3:20:dd:69:32:13:
a6:f4:96:59:65:88:1b:d3:28:7d:57:df:13:30:0a:a0:37:3d:
11:6a:80:34:ff:a0:fb:f5:58:53:3b:12:8f:68:d6:ef:96:62:
0a:6e:78:49:a8:35:d5:b0:62:82:04:ad:02:db:10:bd:ae:f7:
ad:1e:f8:38:4b:49:54:8d:5c:7b:69:77:1a:9a:c2:f7:ce:2a:
e8:dc:f6:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:00 2023 by rpki-client on console.sobornost.net