Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/f516f6-d5a0-4086-94f2-abd4c5c9b374/1/rcP662t9iU7wmmRm1Yh7D85Kb-4.roa
File: rcP662t9iU7wmmRm1Yh7D85Kb-4.roa (raw, json)
Hash identifier: hNPhEZEICgt5or5b1hN6hdrsIiWH59T8KP+7AQfFMXQ=
Subject key identifier: AD:C3:FA:EB:6B:7D:89:4E:F0:9A:64:66:D5:88:7B:0F:CE:4A:6F:EE
Certificate issuer: /CN=92ec1050d3a9320ab9f0ce2b365a097ee4134b24
Certificate serial: 01942521646696B7D15275BCFB76E3EED727
Authority key identifier: 92:EC:10:50:D3:A9:32:0A:B9:F0:CE:2B:36:5A:09:7E:E4:13:4B:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kuwQUNOpMgq58M4rNloJfuQTSyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/f516f6-d5a0-4086-94f2-abd4c5c9b374/1/rcP662t9iU7wmmRm1Yh7D85Kb-4.roa
Signing time: Thu 02 Jan 2025 03:48:52 +0000
ROA not before: Thu 02 Jan 2025 03:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15541
IP address blocks: 62.121.128.0/24 maxlen: 24
62.121.129.0/24 maxlen: 24
62.121.130.0/24 maxlen: 24
62.121.131.0/24 maxlen: 24
62.121.132.0/24 maxlen: 24
62.121.133.0/24 maxlen: 24
62.121.135.0/24 maxlen: 24
62.121.136.0/24 maxlen: 24
62.121.138.0/24 maxlen: 24
62.121.141.0/24 maxlen: 24
62.121.142.0/24 maxlen: 24
62.121.143.0/24 maxlen: 24
62.121.144.0/24 maxlen: 24
62.121.145.0/24 maxlen: 24
62.121.146.0/24 maxlen: 24
62.121.148.0/24 maxlen: 24
62.121.150.0/24 maxlen: 24
62.121.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:64:66:96:b7:d1:52:75:bc:fb:76:e3:ee:d7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92ec1050d3a9320ab9f0ce2b365a097ee4134b24
Validity
Not Before: Jan 2 03:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adc3faeb6b7d894ef09a6466d5887b0fce4a6fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:56:ba:ba:df:0b:2e:64:ca:c2:55:83:0a:79:
38:a1:59:fe:0a:de:f3:5a:7a:1b:22:12:97:e4:58:
c7:9a:09:82:08:38:83:b1:e5:94:ef:72:d1:28:85:
fd:59:5b:ba:06:eb:96:94:78:de:3e:5b:9a:0d:b7:
b6:33:cc:6b:4f:00:a8:8d:df:d6:e6:de:19:c8:56:
21:e8:19:3b:04:6f:65:b9:8b:2e:da:d8:bb:55:89:
44:d7:15:ce:58:53:15:37:e0:6c:92:85:99:61:95:
96:93:8e:b8:c0:a6:97:b1:1d:a0:d4:3f:ec:f2:86:
d2:e0:79:2a:92:16:97:a7:b3:66:75:bf:64:5a:5a:
12:a1:88:5d:e7:f1:fa:80:b2:62:04:07:14:db:32:
fe:35:e1:7a:f0:04:96:98:10:dc:fa:33:92:b4:30:
6c:b1:71:ad:49:57:9e:43:4c:79:a2:68:c4:17:9d:
43:be:31:5e:dd:20:de:01:bf:5e:77:0c:9b:30:90:
18:c3:34:ea:89:ce:22:bb:71:07:dc:46:85:11:3b:
24:11:b0:92:0c:12:b2:96:ff:3c:b1:57:7a:d2:2a:
17:1d:72:ce:1a:33:d2:e6:3a:54:7a:f2:c0:d2:8a:
25:5d:0f:64:27:e5:3a:d3:42:18:06:2b:2e:55:0f:
0b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C3:FA:EB:6B:7D:89:4E:F0:9A:64:66:D5:88:7B:0F:CE:4A:6F:EE
X509v3 Authority Key Identifier:
keyid:92:EC:10:50:D3:A9:32:0A:B9:F0:CE:2B:36:5A:09:7E:E4:13:4B:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kuwQUNOpMgq58M4rNloJfuQTSyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f516f6-d5a0-4086-94f2-abd4c5c9b374/1/rcP662t9iU7wmmRm1Yh7D85Kb-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f516f6-d5a0-4086-94f2-abd4c5c9b374/1/kuwQUNOpMgq58M4rNloJfuQTSyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.121.128.0-62.121.133.255
62.121.135.0-62.121.136.255
62.121.138.0/24
62.121.141.0-62.121.146.255
62.121.148.0/24
62.121.150.0/24
62.121.152.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4d:a0:a1:2c:28:8b:68:e9:14:90:2e:88:da:b9:ef:db:b0:
d1:a3:4d:40:cb:d1:be:18:89:09:96:f3:9e:b8:ac:82:88:02:
e0:61:be:fe:c6:f8:57:84:43:33:fa:a7:64:0a:89:90:8c:57:
83:06:09:b7:63:c9:a6:24:f6:7a:f7:0f:ee:49:d0:ce:bb:f9:
51:8c:73:72:fe:c0:92:db:c9:e7:3f:dd:8b:40:71:07:8c:9e:
b5:cc:eb:ae:07:be:95:51:08:fe:3f:e4:4d:07:9c:0d:2a:23:
67:00:df:5f:b0:08:59:6b:cb:14:77:c5:f8:fd:8c:33:49:4c:
10:74:e4:82:5a:72:7b:21:21:2c:61:20:e1:84:6f:a5:50:0d:
cb:06:93:80:37:ad:a5:b4:7a:28:e8:8d:83:e7:d4:f0:37:61:
28:fc:3c:e3:e0:5c:54:bf:51:57:53:3a:e1:0a:aa:53:c3:ff:
62:99:81:a0:e6:ff:82:04:c8:49:65:2a:24:4d:a1:3a:dd:2d:
55:e6:5b:4d:1a:99:05:27:0f:f8:e4:22:e4:75:78:ca:ad:71:
7c:1d:99:38:9c:39:9b:34:0d:6a:fb:ca:d6:9b:b7:fe:04:03:
1f:61:ad:98:62:93:3f:e3:45:ad:f2:4e:cb:d7:ff:27:3d:ee:
72:4c:5e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:59:12 2025 by rpki-client