Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/68lCjg4gQyQsGGnak-m8NxQihqQ.roa
File: 68lCjg4gQyQsGGnak-m8NxQihqQ.roa (raw, json)
Hash identifier: 7Pacpz2d9JrebVDVDtVOGi2CokcU0hVd0HHACvx13dY=
Subject key identifier: EB:C9:42:8E:0E:20:43:24:2C:18:69:DA:93:E9:BC:37:14:22:86:A4
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 026521EC
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/68lCjg4gQyQsGGnak-m8NxQihqQ.roa
Signing time: Sat 01 Jan 2022 08:03:21 +0000
ROA not before: Sat 01 Jan 2022 08:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 141.11.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40182252 (0x26521ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Jan 1 08:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebc9428e0e2043242c1869da93e9bc37142286a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:f8:94:ae:9e:5f:49:e4:ee:c6:22:8c:f1:
58:3c:78:05:93:81:cf:e9:92:5d:ce:f6:0a:f7:b5:
ee:8f:96:9a:a6:be:95:c0:cc:b6:e0:b1:a9:ff:d5:
c5:95:c2:32:91:13:a3:ec:b0:14:86:ef:89:b3:2a:
d3:36:c2:f8:99:3d:d7:f5:a4:1a:0a:eb:a6:53:b2:
11:2b:4b:2e:df:0d:63:1c:44:01:96:59:52:67:51:
05:75:0d:be:50:cd:ea:c6:cc:22:05:76:75:85:7f:
7e:c0:5e:35:f2:9a:a0:46:c3:d5:4e:f7:f6:5d:e4:
32:bb:19:46:e6:d8:d7:48:1f:24:cf:ed:89:0a:c3:
e3:56:d3:5c:c2:5c:2c:b1:d9:31:7a:80:5f:14:07:
21:62:8b:ee:ae:ec:44:f6:a1:35:49:b8:29:4e:2b:
1e:e2:46:82:3b:f2:5c:5f:6e:fe:a3:b1:ab:7e:67:
8b:ca:6a:33:05:1c:1a:1e:db:78:6d:fd:b0:42:93:
f7:82:5c:45:fe:06:a0:dc:ad:ce:6a:97:86:b1:60:
47:78:42:b9:03:29:98:39:5b:ac:b9:10:c6:24:4a:
14:59:5c:98:77:91:d2:65:ce:80:02:d9:db:cf:e5:
38:08:9b:a4:84:06:8f:86:ba:48:6e:49:6c:5d:65:
63:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C9:42:8E:0E:20:43:24:2C:18:69:DA:93:E9:BC:37:14:22:86:A4
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/68lCjg4gQyQsGGnak-m8NxQihqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.244.0/23
Signature Algorithm: sha256WithRSAEncryption
03:31:90:59:26:9b:30:f4:d6:9f:9e:fb:16:31:14:0d:85:c3:
55:7e:b3:68:79:06:3b:34:6f:2d:60:f2:4a:93:68:c4:ef:d6:
07:ca:1e:e8:db:90:91:a0:16:68:1d:68:26:ac:8a:f4:57:9a:
13:12:ce:c4:91:03:8f:94:4b:54:21:6a:7c:b2:94:29:68:b1:
4c:53:04:de:98:40:b2:3c:1b:a3:b8:6c:fd:3b:28:af:91:38:
27:24:0f:4e:e1:de:17:b3:9b:57:a0:66:71:f7:88:a4:f0:42:
77:fb:20:23:a6:ae:a7:7d:6c:b6:22:c1:07:1e:cf:0b:03:9c:
31:ac:d2:d1:58:1b:18:bf:af:f4:6c:7a:2a:ee:b4:de:e8:8a:
86:61:c7:98:ef:08:f6:12:cf:c0:aa:46:73:49:bf:e4:bf:29:
41:05:04:7e:44:a6:cd:ec:a3:f4:1c:c8:1a:fb:7e:9d:09:bf:
58:60:4b:c8:86:be:52:19:1b:52:17:62:66:0f:cc:76:55:dd:
13:51:5b:9b:94:66:e0:3d:59:e6:37:a9:fe:05:e3:87:6a:c0:
a3:55:48:90:d2:1b:20:46:0c:fe:f5:a0:ab:4f:35:c4:37:69:
2d:9a:e2:5f:91:0a:62:6f:f3:34:87:34:28:3b:5f:a8:7f:8a:
7d:74:13:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:10 2023 by rpki-client on console-ams.rpki-client.org