Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TlE417l-A99DhlZXx8Q4nfqFFDA.roa
File: TlE417l-A99DhlZXx8Q4nfqFFDA.roa (raw, json)
Hash identifier: igfmkaWg6k5LQT1dgAdoayM6rPCqv1BTECQAKrzHMJ4=
Subject key identifier: 4E:51:38:D7:B9:7E:03:DF:43:86:56:57:C7:C4:38:9D:FA:85:14:30
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019421441752EDE8DCCA91248A14D6BC013E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TlE417l-A99DhlZXx8Q4nfqFFDA.roa
Signing time: Wed 01 Jan 2025 09:48:17 +0000
ROA not before: Wed 01 Jan 2025 09:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212913
IP address blocks: 62.3.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:17:52:ed:e8:dc:ca:91:24:8a:14:d6:bc:01:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jan 1 09:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e5138d7b97e03df43865657c7c4389dfa851430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:86:7f:ba:1d:3a:ea:8f:3e:49:4d:fd:13:
0d:8d:fe:a5:9d:ec:f9:20:a0:11:24:d2:77:e5:25:
82:3a:d0:c7:6a:69:8c:5e:22:c2:f4:59:9f:bc:6d:
c3:12:e0:66:cd:8c:fa:0a:6d:08:eb:9d:68:5c:a1:
04:1a:30:db:3e:7f:08:10:2e:d5:f7:d7:82:2b:93:
21:e0:1d:28:c3:64:a1:97:b8:9d:1b:10:2e:c3:4f:
57:91:d3:d5:a6:c0:c4:b1:3a:2c:2e:a6:87:20:ec:
7e:e7:d1:56:9d:8d:75:be:47:ae:1e:5a:9f:f5:15:
06:d7:27:82:a2:84:62:5e:d6:c3:17:aa:7c:c5:33:
33:8e:f2:fd:3e:9a:cd:33:0b:9f:c4:da:28:fa:b8:
bb:77:1f:f6:6b:b2:62:16:cc:7b:cc:d7:2d:ec:b0:
ea:f9:05:ea:df:c9:15:fb:15:7b:aa:3c:5f:e7:00:
ee:98:65:1b:06:b2:91:78:13:6c:e3:3b:ab:41:bc:
2c:e5:ce:f7:73:8b:3a:63:11:17:29:65:f9:97:ff:
07:be:e7:c0:4f:78:6d:0a:0e:71:4e:65:69:ea:b2:
ea:3f:66:e5:45:a9:5f:0b:bd:59:6c:bb:54:09:8a:
cc:5a:82:d6:01:c6:20:7a:9a:9f:f4:6c:61:63:63:
7c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:51:38:D7:B9:7E:03:DF:43:86:56:57:C7:C4:38:9D:FA:85:14:30
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TlE417l-A99DhlZXx8Q4nfqFFDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.58.0/24
Signature Algorithm: sha256WithRSAEncryption
27:98:2a:8d:e6:91:65:32:19:0d:47:7a:e5:35:f3:ef:e1:09:
56:b3:8d:cd:e1:62:be:7e:ba:81:31:a7:03:90:cd:7d:b6:bd:
bc:50:84:40:44:17:e7:c3:d3:35:cf:0e:b5:db:52:c3:1e:cd:
66:55:df:5e:87:41:46:9c:9f:e4:d4:2a:57:27:dc:e1:ef:9d:
e9:b0:9f:8c:94:cd:9b:fb:c5:cb:f3:8d:66:cc:48:20:0c:04:
b2:af:f9:0f:f1:52:6f:18:81:d4:03:36:b6:03:0c:b1:49:ff:
e5:58:7a:c0:f6:a9:c3:51:ec:d4:98:87:47:24:f3:8c:aa:36:
74:49:59:76:37:08:2e:49:15:38:97:75:16:2e:3c:5f:12:c7:
a9:e6:72:4e:47:e0:f9:9c:6f:9b:4a:e0:cd:90:6f:fc:c0:e5:
6c:97:18:03:f3:81:be:b1:dc:2d:49:b2:12:9a:93:7e:c2:48:
19:37:89:dd:ff:39:1d:17:27:35:4c:a1:c9:5a:d7:b7:17:ee:
af:3c:e8:0d:3f:47:6d:0a:e5:45:2a:a2:f9:fb:e8:87:7d:d5:
49:d6:92:3a:06:16:42:ca:d7:68:fd:f6:8c:b6:97:9d:ad:ff:
3d:91:5f:18:ad:77:05:90:39:07:22:34:2a:fe:9e:38:a1:b6:
49:a5:62:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:07:18 2025 by rpki-client