Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1X5gntotyMCHfQnn72O7av-gXTU.roa
File: 1X5gntotyMCHfQnn72O7av-gXTU.roa (raw, json)
Hash identifier: u9bQZ0wZuW8q7kiPBw9hb0FRGUpz00GQ3yyqkHxTmNY=
Subject key identifier: D5:7E:60:9E:DA:2D:C8:C0:87:7D:09:E7:EF:63:BB:6A:FF:A0:5D:35
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 03D68F5A
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1X5gntotyMCHfQnn72O7av-gXTU.roa
Signing time: Tue 12 Apr 2022 13:11:04 +0000
ROA not before: Tue 12 Apr 2022 13:11:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 141.11.35.0/24 maxlen: 24
141.11.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64393050 (0x3d68f5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Apr 12 13:11:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d57e609eda2dc8c0877d09e7ef63bb6affa05d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:62:1a:52:19:96:ff:bc:c1:aa:4c:7b:b5:
e8:97:28:42:70:73:b5:1f:fe:1c:5d:17:96:6f:be:
a0:5e:c0:b0:ef:13:f9:37:09:34:c6:ee:1d:c7:c0:
36:d0:2e:87:57:ee:8f:ad:f2:35:4e:42:e4:e7:42:
ae:d7:a2:14:1a:24:91:b1:f3:a9:7a:11:3e:7b:3d:
a7:34:23:90:4c:8b:cf:1d:3b:c9:46:b2:7e:a5:40:
76:f8:e7:e8:27:90:95:8a:fd:5e:63:76:0d:08:ce:
22:cc:72:c0:1a:fa:93:d5:0f:db:06:de:63:ff:2f:
08:c7:ae:4b:2c:a2:7e:9f:df:63:d1:2f:2d:ea:3e:
cb:93:b0:d1:7f:12:c5:4c:dd:95:4c:3b:66:01:f2:
ab:bf:6d:16:40:12:58:f4:d6:1d:d1:5b:cb:66:fa:
ee:70:76:94:ec:46:64:e8:c2:f1:f7:1e:72:20:e5:
c2:ed:61:4b:13:66:c4:87:ff:da:89:2d:f9:09:91:
6c:1d:31:56:66:1c:16:27:22:77:41:e8:73:2b:02:
cd:55:44:1d:c9:59:0a:98:aa:61:57:40:c3:a1:a9:
5b:52:60:7d:03:b2:79:30:2e:83:77:d5:a8:42:d5:
cc:26:0f:c1:22:f3:0e:ba:9e:64:a2:c3:66:fe:42:
3d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7E:60:9E:DA:2D:C8:C0:87:7D:09:E7:EF:63:BB:6A:FF:A0:5D:35
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1X5gntotyMCHfQnn72O7av-gXTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.34.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:23:04:cd:b2:90:e2:14:15:5a:2c:46:e7:89:2d:13:4f:eb:
70:85:a2:43:bd:24:57:ca:04:9b:21:ca:8d:48:7a:f9:85:ed:
2f:4a:af:8f:92:c3:04:c4:40:07:3c:7a:a8:e1:d0:6d:8b:35:
8c:fe:91:88:b3:f8:41:c2:b2:b1:bb:db:35:3c:bc:d5:30:6b:
b2:57:0c:4d:8c:73:32:e7:89:53:48:5a:73:98:75:8c:81:f9:
a2:93:ad:77:ee:7b:8f:73:eb:b5:03:b9:68:c8:4a:88:27:b4:
1f:36:1b:ff:0f:79:ac:c5:4b:86:03:fe:dd:16:6c:46:9c:f5:
10:d1:39:17:aa:d0:3d:53:e3:73:19:d1:b0:40:84:ac:cc:f9:
ec:b8:b3:1b:a8:d2:b9:2c:d1:d6:c8:aa:e8:c2:e0:5e:d0:f7:
7b:19:b8:7a:e1:77:fd:1c:94:20:6e:8e:30:fa:11:ab:79:17:
8e:6d:5e:5f:cb:d8:ae:77:9f:e3:ab:92:c4:05:8d:5b:4d:95:
07:9c:e4:7a:80:00:2b:73:92:5a:ab:92:61:58:f2:0f:08:36:
c7:bd:11:2d:a0:22:b7:df:b2:a6:4e:2a:b7:85:f5:1b:24:63:
da:0e:43:4e:5b:1d:b1:74:ea:a2:17:7f:fd:a5:07:8e:a8:44:
05:97:ab:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:14 2023 by rpki-client on console-fra.rpki-client.org