Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/in9L7g-cpUmSO1ofhst17Y034lM.roa
File: in9L7g-cpUmSO1ofhst17Y034lM.roa (raw, json)
Hash identifier: 2AqONqWNA5VFHVb3r9hcyDXspGh88tGgJFdZWuKJFOc=
Subject key identifier: 8A:7F:4B:EE:0F:9C:A5:49:92:3B:5A:1F:86:CB:75:ED:8D:37:E2:53
Certificate issuer: /CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Certificate serial: 019427B5B2FC0A51728B8212DC984B39A485
Authority key identifier: DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/in9L7g-cpUmSO1ofhst17Y034lM.roa
Signing time: Thu 02 Jan 2025 15:50:06 +0000
ROA not before: Thu 02 Jan 2025 15:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57208
IP address blocks: 62.201.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:b2:fc:0a:51:72:8b:82:12:dc:98:4b:39:a4:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9c64e170b7f255d7ca30035d6532c8957eb169
Validity
Not Before: Jan 2 15:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a7f4bee0f9ca549923b5a1f86cb75ed8d37e253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:89:7c:53:1a:83:2d:6d:dd:d1:43:1f:47:ad:
b0:69:e0:b2:63:6c:6c:75:2b:e4:49:16:7f:2c:f5:
15:ee:7f:63:37:e8:42:7a:04:85:8b:e9:d6:c2:eb:
ea:cb:91:cf:29:ff:81:3d:b4:48:16:a3:e2:b4:ff:
e3:cc:54:b5:32:c9:9c:f1:a5:92:f1:a7:a7:d0:f1:
59:c2:35:3d:13:af:7d:ab:0b:b5:2d:49:cb:6c:01:
63:9b:67:90:1b:ed:d2:9e:86:e5:5f:61:0d:9d:b4:
eb:31:2f:1a:83:87:65:a3:73:12:94:b0:34:a5:a0:
27:bb:96:06:b3:74:c7:33:86:28:ac:75:4b:04:a5:
09:64:42:d9:1a:47:27:35:30:4c:a0:19:ca:19:3e:
c8:76:b8:18:a9:f8:83:f1:5e:a2:8e:dc:42:46:e5:
85:ed:26:47:56:18:2c:31:cd:0c:f2:09:a9:bb:21:
1a:06:9f:af:ea:2e:ea:96:b1:4d:3e:f3:77:e2:0a:
6c:ff:58:fa:86:57:97:97:98:fd:65:c5:e4:53:51:
c7:49:b9:f2:2b:23:3f:31:e0:e9:ef:d0:b9:c2:e0:
98:96:4d:83:95:7d:f5:44:16:39:1f:c6:d6:f7:29:
ad:3d:31:1e:7f:d0:52:ef:b9:4b:3b:fb:5b:91:b4:
06:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7F:4B:EE:0F:9C:A5:49:92:3B:5A:1F:86:CB:75:ED:8D:37:E2:53
X509v3 Authority Key Identifier:
keyid:DF:9C:64:E1:70:B7:F2:55:D7:CA:30:03:5D:65:32:C8:95:7E:B1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35xk4XC38lXXyjADXWUyyJV-sWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/in9L7g-cpUmSO1ofhst17Y034lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/abd12f-1d66-412f-9be2-28cb3bbf05ae/1/35xk4XC38lXXyjADXWUyyJV-sWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.42.0/24
Signature Algorithm: sha256WithRSAEncryption
76:56:fd:79:77:3e:ac:3a:3d:df:fb:1d:a7:63:1b:5b:fd:3d:
68:5c:e9:74:a3:9c:20:1d:c3:e4:5a:6e:d7:bd:4d:a1:0d:01:
c0:55:b5:3f:21:95:4a:49:9b:f1:f0:93:9a:58:ac:b4:81:ab:
4a:3a:c9:60:cb:c9:a2:41:0f:80:d3:36:58:c7:9e:c8:22:35:
4e:bd:94:5c:33:bf:65:b2:b6:47:52:c3:6b:70:ab:3d:ae:3f:
22:1c:ac:bb:2c:53:51:11:f4:b4:25:bd:2e:31:fd:62:1f:84:
c2:a7:13:85:0d:0c:3b:f9:79:35:ca:da:30:b5:15:78:e5:0b:
e8:95:ce:ea:67:55:a2:19:5d:15:29:ec:99:e7:2f:21:f5:ef:
1e:4a:27:bf:73:60:91:cf:83:0c:33:3d:8f:36:93:7b:ee:23:
fd:3e:8c:86:37:f4:30:65:50:79:3f:fe:25:64:83:89:4f:02:
fe:cc:0a:59:58:44:80:c0:ec:59:91:3b:09:ad:14:9c:9d:2d:
b5:1a:2a:0d:96:27:25:a5:7f:b6:e2:8d:2f:1e:20:49:0a:d8:
c6:34:64:96:03:e7:24:28:71:6b:03:f9:b7:3c:ef:24:73:92:
be:82:77:a7:1d:5b:17:b1:eb:2e:2f:51:02:64:2d:04:95:2b:
92:0b:e5:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 15:25:28 2025 by rpki-client